Remote Staff Security Engineer - Governance, Risk, and Compliance (GRC)

Description:

• Foodsmart is seeking a Governance, Risk, and Compliance (GRC) Lead to manage compliance programs, respond to customer security inquiries, lead audit processes, and collaborate with stakeholders.
• This role reports directly to the Chief Information Security Officer (CISO) and requires a self-starter who can execute GRC initiatives with minimal supervision.
• The position involves ensuring compliance with healthcare privacy regulations such as HIPAA, HITRUST CSF, CCPA, and other state-specific privacy laws.
• Responsibilities include conducting internal audits, risk assessments, and vulnerability scans, managing external certifications, responding to customer security questionnaires, and collaborating with various teams.
• The role also requires developing and maintaining policies, performing risk assessments on cloud infrastructure and third-party vendors, monitoring security incidents, and automating compliance workflows.
• Staying updated on emerging threats and regulatory changes is essential to adapt policies accordingly.

Requirements:

• Candidates must have at least 5-8 years of experience in governance, risk management, compliance (GRC), privacy, or information security roles within regulated industries such as healthcare or technology.
• Proven expertise in managing enterprise risks and leading compliance initiatives such as SOC 2 or HITRUST certification processes is required.
• Deep knowledge of healthcare privacy regulations like HIPAA and HITRUST CSF, as well as state-specific laws like CCPA, is necessary.
• Experience in responding to customer security questionnaires and managing customer audits or inquiries is essential.
• Technical familiarity with cloud infrastructure (AWS), SaaS security models, vulnerability management tools, and risk assessment methodologies is required.
• Exceptional written and verbal communication skills are necessary to engage effectively with internal teams and external stakeholders.

Benefits:

• The position offers a salary range of $175,000 to $190,000 per year, along with equity and benefits.
• Foodsmart is a remote-first company, providing unlimited PTO and flexible remote location options.
• Comprehensive healthcare coverage, including medical, dental, and vision, is provided.
• Employees have access to a 401k plan, bonuses, and stock options.
• Registered Dietitian sessions and wellness reimbursement are also included as part of the benefits package.