Sr. Engineer, Governance, Risk & Compliance (TPRM)
NextGen Healthcare
Job Description: Develop solutions using tools and technology to support Information Security and GRC work, project, and initiatives. Act as system administrator for certain security or GRC tools such as phishing and training platform, Data Loss Prevention (DLP) solution, Third Party Risk Management (TPRM) platform, Risk Register, privacy management, etc. Integrate related tools with other systems as needed. Engage with security vendors on design sessions, and help configure GRC solutions for use. Work with IT partners in Application Security, Security Engineering and Operations, Enterprise Applications, Desktop Support, Help Desk, Networking and Infrastructure Operations, to get data and information needed to support GRC work. Work with IT teams and partners to extrapolate SIEM related data from source system logs such as security, application, system, and network logs to assess risks and help the GRC team determine compliance. Work with IT teams and partners to bridge technology between GRC goals and cybersecurity / technology solutions such as IAM, PAM, MFA, RBAC, SSO, DLP, IDS/IPD, XDR, MDM, SIEM, etc. Support data analysis and metrics by pulling data from source systems. Stay current with threat intelligence and make recommendation for improvements. Participate in security incidents as needed. Support security assessment requests for customers, HITRUST, SOC 2, etc. by pulling appropriate data as needed. Work with IT partners to integrate GRC value-add into their secured software development life cycle, software engineering, infrastructure, network, and operation needs. Maximize the utilization of Security tools and technology. Assist with the development of policies and procedures. Stay current with changes in information security and cybersecurity regulations, industry frameworks, and best practices, and apply it to existing NextGen GRC solutions. Use security engineering skills to help streamline or automate NextGen methodology for maintaining accreditations or certifications (e.g., SOC 2, HITRUST, etc.). Use security engineering skills to help streamline or automate NextGen methodology for responding to customer security assessments or questionnaires. Education Required: Bachelor's Degree in Computer Science or related discipline or advanced degree. Or, any combination of education and experience which would provide the required qualifications for the position. Experience Required: 4-6 years of relevant experience or advanced Degree. Security engineering experience, including implementing information security or cybersecurity solutions. Experience in working with security technology, tools, or processes such as phishing campaigns, vulnerability scans, IRPs, playbooks, IAM, PAM, MFA, RBAC, SSO, DLP, IDS/IPD, XDR, MDM, SIEM, threat hunting, etc. Experience with one or more of the following frameworks: COSO, NIST CSF, RMF, ISO, COBIT. Experience working in an environment with one or more of the following: Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley Act (SOX), Security Operation Center (SOC), Payment Card Industry (PCI), GRC Experience working with IT partners and adequate exposure to their areas such as SSDLC, software engineering, infrastructure, networking, service desk, desktop support, security operations, etc. This includes experience or sufficient exposure and familiarity with the tools they use. License/Certification Required: Information security or cybersecurity related certifications such as CISA, CISSP, CISM, CRISC, CEH, GIAC (GCFA), or ability to acquire certification within 18 months. HITRUST Framework and CSF certification knowledge. Governance, Risk and Compliance tools. Knowledge, Skills & Abilities: Knowledge of:GRC, information security, and cybersecurity principles, phishing campaigns, cybersecurity awareness and training, risk assessments, risk registers, security events and incidents, security frameworks, standards, guidelines, controls, federal and state security regulations and trends, current cybersecurity threats, data protection, administrative, technical and physical security controls, third party risk management (TPRM). IT / security processes or tools such as IAM, PAM, MFA, RBAC, SSO, DLP, IDS/IPD, XDR, MDM, SIEM, IRP, backups, DR & BCP, playbooks, MSP or MSSP, MDR or XDR, 24x7 SOC, endpoint security, SIEM, vulnerability scans, patching, pen testing, red/blue/purple teaming, tabletop exercises, encryption at rest and in transit, networking, firewalls, infrastructure, colo data centers, hosted environments such as Azure, AWS, or Google Cloud, and Active Directory. Skill in:Information security, cybersecurity, ethical hacking, some understanding of code and scripts, working as member of a team; communicating effectively; establishing and maintaining effective working relationships. Ability to:Determine how a system should work and how changes in conditions, operations, and the environment will affect outcomes; work in a fast-paced environment; stay organized, prioritize workload, multi-task, and meet deadlines. NextGen Healthcare is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. #J-18808-Ljbffr NextGen Healthcare
