Sr. GRC Analyst
City of Chamberlain
Senior Governance, Risk and Compliance (GRC) Analyst
Bamboo Health is the leader in Real-Time Care Intelligence™ solutions aimed at improving lives for everyone experiencing physical and behavioral health challenges. We are driven by our mission to empower clients to deliver seamless, high-quality and cost-effective care during pivotal moments to improve health outcomes. From coast to coast, Bamboo Health partners with all major retail pharmacy chains, 52 states and territories, 100% of the top 10 best hospitals and more than half of the country's largest health plans to improve more than 1 billion patient encounters annually. Join us in improving lives during pivotal care moments!
Bamboo Health Security designs forward-thinking security solutions across cloud services, identity and access management, virtualization, and third-party integrations. We focus on innovative, scalable practices that meet complex regulatory requirements and support the company's growth. Our team is highly collaborative and committed to both business success and individual development.
We are seeking a Senior Governance, Risk and Compliance (GRC) Analyst to help mature our compliance program, contribute to our audit cycles, and serve as the security interface for our customers. You will evaluate risks, conduct internal reviews, respond to customer security questionnaires, review security-relevant contract language, and use AI and automation to improve efficiency and maturity. Through this work, you will demonstrate Bamboo Health's security posture to prospective and existing customers, supporting our deals and ongoing customer relationships.
What You'll Do:
- Evaluate organizational policies and standards, ensuring that external and internal compliance requirements are met.
- Develop improvements to the compliance program, including the use of AI, automation, and process optimization.
- Review security-relevant language in customer contracts (MSAs, DPAs, BAAs) and RFP/RFI security sections, providing recommendations to Legal and the broader GRC team.
- Respond to customer security questionnaires using AI-assisted tools and trust content, exercising professional judgment to ensure responses are accurate and complete.
- Work with external auditors and customers as necessary, providing them with required information and assistance.
- Maintain and update trust center content and customer-facing security documentation.
- Perform vendor security risk assessments and contribute to the third-party risk management program.
- Assist in policy documentation upkeep and development, ensuring clarity and applicability.
- Monitor and assist with the internal training programs on compliance requirements and best practices.
- Ensure Bamboo Health's security operations remain aligned with both internal and external compliance requirements, contributing to ongoing internal and external audit reviews.
- Effectively communicate Bamboo Health's compliance posture to both internal and external stakeholders, offering tangible proof of adherence to policy requirements.
- Partner with the larger Information Security team to identify areas for continuous improvement within the compliance framework.
- Stay curious about emerging AI tools and how they can streamline or enhance work within your function.
What Success Looks Like…
In 3 months…
- Understand and be able to describe Bamboo Health's products, organizational structure, customer base, and compliance landscape (SOC 2, HITRUST, FedRAMP, etc.).
- Develop familiarity with policies, risk register, and trust center content.
- Independently respond to customer security questionnaires using established trust content and AI-assisted tools.
- Independently perform vendor security reviews.
- Build partnership with InfoSec team, Legal, Sales, and key cross-functional partners.
- Incorporate AI-supported tools into your day-to-day work—whether through analysis, documentation, or task management.
In 6 months…
- Actively contribute to audit cycles, including evidence collection and control mapping.
- Own recurring compliance tasks (e.g., periodic access reviews, policy reviews, evidence collection cycles).
- Review security-relevant contract language and RFP security sections, providing actionable recommendations.
- Identify compliance gaps and recommend remediation approaches.
- Produce routine metrics and reporting on assigned work streams.
- Support the team's efforts with educational security initiatives and objectives.
In 12 months…
- Independently lead customer security trust activities — questionnaires, trust content, and customer security review calls.
- Own specific compliance frameworks or domains with minimal oversight.
- Drive improvements to the GRC program, including expanded use of AI and automation.
- Contribute meaningfully to audit cycle outcomes, including evidence quality and finding remediation.
- Serve as a trusted subject matter expert and mentor within the Information Security team.
What You Need:
- Bachelor's degree in information security, computer science, or related field, or equivalent experience in a related field. Security compliance-related certifications such as CISSP, CISA, or CRISC are preferred.
- 5+ years of experience in information security, with substantial focus on compliance, audit, or risk management work.
- Direct experience with security frameworks and certifications like NIST SP 800-53, HITRUST, HIPAA, and/or FedRAMP.
- Experience responding to customer security questionnaires and supporting customer security due diligence activities.
- Experience reviewing security-relevant language in customer or vendor contracts.
- Familiarity with healthcare data protection requirements (HIPAA) and the compliance obligations they create.
- Demonstrated experience with security auditing and evidence gathering for compliance purposes.
- Experience evaluating security controls for compliance purposes.
- Familiarity with cloud security concepts and practices.
- Excellent written and verbal communication skills, with ability to build and communicate business rationale.
