Sr. GRC Compliance Analyst
3 weeks ago
Ro is a direct-to-patient healthcare company with a mission of helping patients achieve their health goals by delivering the easiest, most effective care possible. Ro is the only company to offer nationwide telehealth, labs, and pharmacy services. This is enabled by Ro's vertically integrated platform that helps patients achieve their goals through a convenient, end-to-end healthcare experience spanning from diagnosis, to delivery of medication, to ongoing care. Since 2017, Ro has helped millions of patients in nearly every single county in the United States, including 98% of primary care deserts.
The healthcare system today is not designed to help patients achieve their goals. It's designed around institutions such as hospitals and insurance companies. A patient centric healthcare system is one that is designed around the goals a patient wants to achieve. We're building healthcare that puts patients in control, provides reactive and proactive care, has transparent pricing and process, is extremely effective and ridiculously convenient, and evolves over time based on patients' goals.
Ro has been recognized as a Fortune Best Workplace in New York and Health Care for four consecutive years (2021-2024). In 2023, Ro was also named Best Workplace for Parents for the third year in a row. In 2022, Ro was listed as a CNBC Disruptor 50.
The Governance Risk and Compliance Sr. Analyst role will be a core member of Ro's GRC team. The GRC team enables Ro to manage risk by vigorously assessing our operations against leading compliance frameworks and standing legislation. This individual contributor role will be a key player leading audit readiness program and other key risk initiatives.
What You'll Do:
- Lead Audit Readiness program, overseeing and driving Ro's audit readiness initiatives for both internal and external audits, ensuring full preparation and alignment with compliance requirements.
- Own and maintain the cyber risk register, collaborating with risk owners to quantify risks and develop remediation plans.
- Own Ro's security and privacy policy program.
- Develop and lead a risk and privacy analytics program that provides business context, supporting informed decision-making.
- Performing vendor risk assessments.
- 5 years' experience working with risk and compliance frameworks (HIPAA, NIST, HITRUST, SOC2, PCI)
- 3 years of demonstrated success in audit readiness activities
- Understanding of digital eCommerce platforms, electronic health records (EHR) systems, and traditional business-enabling IT services
- Knowledge of cloud computing platforms (e.g., Amazon Web Services, Microsoft Azure, Google Cloud) and their security and compliance features.
- Experience with automated, continuous compliance tools such as Vanta, Drata or Tugboat
- Expertise in using Looker (or similar BI tool) to create dashboards, generate reports, and visualize GRC data for stakeholders, with a focus on simplifying complex data into actionable insights.
- Ability to automate data ingestion, transformation, and reporting processes using scripting languages such as Python or JavaScript, particularly for integrating and managing data from APIs.
- Strong analytical and root cause analysis skills
- Demonstrated the ability to operate with fortitude and finesse while navigating compliance topics with stakeholders.
- Kindness, and an ability to communicate to all levels of the organization
- Strong experience in GRC applications such as OneTrust or Archer
- Full medical, dental, and vision insurance + OneMedical membership
- Healthcare and Dependent Care FSA
- 401(k) with company match
- Flexible PTO
- Wellbeing + Learning & Growth reimbursements
- Paid parental leave + Fertility benefits
- Pet insurance
- Student loan refinancing
- Virtual resources for mindfulness, counseling, and fitness
The target base salary for this position ranges from $133,500 to $157,500, in addition to a competitive equity and benefits package (as applicable). When determining compensation, we analyze and carefully consider several factors, including location, job-related knowledge, skills and experience. These considerations may cause your compensation to vary.
Ro recognizes the power of in-person collaboration, while supporting the flexibility to work anywhere in the United States. For our Ro'ers in the tri-state (NY) area, you will join us at HQ on Tuesdays and Thursdays. For those outside of the tri-state area, you will be able to join in-person collaborations throughout the year (i.e., during team on-sites).
