Sr GRC Analyst
Harris Health System is the public healthcare safety-net provider established in 1966 to serve the residents of Harris County, Texas. As an essential healthcare system, Harris Health champions better health for the entire community, with a focus on low-income uninsured and underinsured patients, through acute and primary care, wellness, disease management and population health services. Ben Taub Hospital (Level 1 Trauma Center) and Lyndon B. Johnson Hospital (Level 3 Trauma Center) anchor Harris Health's robust network of 39 clinics, health centers, specialty locations and virtual (telemedicine) technology. Harris Health is among an elite list of health systems in the U.S. achieving Magnet® nursing excellence designation for its hospitals, the prestigious National Committee for Quality Assurance designation for its patient-centered clinics and health centers and its strong partnership with nationally recognized physician faculty, residents and researchers from Baylor College of Medicine; McGovern Medical School at The University of Texas Health Science Center at Houston (UTHealth); The University of Texas MD Anderson Cancer Center; and the Tilman J. Fertitta Family College of Medicine at the University of Houston.
Job Summary
The Sr GRC Analyst plays a key role in supporting the organizations governance, risk, and compliance program by leading complex risk assessments, advising stakeholders on security and compliance matters, and contributing to risk management strategy. This role evaluates security controls, supports audits and regulatory initiatives, and assists in the development and refinement of policies, standards, and procedures. The Sr GRC Analyst partners with business, technical, and compliance teams to identify, analyze, and mitigate information security risks while promoting a culture of security and accountability. Through use of GRC tools and continuous professional development, the role strengthens the organizations security posture and supports strategic risk management initiatives.
Minimum Qualifications
Degrees / Work Experience / School Education:
Bachelor's Degree in Information Systems, Business Management (And) Five (5) Years Work Experience of related industry experience (business).
(Or)
High School Diploma GED (And) Nine (9) Years Work Experience related industry experience (business).
(And)
Certified Information Privacy Professional (Or) Cert IS Auditor (Or) Cert IS Manager (Or) Cert Info Sys Security Prof (Or) Certified in Risk and Information Systems Control (Or) Global Information Assur Cert (Or) HealthCare IS and Privacy Practitioner. One must be obtained within 12 months of accepting position.
Communication Skills:
Exceptional Verbal (Public Speaking)
Writing/Correspondence
Proficiencies:
MS Word
Personal Computer
Job Attributes
Knowledge/Skills/Abilities:
Analytical Abilities
Work Schedule:
Eligible for Telecommute
Other Requirements:
Knowledge of HIPAA Security rule, HITECH, Payment Card Industry (PCI). Previous IT audit experience, or equivalent combination of education and experience. Previous experience with ServiceNow and PowerBi preferred. Ability to evaluate, review and report on a range of information systems and applications to include' EPIC, Windows, Unix, IBM, Cisco,