Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior GRC Analyst

$132k - $165k

Garner Health

Senior GRC Analyst

Remote

Garner's mission is to transform the healthcare economy, delivering high-quality and affordable care for all.

We are fundamentally reimagining how healthcare works in the U.S. by partnering with employers to redesign healthcare benefits using clear incentives and powerful, data-driven insights. Our approach guides employees to higher-quality, lower-cost care, creating a system that works better for everyone. Patients achieve better health outcomes, employers spend healthcare dollars more effectively, and physicians are rewarded for delivering exceptional care rather than performing more procedures.

Garner is one of the fastest-growing healthcare technology companies in the country. Our products are trusted by the most sophisticated employers and providers in the industry, and we are building a team of talented, mission-driven individuals who are motivated to make a meaningful impact on healthcare at scale.

About the role:

We are looking for a Senior GRC Analyst to join our Technical Compliance team to ensure Garner's compliance posture across security frameworks such as ISO 27001, SOC 2, HITRUST, and HIPAA. As a Senior GRC Analyst, you will run our internal audits, guide our external assessments, and partner with teams across Engineering, Product, People, and Legal so that our controls are designed well, operating effectively, and continuously improving. Our Technical Compliance team safeguards Garner's sensitive healthcare data and protects the trust of our members, clients, and partners by maintaining a strong control environment and regulatory compliance. The work you do here has a direct impact on our ability to win and retain enterprise customers, expand into new lines of business, and scale securely as we grow.

Where you will work:

This role is open to remote candidates across the U.S. For candidates based in New York City, the position follows a hybrid schedule with in-office work required Tuesday, Wednesday, and Thursday each week.

What you will do:
  • Manage and support our compliance certifications, including SOC 2, HITRUST, and ISO 27001 audits and run control testing across the audit lifecycle
  • Serve as the subject matter expert across the company on our compliance frameworks
  • Serve as the primary point of contact for external auditors and assessors
  • Manage Garner's Security and Privacy trust center
  • Maintain the risk register and drive risk identification, scoring, and reporting
  • Manage the maintenance of our compliance policies, standards, and procedures
  • Report on our compliance posture to senior leadership
  • Scale our GRC function with AI and automation, building quick wins and scoping requirements for Engineering to fully automate the rest
The ideal candidate has:
  • 5+ years of experience in GRC, IT audit, or information security compliance
  • Prior experience with HITRUST, SOC 2, and ISO 27001 audits
  • Hands-on experience with control design, evidence collection, and remediation in a cloud-native engineering environment
  • Proven ability to adapt your communication style across engineers, operators, and executives
  • A GRC Engineering mindset with prior experience using scripting and LLMs to automate repetitive tasks
  • Industry certifications such as CISA, CISM, CISSP, CRISC, or ISO 27001 Lead Auditor preferred
  • A desire to be a part of a high-performing, mission-driven team that operates with intense urgency, a strong sense of individual accountability, and a commitment to authentic feedback
Technologies we use:
  • AWS, Okta, Datadog, Retool, Gitlab, Vanta

This is a unique opportunity to join a fast-growing company in a transformative role, helping shape the future of healthcare.

Compensation Transparency:

The target salary range for this position is $132,000 - $165,000. Individual compensation for this role will depend on various factors, including qualifications, skills, and applicable laws. In addition to base compensation, this role is eligible to participate in our equity incentive and competitive benefits plans, including but not limited to: flexible PTO, Medical/Dental/Vision plan options, 401(k), Teladoc Health and more.

Fraud and Security Notice:

Please be aware of recent job scam attempts. Our recruiters use getgarner.com and garnerhealth.com email domains exclusively. If you have been contacted by someone claiming to be a Garner recruiter or a hiring manager from a different domain about a potential job, please report it to law enforcement here and to View email address on click.appcast.io.

Equal Employment Opportunity:

Garner Health is proud to be an Equal Employment Opportunity employer and values diversity in the workplace. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.

Garner Health is committed to providing accommodations for qualified individuals with disabilities in our recruiting process. If you need assistance or an accommodation due to a disability, you may contact us at View email address on click.appcast.io.

