IT Compliance Analyst

• Assist in the development and modernization of the IT common control framework.
• Facilitate and ensure the operating effectiveness of periodic User Access Reviews
• Align and maintain IT controls to identified risks in GRC solution.
• Support the development and implementation of automated control compliance monitoring solutions.
• Collaborate with various teams for IT Compliance activities, as required.
• Actively identify and respond to IT compliance issues and incidents related to systems and
• workflow to ensure internal compliance controls are appropriate and operating as intended within the organization.
• Assist leading coordination and remediation efforts for compliance activities related to IT SOX compliance annual SOC 2 and SOC 3, HIPAA, NIST, and other compliance assessments.

Qualification

• At least 3 years of IT SOX and HIPAA experience preferably in a healthcare related industry and public company environment Candidate Qualifications/Education
• Experience operating and maintaining GRC tools associated with IT risk management and compliance management (i.e. controls and compliance frameworks).
• Experience with operation of Identity Access Management (IAM) solutions such as AWS, Okta, CyberArk and SailPoint.
• Working knowledge of HIPAA/HITECH, GDPR, ISO, NIST CSF, SOX, SOC1/2/3 and other compliance regulations.
• Relevant professional certifications such as Certified Information Systems Auditor (CISA), Certified Information System Professional (CISSP)
• Bachelors degree in Computer Science, Information Security, or related field required

m