$125k - $140k
...Description SENIOR SOLUTIONS ENGINEER US REMOTE; RALEIGH, NC, DRAPER, UT... ...cloud platform for content security and governance that enables organizations to better protect... ...customers improve data security, maintain compliance, prevent and detect ransomware threats,...SeniorWork at officeLocal areaRemote workWorldwideFlexible hours$148k - $175k
A healthcare company in New York is seeking a Governance Risk and Compliance Engineer to manage compliance processes and automate operations. This remote role requires 5+ years in risk and compliance, with expertise in platforms like Vanta and BI tools like Looker. You...SuggestedRemote jobFlexible hours$132.4k - $191.8k
Dormont Manufacturing Co is seeking a Senior TPRM Governance & Awareness Consultant in New York City... ...position manages Adobe’s Third-Party Risk Management (TPRM) program, advancing... ..., a strong grasp of regulatory compliance, and be adept in managing third-party relationships...Senior$144k - $152k
...the enterprise orchestration layer for building, deploying, and governing AI. In a single environment, teams design and operate analytics... ...to operationalize AI and run it as a true business performance engine delivering measurable value. For more, visit the Dataiku blog,...SeniorFlexible hours- A leading global financial institution is looking for a TPRM Specialist in New York to oversee the Third-Party Risk Management program. This hybrid role involves assessing and mitigating risks, tracking compliance, collaborating with various teams, and supporting contract...SeniorContract work
- Brex is looking for a Senior GRC Engineer to enhance its Governance, Risk, and Compliance function. This role is pivotal in automating compliance workflows, ensuring security and regulatory adherence, and advancing our Trust program. You will work cross-functionally to...SeniorRemote work
- ...a highly analytical Senior Associate in Model Validation & AI Governance to join their team in New York. This hybrid role involves reviewing models developed by data scientists, ensuring they meet compliance standards and are free from bias before deployment. The ideal...Senior
$112k - $208k
Sr Manager, InfoSec Governance Risk and Compliance (GRC) Location: New York City, New York, United States Responsibilities Lead and own the Governance, Risk, and Compliance (GRC) program globally, managing and developing a high‑performing team. Manage and drive compliance...Senior- ...administration and integration of the Collibra Data Quality platform to enhance data governance initiatives. Candidates should have at least 12 years of experience in Data Engineering and hands-on experience with Collibra, along with strong Java and API development skills...Senior
- PwC is seeking a Senior Associate for their Audit and Assurance team to manage and evaluate AI solutions and governance compliance. The role involves collaboration with various teams to enhance reporting processes and ensure adherence to standards. Qualified candidates...Senior
$102.4k - $191.8k
Job Title Senior TPRM Governance & Awareness Consultant Location 1540 Broadway, New York, NY... ...Corporate Controllership - Third-Party Risk Management (TPRM) Reports to Director... ...Partner with cross‑functional teams (Legal, Compliance, Procurement, Security) to ensure...Senior$200k - $300k
Security Governance, Risk, and Compliance Lead New York, NY, United States Hudson River Trading (HRT) is seeking a Security Governance, Risk, and... ...Manage and lead a team of security GRC engineers Perform internal and external security control assessments...Work at officeLocal areaImmediate startWorldwide- The Consulting Solutions is seeking a talented Salesforce Engineer to optimize our Salesforce capabilities. This role involves delivering high-quality Salesforce solutions while collaborating with cross-functional teams. =With 8+ years of experience, you'll leverage your...SeniorFlexible hours
$220k - $290k
...Senior Enterprise Sales Engineer - New York Harness is the AI Software Delivery Platform... ..., application security, reliability, compliance, and cost optimization. Harness brings... ...faster while maintaining security and governance throughout the entire software delivery...SeniorWork at officeRemote workFlexible hoursShift work- ...Oura is seeking a Senior Governance, Risk, Compliance (GRC) Analyst to join the Security Team in New York City. This role involves leading GRC initiatives, managing compliance policies, and performing risk assessments. Candidates should have over 6 years of experience...SeniorRemote workFlexible hours
$200k - $225k