- Strong ability to learn quickly and work independently while being part of a team.
- Ability to build effective, sustainable working relationships internally, with customers, and external stakeholders.
- Comfort using or learning AI-supported tools (e.g., ChatGPT, CoPilot, or role-specific tools) to improve daily workflows.
- A forward-thinking, curious mindset with an openness to experimenting with new technologies.
- Strong analytical and problem-solving skills, with sound judgment and creativity in designing solutions.
- Proven ability to thrive in fast-paced, high-growth, and rapidly evolving environments.
- Ability to work effectively in a remote-first environment, ensuring high-quality virtual interactions with minimal distractions.
What You Get:
- Join one of the most innovative healthcare technology companies in the country.
- Have the autonomy to build something with an enthusiastically supportive team.
- Learn from working at the highest levels and on the most strategic priorities of the company, including from world class investors and advisors.
- Receive competitive compensation, including health, dental, vision and other benefits.
Belonging at Bamboo
We Care. #BambooHealthValuesCare
Every human being has the right to the best possible healthcare. Our Real-Time Care Intelligence™ solutions enable healthcare professionals to see and treat every individual as a whole person by providing the right information, at the right time – regardless of physical, behavioral or social barriers.
We're a great place to work because we care. We continually seek to learn about our differences and ensure the unique perspectives and contributions of all employees are welcome, valued and celebrated.
Our commitment to making a positive impact starts by recognizing and leveraging our differences, building inclusive teams and cultivating a sense of belonging.
Bamboo Health is proud to provide equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Bamboo Health GDPR/RODO
To protect our applicants from fraudulent recruitment activity, we recommend that all applicants verify the validity of an interview and hiring process by visiting our website All valid job postings will be listed on our careers page. Bamboo Health does not conduct interviews via text
- ...Sr. GRC Analyst Sr. GRC Analyst Remote USC or GC only must be in the EST (highly preferred) or CST time zone. Brief Job Description ~6-8 years of experience as a GRC Analyst ~ Will be involved with assisting the clients internal GRC team to help with Third...SeniorRemote work
- ...Sr GRC Analyst Perform vendor risk assessments against all security domains Perform technical implementation assessments from a security perspective related to vendor integrations (i.e. API integrations, SFTP integrations, etc.) to validate the secure implementation...Senior
- ...Sr GRC Analyst Location: Frisco TX Hybrid: 2 days a week on site Duration: 6-12 + months Main Skills Communication, Automotive, ISO/SAE 21434, UN R155 Job Description Conduct compliance audits to ensure adherence to automotive cybersecurity standards and...Senior2 days per week
$38 - $47 per hour
...First Entertainment Credit Union is looking for a Sr. GRC Analyst who will play a critical role in Continuous Improvement, Management Self-Identification & Policies. The role supports the Director in executing enterprise-wide programs that enhance risk ownership, facilitate...SeniorHourly payFull timeWork at office$76k - $134k
26-May-2026 Senior GRC Engineering Analyst US (Remote) 10880BR Company Summary Built on 40 years of industry expertise Deltek is a leading provider of ERP solutions for Government contractors of all sizes. And whether these firms call them a contract...SeniorContract workTemporary workFor contractorsRemote work$94k - $123.9k
...secure, compliant, and scalable SAP environment. Perform security and compliance assessments and support the ongoing evolution of the SAP GRC (Governance Risk Compliance) environment, ensuring risks are accurately identified, assessed, and mitigated. Job Description...SeniorTemporary work$95k - $105k
...Job Description Job Description Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005, we've remained family owned and...SeniorTemporary workCurrently hiringRemote workRelocation- ...Global Sr GRC Analyst Location: King Of Prussia, PA, US, 19406 Workplace Environment: Onsite Company: AmeriGas Propane, Inc. Job Summary: The Global Cybersecurity Senior GRC Analyst plays a critical role in ensuring that the organization operates within its regulatory...SeniorFor contractors
- ...SAP Application Security And GRC Analyst (Sr.) CGI is seeking a Senior SAP GRC and Application Security Analyst to join an SAP S/4HANA Greenfield implementation project for a large government contract. As a senior-level SAP GRC and Application Security Consultant, you...SeniorContract workWork at office2 days per week
- ...Radar Senior GRC Analyst Radar is the global leader in geolocation, with geofencing SDKs, maps APIs, and AI-enabled solutions for marketing, fraud, and operations teams. Despite our growth and scale, we're still just getting started. That's where you come in....SeniorWork at officeRemote work
- ...Oura is seeking a Senior Governance, Risk, Compliance (GRC) Analyst to join the Security Team in New York City. This role involves leading GRC initiatives, managing compliance policies, and performing risk assessments. Candidates should have over 6 years of experience...SeniorRemote workFlexible hours
- ...be a US Citizen or Green Card holder NO THIRD PARTIES Only local candidates will be contacted We are seeking a highly motivated GRC Analyst to support the modernization and transformation of our Governance, Risk, and Compliance (GRC) program. This role is ideal for someone...SeniorContract workLocal area
