Information Security GRC Analyst Job at Mom's Meals, a PurFoods Company, Ankeny, IA

cm5jdTlkSEpYcmpDQ1FFUkNBMWZSb3l0S0E9PQ==
  • Mom's Meals, a PurFoods Company
  • Ankeny, IA

Job Description

Position Summary

We are seeking a proactive and detail-oriented Governance, Risk, and Compliance (GRC) Analyst to join our growing Information Security team. In this role, you will support the development, implementation, and maintenance of the companys GRC framework, ensuring compliance with healthcare regulations, privacy standards, and risk management principles. You will assist in activities related to HIPAA, HITRUST, and third-party risk assessments while collaborating closely with cross-functional teams to safeguard sensitive health data, including Protected Health Information (PHI). This role will report to the GRC Team Lead.

This position can be hybrid but must be local to the Des Moines, IA or surrounding area to work onsite as needed (multiple days during training, then 1-2 times/month) and when others from the team are onsite.

Position Responsibilities may include, but not limited to

  • Governance & Risk Management: Contribute to the ongoing development and maintenance of the GRC framework, policies, and procedures, ensuring alignment with regulatory requirements, privacy standards, and business objectives, particularly regarding PHI protection
  • HITRUST Certification: Assist with the HITRUST certification process by gathering necessary documentation, participating in assessments, and ensuring that audits are up to date and complete
  • Third-Party Risk Assessments: Aid in conducting third-party risk assessments, ensuring that vendors comply with required security and privacy regulations.
  • Collaboration with Cross-Functional Teams: Collaborate with internal teams (e.g., Compliance, Legal, IT) to align risk management practices across the organization and support the overall governance strategy
  • Risk Reporting & Analysis: Contribute to the identification and assessment of key risks, helping to produce reports that provide actionable insights
  • Continuous Improvement: Stay up to date with industry trends, regulatory changes, and emerging risks to ensure that the companys GRC practices remain effective and relevant
  • Training & Awareness: Promote risk awareness within the organization and provide training and guidance on key regulations
  • Oversee tools that highlight data classification inside of the enterprise
  • Assist in monitoring security logs and daily activities for suspicious behavior and escalate incidents as necessary
  • Assist with the drafting, reviewing, and updating of information security policies to ensure alignment with regulatory requirements and best practices for healthcare organizations
  • Actively support the organization's incident response efforts, including assisting in the investigation, containment, and remediation of security incidents
  • Be part of the on-call rotation for incident response, providing critical support during after-hours or emergency security incidents

Required Skills and Experience

  • Proven experience (3+ years) in GRC or risk management, with a strong focus on governance and risk
  • Hands-on experience supporting the management of HITRUST certification
  • Strong understanding of risk management principles, frameworks, and methodologies (e.g., NIST, ISO 27001)
  • Knowledge of regulatory compliance such as HIPAA, HITRUST, GDPR, CCPA, and PCI DSS
  • Experience working with cross-functional teams to drive security and risk initiatives
  • Experience in conducting or supporting third-party risk assessments, especially in relation to healthcare data security and privacy
  • Excellent communication skills with the ability to explain complex risk and governance concepts to both technical and non-technical stakeholders
  • Strong analytical and problem-solving skills
  • Ability to work independently and manage multiple priorities in a fast-paced environment
  • Strong organizational and time management skills
  • Continuous drive to learn and grow professionally in the fields of GRC and information security

Preferred Skills and Experience

  • Relevant certifications (e.g., Security+, CRISC, CISM, CISSP)

Physical Requirements

  • Repetitive motions that include the wrists, hands and/or fingers
  • Sedentary work that primarily involves sitting, remaining in a stationary position for prolonged periods
  • Visual perception to perform job including peripheral vision, depth perception, and the ability to adjust focus
Mom's Meals, a PurFoods Company

Job Tags

Local area,

Similar Jobs

Dignity Health

Child Life Specialist Job at Dignity Health

 ...Minimum:One (1) year in acute health.Bachelors degree in Child Life Child Development or related field.Must have knowledge of and...  ....CHILDLIFE/PLAY THERAPY COORD = Certified Child Life Specialist.CT CPRBLS - Basic Life Support - AHAOverviewAs the community... 

Comphealth

Physician Hematology Oncology Job at Comphealth

 ...nursing staff have a BSN and OCN certification. Enjoy a 4.5-day workweek, 7 weeks of vacation, and $100k in flexible recruitment funds. Live in an area centrally located between multiple metro hubs with low cost of living and access to great public and private schools.... 

Drew School

JV Boys Basketball Coach Job at Drew School

 ...Description Job Description Description: The Drew School, a member of the Bay Area Conference, invites applications for JV Boys Basketball Coach positions. Drew School seeks a candidate whose experience will contribute to the School's commitment to diversity and... 

InSync Healthcare Recruiters

Pulmonary Critical Care Physician Job at InSync Healthcare Recruiters

Pulmonary Critical Care opportunity 20 Minutes from Chattanooga, TN - 90 Minutes to AtlantaFor over five years we have had strong growth in our clinics and pulmonary consult service. This practice has grown to 13 Doctors and 3 Advanced Practice Providers. The group has... 

UPMC - Pittsburgh Medical Center

Graduate Nurse: UPMC Mercy Job at UPMC - Pittsburgh Medical Center

 ...Are you a current student nurse graduating in Fall/Winter 2025 or Spring/Summer 2026 and looking to continue your nursing career at UPMC? \n UPMC Mercy is pleased to announce we are NOW HIRING Graduate Nurses as full-time Professional Staff Nurses. Graduate Nurse...