...shorten cycles, and raise ACV. Run value engineering, ROI models, and deal reviews. Standards... ..., measurement, tune-in, and outcomes. Governance: Oversee security, privacy, and clean-room... ...and time-to-value; reduce post-sale risk. Represent Samba at industry events and...Senior$131k - $164k
...Staff Site Reliability Engineer New York, New York, United States Position Overview... ...provisioning, configuration, and compliance tasks. ~ Administer and optimize Linux... ...Us Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping...Work at officeLocal areaFlexible hours$112k - $208k
Ivalua is seeking a Sr Manager for InfoSec Governance Risk and Compliance (GRC) in New York City. This role involves leading the GRC program globally, managing compliance efforts, and serving as a subject-matter expert on various security frameworks. The ideal candidate...Senior- Justworks is hiring a Senior Analytics Engineer to lead the transformation of raw data into reliable and high-quality models. You will... ..., Product, and Operations to ensure efficient data usage and governance. The ideal candidate should have over 5 years of hands-on experience...Senior
- ...is looking for a Senior Specialist in Third Party Risk Management to support the risk framework across... ...role involves coordinating assessments, supporting governance, and engaging with stakeholders to ensure risk compliance. Ideal candidates will possess a Bachelor's...Senior
- Optomi, in partnership with a leading media provider, is looking for a Sr. AI Risk & Compliance Analyst in New York. This role involves supporting the assessment, governance, and documentation of AI use cases across the organization. Candidates should be experienced in...Senior
- Lumen Technologies seeks a Lead Information Security Architect with expertise in Governance, Risk, and Compliance. This remote role involves conducting security risk assessments and ensuring compliance with corporate policies and industry best practices. The successful...SeniorRemote job
- A leading consulting firm seeks a Governance, Risk, and Compliance (GRC) leader to advance their programs. This remote role requires 5-7 years of experience in GRC with relevant certifications like CISSP or CISM. The successful candidate will lead policy development, perform...SeniorRemote job
- Radar is hiring a Senior GRC Analyst in New York City to enhance security and compliance programs, focusing on third-party risk and SaaS governance. You will work with various teams to evaluate vendors, shape security strategies, and improve workflows, reporting to the...Senior
- Dormont Manufacturing Co is seeking a Sr. Corporate Counsel to provide legal guidance on corporate governance, compliance, and contractual matters. This role involves working closely with leadership teams to mitigate risk and ensure compliance with cybersecurity and data...Senior
- Sigma is looking for a skilled GRC Manager to oversee governance, risk, and compliance initiatives. This role will involve developing frameworks and managing enterprise-wide risk programs from their New York office. The ideal candidate will have over four years of experience...SeniorWork at office
- ...Model Risk Management – Program Management – Associate Join... ...role in Risk Management and Compliance, ensuring the firm's... ...the management of model risk, governance activities are conducted to... ...e.g. Business and Finance, Engineering, or Mathematics. Experience...Senior
- Atlas Search is seeking a Third Party Risk Specialist in New York to enhance its enterprise... ...across various teams including Compliance and Operations. With over 10 years of experience... ...optimizing risk assessments and vendor governance standards. #J-18808-Ljbffr Atlas SearchSenior
- Basis AI, located in New York, is seeking a compliance expert to build and automate Governance, Risk, and Compliance (GRC) systems. The role demands ownership of compliance programs like SOC and ISO standards, utilizing AI to enhance efficiency. An ideal candidate has...SeniorWork at office
$55 - $85 per hour
...Our client, located in Brooklyn, NY, is currently in need of a Sr NetApp Engineer for a 7 month contract. The project should renew on a yearly basis from there. The consultant will work primarily remote with 1 day onsite per week in support of NetApp AFF and OnTap operations...SeniorHourly payContract workRemote work1 day per week
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr. Engineer, Governance, Risk & Compliance (TPRM). Be the first to apply!
- senior cloud service delivery manager New York, NY
- senior business analyst contract New York, NY
- senior product design engineer New York, NY
- senior game producer New York, NY
- senior software manager New York, NY
- senior creative strategist New York, NY
- senior manager business analytics New York, NY
- senior marketing account manager New York, NY
- senior marketing manager New York, NY
- senior contracts analyst New York, NY

