Senior Security Engineer - Governance, Risk & Compliance

Summary

Join Komodo Health as a GRC Engineer and play a critical role in securing our systems and data while ensuring compliance with regulatory requirements. You will manage compliance initiatives, conduct risk assessments, and develop policies and procedures to protect sensitive data and maintain system integrity. This role involves collaborating with cross-functional teams, working with cutting-edge GRC technologies, and influencing the development of our GRC strategy. Your work will directly impact the security and efficiency of our operations, providing a foundation for the company's continued growth and innovation. Within your first year, you will successfully implement GRC framework optimizations, conduct risk assessments, ensure regulatory compliance, and develop robust GRC policies and procedures, ultimately enhancing the company's security posture.

Requirements

• Strong experience with GRC frameworks and tools
• Proficiency in conducting risk assessments and audits
• Knowledge of regulatory requirements and compliance management
• Excellent communication and collaboration skills
• Strong problem-solving and analytical skills
• Experience with developing and implementing GRC policies and procedures
• Familiarity with AWS systems and services

Responsibilities

• Develop and implement GRC policies and procedures
• Conduct regular risk assessments and audits
• Ensure compliance with industry standards and regulations
• Collaborate with cross-functional teams to address compliance issues
• Monitor and report on the effectiveness of GRC initiatives
• Provide GRC-related training and support to other teams
• Partner with HR to ensure alignment and integration between GRC systems and key HR systems, facilitating seamless onboarding and offboarding processes and maintaining accurate access controls

Preferred Qualifications

• Experience with GRC tools such as OneTrust
• Experience collaborating between product teams, Legal and Compliance teams, and Security teams
• Familiarity with Azure systems and services
• Familiarity with microservices architecture
• Knowledge of healthcare industry compliance requirements
• Previous experience in a healthcare or technology environment

Benefits

• Comprehensive health, dental, and vision insurance
• Flexible time off and holidays
• 401(k) with company match
• Disability insurance and life insurance
• Leaves of absence in accordance with applicable state and local laws and regulations and company policy
• Medical, dental and vision coverage
• 401k Retirement Plan
• Prepaid legal assistance
• Paid time off for vacation, sickness, holiday, and bereavement
• 100% company-paid life insurance and long-term disability insurance