Vacancy posted 22 hours ago
Similar jobs that could be interesting for youBased on the Senior GRC Analyst in United States vacancy
  •  ...scrutinize during procurement and something customers depend on to justify their trust. This role owns all of it. As our Senior GRC Analyst, you'll be the owner of Doppler's security and compliance program; maintaining our SOC 2 Type II and ISO 27001 certifications... 
    Senior
    Remote work

    Doppler

    United States
    1 day ago
  • $130k - $160k

     ...Benepass | Candidate Resource Page Benepass Listed on Inc. Magazine's Best Workplaces of 2023 Team & Role As a Senior GRC Analyst at Benepass, you will help operate and mature the governance, risk, compliance, audit readiness, and customer assurance programs... 
    Senior
    Work at office
    Remote work
    Work from home
    Flexible hours

    Benepass

    United States
    1 day ago
  •  ...to its workforce, Kokosing is the winning team.Job Description:We are looking for a Security Governance, Risk, and Compliance (GRC) Analyst to support and mature our security and compliance programs across a large construction organization. This role focuses on maintaining... 
    Senior
    For contractors

    Kokosing

    Brooklyn, NY
    3 days ago
  • $140k - $165k

     ...while learning, having fun, and making a profound difference for the dreamers and builders in the world. We’re looking for a Senior GRC Analyst to serve as the primary architect for our expanding ISO ecosystem. As a Senior GRC Analyst at DigitalOcean, you will lead the... 
    Senior
    Local area
    Worldwide
    Flexible hours

    DigitalOcean

    Bellevue, WA
    22 hours ago
  •  ...Despite our growth and scale, we're still just getting started. That's where you come in. About the role We're hiring a Senior GRC Analyst to help scale Radar's security and compliance programs, with a focus on third-party risk and modern SaaS governance. You'... 
    Senior
    Work at office
    Remote work

    Radar Labs, Inc.

    New York, NY
    22 hours ago
  •  ...Senior GRC Analyst Location: Atlanta, GA Need local with availibilty of onsite interview in required Type: 5-Month Contract (Possibility of Extension) GC/USC GRC frameworks (ISO 27001, NIST, GDPR, CMMC), risk assessment, compliance audits,... 
    Senior
    Contract work
    Local area

    3B Staffing LLC

    Atlanta, GA
    15 hours ago
  •  ...Senior GRC Analyst Palo Alto, California Workato delivers enterprise infrastructure for the agentic era, redefining iPaaS and helping enterprises unify data, applications, processes, and AI into a single, governed platform. A leader in Enterprise MCP and trusted... 
    Senior
    Remote work
    Flexible hours

    Workato

    Palo Alto, CA
    2 days ago
  •  ...entertainment related building projects. The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk Register. This role is... 
    Senior
    For contractors
    Immediate start
    Flexible hours

    Clayco

    Phoenix, AZ
    3 days ago
  •  ...The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk focused, highly analytical role that ensures all human and third‑party risk to Clayco is identified, quantified... 
    Senior
    Immediate start
    Flexible hours

    Gilder Search Group

    Saint Louis, MO
    2 days ago
  • $130k - $150k

     ...build with us at Crusoe. About This Role We're seeking a GRC Analyst to support the day-to-day execution of our Governance, Risk,...  ...questionnaires and due diligence requests with guidance from senior team members Maintaining and updating audit and compliance... 
    Senior
    Temporary work

    Crusoe

    San Francisco, CA
    4 days ago
  • $110k - $130k

     ...Senior GRC Analyst Blue J is the leading generative AI solution for tax professionals. As a B2B SaaS company, our customers are accountants and tax experts who rely on our market-leading software to deliver fast, accurate, and defensible answers to complex tax questions... 
    Senior
    Work at office
    Immediate start
    Remote work

    Blue J.

    United States
    22 hours ago
  •  ...Senior GRC Analyst | Deltek, Inc You will be part of the GRC team responsible for assessment, audits of cloud environments, information systems, risk management, and security tools to ensure adherence to applicable frameworks, laws, and regulations. As a Senior GRC... 
    Senior
    Remote work

    Deltek

    United States
    15 hours ago
  • $130k - $160k

     ...Alumni Ventures is seeking a Senior GRC Analyst to operate and mature governance, risk, compliance, and audit readiness programs. This role involves collaboration across departments to ensure effective compliance practices. Ideal candidates have 5+ years in GRC and experience... 
    Senior
    Remote work
    Flexible hours

    Benepass

    New York, NY
    15 hours ago
  • $161.6k - $202k

     ...— and that responsibility demands a security and compliance program that scales with the business. We're building out our dedicated GRC team to improve and mature our program! You'll join the Security team and work across four pillars: security certifications (HITRUST... 
    Senior
    Work from home
    Flexible hours

    Headway - Design & Development

    Seattle, WA
    1 day ago
  • Forrester Research, based in Cambridge, MA, is seeking a Senior Analyst to deliver strategic advice and conduct research for risk management leaders. The ideal candidate will possess strong knowledge of risk practices, cyber risk quantification, and excellent communication... 
    Senior

    Forrester

    Cambridge, MA
    1 day ago
  • Itlearn360 is seeking an experienced Third Party Governance, Risk and Compliance (GRC) Analyst in Los Angeles, CA. The ideal candidate should have at least three years of experience, preferably with Big 4 consulting or in regulated industries. This role involves executing... 
    Senior