- ## Senior GRC AnalystApplylocations: Westerville, OHtime type: Full timeposted on: Posted Yesterdayjob requisition id: R-101927Kokosing... ...looking for a Security Governance, Risk, and Compliance (GRC) Analyst to support and mature our security and compliance programs...SeniorFor contractors
$140k - $165k
...Senior GRC Analyst Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold...SeniorLocal areaRemote workWorldwideFlexible hours- ...Sr. GRC Analyst, Risk Management Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk Register. This role is responsible for ensuring all identified...SeniorFor contractorsImmediate startFlexible hours
- ...The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk focused, highly analytical role that ensures all human and third‑party risk to Clayco is identified, quantified...SeniorImmediate startFlexible hours
$110k - $130k
...Senior GRC Analyst Blue J is the leading generative AI solution for tax professionals. As a B2B SaaS company, our customers are accountants and tax experts who rely on our market-leading software to deliver fast, accurate, and defensible answers to complex tax questions...SeniorWork at officeImmediate startRemote work- ...Senior GRC Analyst Orlando, Florida, United States At Morgan & Morgan, the work we do matters. For millions of Americans, we're their last line of defense against insurance companies, large corporations or defective goods. From attorneys in all 50 states, to client...SeniorFull timeLocal area
- ...Senior GRC Analyst | Deltek, Inc You will be part of the GRC team responsible for assessment, audits of cloud environments, information systems, risk management, and security tools to ensure adherence to applicable frameworks, laws, and regulations. As a Senior GRC...Senior
$130k - $150k
...and be part of a high-performing team that believes in each other, come build with us at Crusoe. About This Role We’re seeking a GRC Analyst to support the day-to-day execution of our Governance, Risk, and Compliance program. Reporting to the Head of GRC, this role focuses...SeniorTemporary work$161.6k - $202k
...— and that responsibility demands a security and compliance program that scales with the business. We're building out our dedicated GRC team to improve and mature our program! You'll join the Security team and work across four pillars: security certifications (HITRUST...SeniorWork from homeFlexible hours- ...Principal IAM GRC Analyst The Principal IAM GRC Analyst provides technical guidance, implementation, and enforcement of governance, risk and compliance for IAM-related functions. Additionally, the Principal Analyst utilizes existing systems to govern and manage user...
- ...GRC Program Operations Specialist Support day-to-day GRC program operations manage and triage GRC intakes and accurate tracking through resolution. Perform and support third-party risk management activities, including vendor reviews, reassessments, partner coordination...
$125k - $200k
...About the Role GRC at Simile means acting as the bridge between our technical operations and our business objectives, ensuring our... .... Manage Compliance & Audits: Act as a Customer Trust Analyst to address security-related inquiries. Track compliance status across...Flexible hours$135k - $165k
...platform and customer relationships. As we continue to scale, we are looking for a highly motivated Governance, Risk & Compliance (GRC) Analyst to support and mature Ivo's security compliance and risk management programs. Why Ivo? Every civilization runs on the same...Contract workFlexible hours- ...Overview The IT GRC Analyst operates within the enterprise Cybersecurity Operations function and supports the Information Technology, Information Systems, and other technology teams aligned under the Chief Information Officer. This role executes governance, risk, and compliance...Work at officeRemote work
- ...Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role As a GRC Analyst, you will help organizations navigate the complex landscape of cybersecurity compliance and risk management. You will work directly with clients to assess their...Full timeRemote work
$60k - $75k
...managing compliance, and helping keep cybersecurity and government contract requirements on track? Qualified Staffing is seeking a GRC Analyst for our client in Macon, GA. This position will support cybersecurity compliance, risk management, audit readiness, and...Contract workRelocationRelocation packageMonday to Thursday- ...Governance, Risk & Compliance (GRC) Analyst Position Title Description Apital is looking for a compliance-focused, detail-oriented GRC Analyst to support cybersecurity governance efforts across CBTC and PTC transit infrastructure projects. They will support ongoing regulatory...Flexible hours
- ...Location : Remote Reports to : GRC Manager Time commitment : minimum 20 hours weekly Headcount: 2 people Summary: The GRC analyst with a legal background is a critical hire for our rapid team. You will be responsible for building and maintaining the...Remote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr. GRC Analyst. Be the first to apply!
- grc analyst United States
- senior practice manager United States
- senior innovation manager United States
- senior warehouse manager United States
- senior game producer United States
- senior electronic design engineer United States
- senior quality assurance specialist United States
- senior robotics software engineer United States
- senior java software engineer United States
- senior specialist United States


