Associate Governance, Risk, and Compliance Analyst
About The Position
Healogics is the largest provider of advanced wound care services in the United States, treating more than 300,000 chronic wound patients annually across over 600 sites. With an aging society, obesity and diabetes on the rise, and an uptick in surgical procedures, the number of patients with non-healing wounds that would benefit from expert care is dramatically increasing. As a result, the company is working to provide our differentiated, quality outcomes to as many patients as would benefit through our out-patient clinic partnerships. The Associate Governance, Risk & Compliance (GRC) Analyst supports the organization’s enterprise risk management, governance, and compliance programs. This role assists in identifying, assessing, monitoring, and reporting risks; supporting policy and control frameworks; and ensuring alignment with regulatory, contractual, and internal requirements. The Associate GRC Analyst works cross-functionally with business, legal, IT, HR, and finance partners to promote effective risk management practices and a strong control environment. All Healogics employees must perform their job responsibilities according to all Healogics policies, Hospital policies, as well as to accrediting organizations, federal and state regulation, and to the Centers for Medicare and Medicaid Services (CMS) guidelines, as applicable.
Requirements
- Bachelor’s degree in Information Technology, Information Security or equivalent experience.
- 1–3 years of experience in risk management, compliance, audit, governance, or a related analytical role
- Minimum 2+ years’ experience with information security
- Understanding of information technology networks, databases, and applications
- Proven ability to educate on risk mitigation best practices
Nice To Haves
- Scripting or programming ability preferred (including PowerShell)
- PowerBI experience
Responsibilities
- Supports enterprise and operational risk assessments, including risk identification, documentation, scoring, and tracking.
- Develops and maintains security policies, procedures, and frameworks, ensuring they align with business objectives.
- Ensures adherence to industry standard regulations (ie: PCI DSS, ISO 27001) through research, reporting, and audits.
- Prepare reports, metrics, and presentations for internal and external stakeholders, providing evidence that controls are working.
- Supports training and awareness efforts related to risk management and compliance.
- Ensures disaster recovery drills and other plans are operational and undergo appropriate testing, documentation, and evidence collection as needed.
- Performs other duties as required
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
