At a Glance

RVO Health is looking for an experienced Senior Security GRC Analyst to focus on supporting internal existing IT systems and assist in the evaluation of new systems with existing and future regulations, including but not limited to HIPAA, ISO 27001, SOC 2, GDPR and CCPA. 

Reporting to the Manager, GRC, you will work with internal and external partners and stakeholders as well as internal teams to ensure that we hold ourselves to the highest standards with regards to security and privacy compliance certifications and requirements.

As a security team member, you will be essential to our audit program and evidence collection process.   

You will also assist in responding to customer security and privacy RFPs, questionnaires, and concerns, and develop customer-facing responses and collateral. You will advocate information security and privacy throughout the organization, while providing business and technical advice across a wide variety of information security or privacy issues, concerns, and problems. We work with the business to solve business problems. 

What You’ll Do

• Organize, manage, and track evidence collection for internal and external audits as part of the continuous compliance process.


• Ensure alignment on compliance standards and protocols of cross-functional teams through regular, effective collaboration (e.g. User Success, Product & Design, Security & IT, External Affairs)


• Foster a quality culture focused on meeting high quality, ethical, and compliant standards.


• Work continuously to improve security and compliance posture and maturity. (e.g., SOC 2, HIPAA, ISO 27001, NIST CSF, GDPR, CCPA, etc).


• Educate internal and external stakeholders on compliance certifications, workflows and processes.


• Own and drive remediation of Security Compliance findings from audits and compliance reviews.


• Responsible for representing the Security Compliance team to internal and external stakeholders. 


• Take ownership of any projects that arise or changes to security compliance program due to Security findings.


• Assist with third party vendor management, new tool reviews and requests, asset management and conduct third party annual security compliance reviews. 

What We’re Looking For

• 4+ years’ experience in healthcare compliance or quality setting


• Has experience with compliance and how it works with cloud-native technology stacks. (e.g., SSO, PII, etc)


• Has experience supporting transparent compliance programs.


• Has 2+ years of experience participating and improving security compliance programs using security compliance standards and frameworks. 


• Has experience collaborating with cross-functional teams. 


• Has experience organizing, leading, and gathering evidence for internal and external Audits.


• A “can-do, get-it-done” attitude. Takes ownership of tasks, projects and relationships.


• Background in evaluating controls relative to information security frameworks and privacy regulations such ISO 27001, ISO 27701, GDPR, CCPA, NIST 800 series, HIPAA and others.


• Demonstrated willingness to work both independently and as part of a team.


• Personally committed to learning and actively working to continuously develop professionally.


• Ability to multitask, work under tight time pressures, prioritize work, and react quickly to changing business needs and demands all in a fast-paced, high-growth business environment.


• High level of integrity and trust, and ability to maintain confidentiality.


• Ability to work effectively with others at all levels across the organization.

Desired Qualifications

• You are a team player, great communicator, and enjoy collaborating with cross-functional teams.


• You possess a proven ability to employ a flexible and constructive approach when solving problems.


• You have a passion for improving security compliance programs, standards, and frameworks.


• Familiarity or ability to become familiar with state-specific laws and regulations around telemedicine and telehealth.


• You have great communication skills, and you possess a proven ability to use a flexible and constructive approach when solving problems. 


• You are solution-oriented, highly motivated, and an enthusiastic self-starter who enjoys closing out tasks and projects. 

Pursuant to various state Fair Pay Acts, below is a summary of compensation elements for this role at the company. The following benefits are provided by RVO Health, subject to eligibility requirements.

• Starting Salary: $80,000 - $130,000
  *Note actual salary is based on geographic location, qualifications and experience


• Health Insurance Coverage (medical, dental, and vision)


• Life Insurance


• Short and Long-Term Disability Insurance


• Flexible Spending Accounts


• Paid Time Off


• Holiday Pay


• 401(k) with match


• Employee Assistance Program


• Paid Parental Bonding Benefit Program

Who We Are: 

Founded in 2022, RVO Health is a new healthcare platform of digital media brands, services and technologies focused on building relationships with people throughout their health & wellness journey. We meet people where they are in their personal health journeys and connect them with both the information and the care they need. RVO Health was created by joining teams from both Red Ventures and UnitedHealth Group’s Optum Health. Together we’re focused on delivering on our vision of a stronger and healthier world. 

RVO Health is comprised of Healthline Media (Healthline, Medical News Today, Psych Central, Greatist and Bezzy), Healthgrades, FindCare and PlateJoy; Optum Perks, Optum Store and the virtual coaching platforms Real Appeal, Wellness Coaching, and QuitForLife. 

We will use the remainder of 2022 to separate from Red Ventures and fully transition into the new entity. We will communicate fully and transparently along the way, honoring the culture, people, processes and spirit that got us to this point.

We offer competitive salaries and a comprehensive benefits program for full-time employees, including medical, dental and vision coverage, paid time off, life insurance, disability coverage, employee assistance program, 401(k) plan and a paid parental leave program. 

RVO Health is an equal opportunity employer that does not discriminate against any employee or applicant because of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or any other basis protected by law. Employment at RVO Health is based solely on a person's merit and qualifications.  

We are committed to providing equal employment opportunities to qualified individuals with disabilities. This includes providing reasonable accommodation where appropriate. Should you require a reasonable accommodation to apply or participate in the job application or interview process, please contact accommodation@redventures.com.

#LI-REMOTE

#LI-NR