Cybersecurity Analyst - GRC

Job Summary

A company is looking for a Cybersecurity Analyst - Governance, Risk, & Compliance (GRC).

Key Responsibilities

• Develop and maintain cybersecurity policies and procedures to ensure HIPAA compliance
• Conduct risk assessments and audits to identify vulnerabilities and ensure compliance with industry standards
• Monitor security alerts and incidents, providing timely responses and remediation

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or four years of relevant experience
• Three years of experience in information technology and cybersecurity, with a focus on governance, risk, and compliance preferred
• Relevant certifications such as CISA, CISM, or CRISC are highly preferred
• In-depth knowledge of HIPAA regulations and cybersecurity frameworks (e.g., HITRUST, NIST, ISO 27001)
• Experience conducting security risk assessments and managing organizational policies for compliance