CareCentrix Hiring for Analyst – Information Security (remote) at Remote Full Time

As an Analyst on our Information Security team, your primary responsibility is executing CareCentrix’s Governance, Risk and Compliance (GRC) program. You will directly work with senior management, compliance, legal, and Business Technology leaders to complete internal, vendor, and third party risk assessments; manage internal and third party risk; and to apply the company’s risk governance program.

Responsibilities:

• Assist in developing and implementing CareCentrix’s Governance, Risk and Compliance (GRC) program
• Respond to RFPs and client security assessments accurately and in a timely manner
• Drive recurring risk assessments in a timely manner with little supervision or direction
• Conduct third party risk assessments
• Assist the Director of Security in tracking identified risks and exceptions, and managing to resolution
• Collaborate with clients, internal partners, and third parties to prioritize, mitigate and resolve identified risks
• Identify and drive risk scenarios to actualize risk and risk remediation activities
• Establish and maintain the highest level of credibility and trust with business partners and leadership while recommending initiatives, communicating risks, and proposing solutions
• Identify and implement opportunities to drive effectiveness and efficiency into the IT Risk Management process
• Help lead organization-wide information security initiatives
• Provide insight into CareCentrix’s information security roadmap

• You have experience working in the Information Security field with a focus in governance, risk and compliance
• You have some exposure to the HITRUST framework
• You love to problem solve
• You enjoy working in a fast-paced environment, and don’t mind some ambiguity
• You are passionate about Information Security and have a strong interest in continued education via ISC2’s CISSP or related management and technical information security accreditations

Qualifications:

• You have a Bachelor’s Degree in Computer Science ([preferred) with a focus in Information Security or equivalent experience
• You have at 3-4 years’ experience in Information Security
• You have 2 or more years’ experience in IT risk assessment
• You have previous experience in the vendor risk management lifecycle
• HITRUST certification strongly preferred; CISSP, CRISC or CISM certification required
• Previous experience in healthcare or insurance information security is a plus

• 
  Annual salary of $90-100K
• Full range of benefits including Health, Dental and Vision with HSA Employer Contributions and Dependent Care FSA Employer Match.
• Generous PTO, 401K Savings Plan w/ employer match, Paid Parental Leave, free on-demand Virtual Fitness Training and more.
• Advancement opportunities, professional skills training, and tuition Reimbursement
• Great culture with a sense of community

• This is a work from home opportunity.

We are an equal opportunity employer. Employment selection and related decisions are made without regard to age, race, color, national origin, religion, sex, disability, sexual orientation, gender identification, or being a qualified disabled veteran or qualified veteran of the Vietnam era or any other category protected by Federal or State law.