At Ro, we believe that our diverse perspectives are our biggest strengths - and that embracing them will create real change in healthcare. As an equal opportunity employer, we provide equal opportunity in all aspects of employment, including recruiting, hiring, compensation, training and promotion, termination, and any other terms and conditions of employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, familial status, age, disability and/or any other legally protected classification protected by federal, state, or local law.
See our California Privacy Policy here.
-
Senior GRC Analyst
1 month ago
New York, United States Cantor Fitzgerald Full timeThe Information Security-GRC (Governance Risk and Compliance) Team is looking for an experienced risk and compliance professional to help drive the efforts across Cybersecurity controls framework initiatives, such as user access recertification, policy management, vendor assessment and client due diligence. This role will also be responsible furthering...
-
GRC Platform Lead
4 weeks ago
New York, United States Solomon Page Full timeOur direct global corporate financials client is seeking to add a dynamic GRC Platform Product Lead to their team in a long term contract consulting capacity (possibility of conversion to FTE down the line for the right candidate). This role requires a hands-on leader who is equally comfortable driving execution, managing projects, and engaging with...
-
Senior GRC Analyst
1 month ago
new york city, United States Cantor Fitzgerald Full timeThe Information Security-GRC (Governance Risk and Compliance) Team is looking for an experienced risk and compliance professional to help drive the efforts across Cybersecurity controls framework initiatives, such as user access recertification, policy management, vendor assessment and client due diligence. This role will also be responsible furthering...
-
IT Analyst Sr.
6 months ago
New Orleans, United States First Horizon Bank Full timeSUMMARY Compliance role within IT. ESSENTIAL DUTIES AND RESPONSIBILITIES · Maintain compliance program within IT including SOX, PCI, and banking regulations. · Designing and maintaining workflow documentation to clearly identify key control activities within process design. · Consult during technology implementation projects applying...
-
GRC Platform Lead
4 weeks ago
new york city, United States Solomon Page Full timeOur direct global corporate financials client is seeking to add a dynamic GRC Platform Product Lead to their team in a long term contract consulting capacity (possibility of conversion to FTE down the line for the right candidate). This role requires a hands-on leader who is equally comfortable driving execution, managing projects, and engaging with...
-
GRC Platform Lead
4 weeks ago
new york city, United States Solomon Page Full timeOur direct global corporate financials client is seeking to add a dynamic GRC Platform Product Lead to their team in a long term contract consulting capacity (possibility of conversion to FTE down the line for the right candidate). This role requires a hands-on leader who is equally comfortable driving execution, managing projects, and engaging with...
-
Lead Analyst, Governance, Risk, and Compliance
4 weeks ago
New York, United States Sirius XM Radio Inc Full timeWho We Are: SiriusXM and its brands (Pandora, SiriusXM Media, AdsWizz, Simplecast, and SiriusXM Connect) are leading a new era of audio entertainment and services by delivering the most compelling subscription and ad-supported audio entertainment experience for listeners -- in the car, at home, and anywhere on the go with connected devices. Our vision is to...
-
Senior GRC Analyst
3 weeks ago
New York, NY, United States Cantor Fitzgerald Full timeThe Information Security-GRC (Governance Risk and Compliance) Team is looking for an experienced risk and compliance professional to help drive the efforts across Cybersecurity controls framework initiatives, such as user access recertification, policy management, vendor assessment and client due diligence. This role will also be responsible furthering...
-
Senior Governance, Risk
2 weeks ago
New York, United States CoreWeave Full timeJob DescriptionJob DescriptionCoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI. The company's technology provides enterprises and leading AI labs with the most performant, efficient and resilient solutions for accelerated computing. Since 2017, CoreWeave has operated a growing footprint...
-
Sr. Information Security Analyst
1 month ago
New York, United States Social Capital Resources Full timeSenior Information Security AnalystLocation: Onsite in NYC Midtown, 5 days a weekAs a Senior Information Security Analyst, you will serve as a key risk manager responsible for identifying, assessing, and escalating security risks. You will collaborate closely with the Security and IT Infrastructure teams to support various security administration tasks and...
