GRC Engineer

Job not on LinkedIn

🔥 0 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Charlie Health

Charlie Health

501 - 1000 employees

⚕️ Healthcare Insurance

🧘 Wellness

💰 Seed Round on 2020-06

Healthcare Insurance • Wellness

Charlie Health is a provider of personalized intensive therapy and virtual Intensive Outpatient Programs (IOP) targeting mental health challenges. They cater to both teens and adults, offering a comprehensive treatment approach that includes therapies such as Cognitive Behavioral Therapy (CBT), Dialectical Behavior Therapy (DBT), and art and music therapy, among others. The company aims to provide immediate access and flexible scheduling to accommodate patients' needs, focusing on various conditions like anxiety, depression, self-harm, and substance use disorders. Charlie Health emphasizes measurable outcomes and connection with peers to foster long-term healing, with services available in as little as 24 hours.

📋 Description

• Transform Charlie Health’s compliance, risk and control programs into automated, measurable and continuously monitored systems • Partner closely with Information Security, IT Engineering, Compliance, Legal, Engineering and business teams to translate regulatory, contractual and risk requirements into automated controls, evidence pipelines, dashboards, workflows and continuous control monitoring • Help move Charlie Health from manual, point-in-time compliance activities toward scalable, system-driven assurance • Ensure that controls protecting patient, clinician, employee and company data are well-designed, consistently operated and supported by reliable evidence • Design, build and operate automated controls that support HIPAA, SOC 2, NIST, ISO 27001 and other applicable frameworks • Build and maintain continuous control monitoring capabilities across identity, endpoints, cloud, SaaS platforms, security tools and business systems • Automate audit evidence collection across various systems

🎯 Requirements

• 5+ years of experience in GRC engineering, security engineering, compliance automation, IT risk, security operations, cloud security, infrastructure engineering or a related technical discipline • Hands-on experience translating compliance, risk or security requirements into technical controls, workflows or automations • Experience with frameworks such as HIPAA, SOC 2, NIST, ISO 27001, HITRUST, PCI or FedRAMP • Experience working with enterprise systems such as Okta, Google Workspace, AWS, Jamf, Intune, SentinelOne, Wiz, Jira, Confluence, Slack or similar platforms • Experience using APIs, scripting or workflow automation tools such as Python, Bash, PowerShell, Workato, Terraform, REST APIs, webhooks or JSON • Experience with audit evidence collection, control testing, remediation tracking or compliance reporting • Familiarity with GRC platforms, compliance automation tools, ticketing systems or control monitoring systems • Strong understanding of access control, endpoint security, cloud security, logging, vulnerability management and data protection concepts • Ability to work cross-functionally with Security, IT Engineering, Compliance, Legal and business stakeholders • Strong analytical thinking, ownership and ability to operate independently in ambiguous environments.

🏖️ Benefits

• Comprehensive benefits to all full-time employees

Apply Now

Similar Jobs

🔥 23 minutes ago

HealthEdge

1001 - 5000

⚕️ Healthcare Insurance

☁️ SaaS

💳 Fintech

Manager of Regulatory Compliance leading a team at HealthEdge for healthcare regulatory operations. Ensuring alignment with federal and state regulatory requirements for healthcare products.

🔥 42 minutes ago

Sezzle

201 - 500

💳 Fintech

👥 B2C

🛍️ eCommerce

Manager, Regulatory Reporting leading bank-specific regulatory reporting at Sezzle. Responsible for building the regulatory reporting function for banking operations and ensuring compliance.

🔥 42 minutes ago

Sezzle

201 - 500

💳 Fintech

👥 B2C

🛍️ eCommerce

Bank Regulatory Reporting Manager overseeing regulatory reporting and compliance for banking operations at Sezzle. Building regulatory frameworks and collaborating with cross-functional teams.

🔥 58 minutes ago

Mission Lane

501 - 1000

💳 Fintech

🏦 Banking

👥 B2C

Compliance Manager establishing fraud, collections, and back-office compliance for Mission Lane's credit card business. Leading compliance initiatives and ensuring adherence to regulations and best practices.

🔥 11 hours ago

SummitStone Health Partners

201 - 500

🧘 Wellness

Compliance Generalist supporting regulatory compliance activities at SummitStone Health Partners. Professionally communicate compliance topics and respond to queries from the organization.