Professional Documents
Culture Documents
Job Summary:
As the Cybersecurity Analyst, you will own PatientPoint’s Risk Management, and Compliance
(GRC) programs. This mission-critical individual will perform IT risk assessments, manage risk
register items, manage the lifecycle of all risk acceptances and policy exceptions, and support
third-party/vendor risk management.
What We Need:
· 5+ years of professional information technology experience.
· 2+ years of experience in an IT security position with oversight of GRC process.
· Experience building and managing GRC frameworks and processes required.
· Experience with Agile Project Management methodologies.
· Experience using a ticketing system such as JIRA or ServiceNow.
· Strong, practical experience working in a HIPAA environment.
· Direct experience with implementation and management of security frameworks such as
ISO 27001, NIST, or CSF.
Desired Qualifications:
· Experience with GDPR, CCPA, VCDPA or related State or Federal privacy laws.
· One or more security related certifications such as Certified Information Systems Auditor
(CISA), or Certified Internal Auditor (CIA), Certified Information Systems Security Professional
(CISSP), Certified Information Systems Auditor (CISM), Certified Ethical Hacking (CEH), GIAC
Information Security Professional (GISP).