-
GRC Platform Lead
3 weeks ago
New York, NY, United States Solomon Page Full timeOur direct global corporate financials client is seeking to add a dynamic GRC Platform Product Lead to their team in a long term contract consulting capacity (possibility of conversion to FTE down the line for the right candidate). This role requires a hands-on leader who is equally comfortable driving execution, managing projects, and engaging with...
-
Sr. Credit Analyst
4 weeks ago
New York, United States Allied World Insurance Company Full timeJob Objectives: We are seeking a Sr. Credit Analyst in the Trade Credit division. The person in this position will provide financial analysis and credit write-ups on key Buyer/Obligor exposures the division manages or has opportunity to quote as part of a trade credit submission. There could be some travel requirements. The Sr. Analyst and Underwriter will...
-
Sr. Credit Analyst
4 weeks ago
New York, United States Allied World Full timeJob Objectives: We are seeking a Sr. Credit Analyst in the Trade Credit division. The person in this position will provide financial analysis and credit write-ups on key Buyer/Obligor exposures the division manages or has opportunity to quote as part of a trade credit submission. There could be some travel requirements. The Sr. Analyst and Underwriter...
-
Sr. QC Analyst Bioassay
3 weeks ago
New York, United States Innova Full timeInnova Solutions has a client that is immediately hiring for Sr. QC Analyst Bioassay. Position type: Fulltime – Contract Duration: 6 Months Location: New York NY 10017 As Sr. QC Analyst Bioassay
-
Sr. Information Security Analyst
4 weeks ago
new york city, United States Social Capital Resources Full timeSenior Information Security AnalystLocation: Onsite in NYC Midtown, 5 days a weekAs a Senior Information Security Analyst, you will serve as a key risk manager responsible for identifying, assessing, and escalating security risks. You will collaborate closely with the Security and IT Infrastructure teams to support various security administration tasks and...
-
Sr. Information Security Analyst
1 month ago
new york city, United States Social Capital Resources Full timeSenior Information Security AnalystLocation: Onsite in NYC Midtown, 5 days a weekAs a Senior Information Security Analyst, you will serve as a key risk manager responsible for identifying, assessing, and escalating security risks. You will collaborate closely with the Security and IT Infrastructure teams to support various security administration tasks and...
-
New York, New York, United States Northwestern Mutual Life Insurance Company Full timeWe are seeking an experienced IT Governance, Risk, and Compliance Strategy Lead to drive the strategic IT GRC division's vision, operating model, budget, and planning activities. As a trusted advisor to the VP of IT GRC, you will serve as a key decision-maker and strategist, leading cross-functional initiatives and facilitating effective decision-making.Job...
-
Technology Risk Management Analyst Sr
2 weeks ago
New York, United States Flagstar Bank Full timePay Range: 112- 140KJOB SUMMARYAs a key member of the second line of defense Technology, Cyber, Third Party Risk Management & Resilience Risk Management team, the Technology Risk Senior Analyst will support the Technology Risk team to fulfill the Bank’s Second Line of Defense (“2LoD”) mandate to identify, measure, monitor, and manage the Information...
-
Senior GRC Recruitment Consultant
3 weeks ago
New York, United States Hamlyn Williams Full timeExperienced Recruitment Consultant – GRC/Corporate Governance360/Full Desk Recruitment - Business Development and RecruitmentWhy Hamlyn Williams?Hamlyn Williams continues to be the global market leader in Regulated Industries Recruitment. Our brands span across Financial Services, Life Sciences & Technology. Founded in London in 2011, we have continued to...
-
Sr. Data Analyst
4 weeks ago
New York, United States TechnoGen Full timePosition- Sr. Data Analyst Location- Remote, New York Duration- Long Term Experience- 12+ Years JD- Top 3 skills to perform this role? Python, GoLang, Java, Spark, Postgres. Here is the JD : Technical expertise with data models, data analytical techniques. Knowledge of programming languages (Java ,Python,Go) Hands-on experience with SQL database design...
