Senior Security Compliance Analyst - (Remote - US)

Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.

One of our companies is currently looking for a Senior Security Compliance Analyst in United States.

As a Senior Security Compliance Analyst, you will be instrumental in supporting and enhancing the company’s security and compliance programs within the healthcare sector. You will be responsible for ensuring adherence to industry regulations, responding to audits, and maintaining compliance with critical frameworks such as ISO 27001, HIPAA, and NIST. The ideal candidate will have a deep understanding of regulatory environments and the ability to assess and manage security risks, ensuring compliance standards are consistently met while driving ongoing improvements to security governance.

Accountabilities:

• Lead and support customer security audits, respond to security questionnaires, and demonstrate compliance with industry security frameworks.
• Coordinate and manage ISO 27001 audits, including evidence collection, control implementation, and auditor engagement.
• Maintain ongoing compliance with healthcare data security regulations, such as HIPAA, NIST CSF, and other applicable frameworks.
• Develop and update policies, procedures, and documentation to ensure compliance with regulatory and contractual obligations.
• Conduct risk assessments, gap analyses, and security control evaluations to identify and mitigate compliance risks.
• Support security awareness programs to ensure employees understand their compliance responsibilities.

• 8+ years of experience in Governance, Risk, and Compliance (GRC), risk management, or IT audit, with a focus on ISO 27001, HIPAA, and HITRUST.
• Proven experience leading ISO 27001 audits, including ISMS implementation and external audit coordination.
• Strong knowledge of NIST CSF, SOC 2, GDPR, and other relevant security frameworks.
• Hands-on experience with customer security audits and managing security assessments.
• Expertise in performing risk assessments, policy reviews, and compliance gap analyses.
• Familiarity with GRC tools such as OneTrust, LogicGate, Archer, Vanta, or Drata is a plus.
• Preferred certifications: ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC.
• Comprehensive medical, dental, and vision insurance plans for you and your family.
• Flexible paid time off (PTO) and 10 US observed holidays.
• Home office stipend and 401(k) for US-based employees.
• Paid parental leave and a sabbatical program.
• Opportunities for professional growth and training.
• A collaborative and inclusive work culture with a focus on diversity.

Jobgether hiring process disclaimer

This job is posted on behalf of one of our partner companies. If you choose to apply, your application will go through our AI-powered 3-step screening process, where we automatically select the 5 best candidates.

Our AI thoroughly analyzes every line of your CV and LinkedIn profile to assess your fit for the role, evaluating each experience in detail. When needed, our team may also conduct a manual review to ensure only the most relevant candidates are considered.

Our process is fair, unbiased, and based solely on qualifications and relevance to the job. Only the best-matching candidates will be selected for the next round.

If you are among the top 5 candidates, you will be notified within 7 days.
If you do not receive feedback after 7 days, it means you were not selected. However, if you wish, we may consider your profile for other similar opportunities that better match your experience.