    Itlearn360

    Los Angeles, CA
    2 days ago
  • A community-focused healthcare organization in California is seeking a Senior Analyst for IT Governance, Risk & Compliance. This role involves managing the Information Security GRC program, ensuring compliance with various regulations including HIPAA and PCI. Candidates... 
    Senior

    AltaMed Health Services Corporation

    Los Angeles, CA
    1 day ago
  • A staffing agency based in Dallas, Texas is seeking a Senior Security Analyst to identify and mitigate security risks within the IT environment....  ...Information Security or IT and at least 3 years of experience in GRC/risk management. Competitive compensation and benefits... 
    Senior

    Liberty Personnel Services, Inc.

    Dallas, TX
    1 day ago
  • PTR Global is seeking an experienced Information Security Analyst 4 for a contingent role based in Chandler, Arizona. This senior-level position emphasizes performing governance work related to data protection and enterprise risk management. Responsibilities include managing... 
    Senior
    Contract work

    Jobs via Dice

    Chandler, AZ
    2 days ago
  • Amynta Group in Fort Worth is seeking a Senior GRC Analyst to enhance its risk management and compliance program. This hybrid role requires an individual to assess information security risks and support audits across operations. The ideal candidate should possess a Bachelor... 
    Senior

    Amynta Group

    Fort Worth, TX
    3 days ago
  • A global beverage solutions provider is seeking a Sr IT Governance Risk and Controls Analyst in Tampa, Florida. This role focuses on maintaining and improving the IT governance, risk, and compliance program, particularly in SOX compliance. Responsibilities include conducting... 
    Senior

    Refresco

    Tampa, FL
    1 day ago
  • $119k - $193k

    Phase2 Technology is seeking a Senior Analyst to conduct research and provide strategic advice to risk management leaders. The ideal candidate will possess a deep understanding of risk management trends, practices, and compliance management. This role involves producing... 
    Senior

    Phase2 Technology

    Chicago, IL
    4 days ago
  • Gilder Search Group is looking for a Sr. GRC Analyst focused on Third-Party & Human Risk Management in St. Louis, Missouri. The role ensures all human and third-party risks to Clayco are identified and treated appropriately. Key responsibilities include owning the TPRM... 
    Senior

    Gilder Search Group

    Saint Louis, MO
    1 day ago
  • Phase2 Technology is seeking a Senior Analyst to conduct research and provide strategic guidance for risk management leaders. The successful candidate will leverage their expertise in cyber risk quantification and risk management practices to deliver insights across multiple... 
    Senior

    Phase2 Technology

    Washington DC
    4 days ago
  • Gilder Search Group is looking for a Sr. GRC Analyst focusing on Third-Party & Human Risk Management in Atlanta, Georgia. This role involves risk analysis, compliance assessments, vendor management, and developing security awareness training. The ideal candidate has 6-8... 
    Senior

    Gilder Search Group

    Atlanta, GA
    1 day ago
  • Sky Mavis seeks a Sr. GRC Analyst in Phoenix, AZ, to manage Third-Party and Human Risk Management. This analytical role involves vendor risk assessment, security awareness training, and compliance evaluation, ensuring holistic risk management. Candidates should have significant... 
    Senior

    Sky Mavis

    Phoenix, AZ
    3 days ago
  • AlixPartners GmbH in Southfield, MI is seeking an IS GRC Senior Analyst - Risk & Compliance. This role involves managing risk assessments, ensuring compliance with regulations, and collaborating with various departments. The position is full-time and requires prior experience... 
    Senior
    Full time
    Contract work

    AlixPartners GmbH

    Southfield, MI
    1 day ago
  • A leading fast food company in Columbus, OH, is seeking a Senior Analyst specializing in Governance, Risk & Compliance. This role involves collaborating across departments to develop and implement security measures, risk assessments, and compliance with regulations like... 
    Senior

    Chipotle Mexican Grill

    Columbus, OH
    15 hours ago
  • Crunchyroll is seeking an experienced Risk Analyst to support our Information Security GRC team. This role emphasizes governance, risk, and compliance, ensuring technology evolution aligns with employee needs and strategic goals. Successful candidates will have over 8 years... 
    Senior
    Flexible hours

    Crunchyroll

    Dallas, TX
    15 hours ago
  • Radar is hiring a Senior GRC Analyst in New York City to enhance security and compliance programs, focusing on third-party risk and SaaS governance. You will work with various teams to evaluate vendors, shape security strategies, and improve workflows, reporting to the... 
    Senior

    Radar

    New York, NY
    6 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!