Sr. Compliance Analyst (remote)

At Claritev, we pride ourselves on being a dynamic team of innovative professionals. Our purpose is simple - we strive to bend the cost curve in healthcare for all. Our dedication to service excellence extends to all our stakeholders – internal and external - driving us to consistently exceed expectations. We are intentionally bold, we foster innovation, we nurture accountability, we champion diversity, and empower each other to illuminate our collective potential.

Be part of our amazing transformational journey as we optimize the opportunity towards becoming a leading technology, data, and innovation voice in healthcare. Onward and Upward!!!

JOB SUMMARY:

This position is primarily focused on information security governance and compliance activities and plays a key role in supporting the organization’s Information Security compliance program within a highly regulated healthcare environment. The role is responsible for executing and improving governance and compliance processes related to regulatory alignment, audit readiness, policy management, client assurance activities, and control documentation, with primary emphasis on HIPAA, HITRUST, SOC 2, and FedRAMP, in addition to other regulatory or contractual requirements.

Working under the direction of the AVP, Information Security, this role helps inform process and program improvements while primarily supporting execution of governance and compliance activities across the organization.

JOB ROLES AND RESPONSIBILITIES:

Governance & Regulatory Compliance

1. Maintain compliance documentation, control inventories, evidence repositories, and regulatory/control mappings to effectively demonstrate adherence to healthcare, information security, and contractual requirements.
2. Support compliance assessments, readiness reviews, and control validation activities to confirm alignment with regulatory, audit, and contractual requirements.
3. Provide guidance to control owners regarding compliance obligations, documentation expectations, evidence collection, remediation activities, and audit readiness.
4. Develop and maintain compliance metrics, dashboards, and reporting to support visibility into governance and compliance activities.

Compliance & Governance process development and improvement

1. Support the development, documentation, and improvement of governance and compliance processes to enhance consistency, audit readiness, regulatory alignment, and operational efficiency.
2. Provide input into ongoing maturation of governance and compliance processes and help execute approved improvement initiatives.

GRC application operation and improvement

1. Support administration, reporting, workflow updates, and ongoing enhancement governance and compliance tooling used to manage requirements, evidence, and related activities.
2. Assist with requirements gathering, testing, reporting improvements, and workflow updates governance and compliance tooling, as needed.

Audit and Compliance

1. Stay current on relevant regulatory requirements, audit expectations, and information security compliance and assurance practices; recommend updates to documentation, controls, policies, standards, and procedures as needed.
2. Support audit and assurance activities related to HIPAA, HITRUST, SOC2, client requirements, security questionnaires, and other applicable reviews or certifications by coordinating evidence collection, reviewing documentation, validating control statements, supporting control owners, and tracking remediation activities.
3. Assist with responses to client security questionnaires, due diligence requests, and customer audit inquiries in partnership with stakeholders across Security, Technology, Legal, and other teams.
4. Lead and support the development, review, maintenance, and updating of information security policies, procedures, standards, and related documentation to align with regulatory requirements, audit expectations, healthcare industry standards, and contractual obligations.
5. Assist with the development and implementation of the organization’s security awareness training to ensure alignment with compliance requirements.

General

1. Identify opportunities to improve governance, compliance, audit readiness, and related documentation/process effectiveness across the organization.
2. Support other governance, compliance, and related assurance activities as assigned.
3. Collaborate, coordinate, and communicate across disciplines and departments with colleagues in Information Security, Technology, Legal, Internal Audit, and others.
4. Demonstrate Company’s Core Competencies and values held within.
5. The position responsibilities outlined above are in no way to be construed as all encompassing. Other duties, responsibilities, and qualifications may be required and/or assigned as necessary.

JOB SCOPE:

This incumbent works under limited supervision and applies independent judgment in interpreting regulatory requirements, audit expectations, and governance standards. Work includes documentation review, audit coordination, client assurance support, and process execution in partnership with stakeholders across Information Security, Technology, Legal, Internal Audit, and business teams. The incumbent will have regular contact with all levels, including internal and external parties, to complete objectives, keeping the needs of external and internal customers as a priority when making decisions and taking action.

REQUIREMENTS (Education, Experience, and Training):

• 5-8+ years of experience in Information Security Compliance, IT Compliance, Healthcare Compliance, Governance, or audit-related roles
• Experience in the healthcare industry is preferred.  
• Experience supporting HITRUST, SOC 2, HIPAA, FedRAMP, and related audit or compliance activities.
• Understanding of IT technical controls and the ability to translate regulatory audit, and contractual requirements into documentation, evidence, and control expectations.
• Strong understanding of governance processes, compliance operations, and audit readiness practices.
• Experience working with governance/compliance or GRC tools preferred.
• Knowledge of security and compliance frameworks such as HITRUST, HIPAA, SOC 2, NIST, or ISO 27001.
• Certifications such as CISA, CISM, CISSP, or HITRUST-related credentials are preferred.
• Excellent communication skills (written, verbal and listening); able to clearly communicate complex information in an easy to understand manner; able to deliver message effectively verbally and in writing.
• Ability to present to small and midsize audiences.
• Ability and willingness to learn and maximize the use of technology relevant to job responsibilities.
• Ability to maintain confidentiality of sensitive information.
• Ability to work independently as well within a team.
• Ability to organize, prioritize, and coordinate multiple work activities and meet target deadlines.
• Ability to be flexible when there are schedule or priority changes and last-minute requests.
• Ability to travel as needed to Company locations and third-party locations within the US.
• Required licensures, professional certifications, and/or Board certifications as applicable.
• Individual in this position must be able to work in a standard office environment which requires sitting and viewing monitor(s) for extended periods of time, operating standard office equipment such as, but not limited to, a keyboard, copier and telephone

COMPENSATION

The salary range for this position is $120-155k. Specific offers take into account a candidate’s education, experience and skills, as well as the candidate’s work location and internal equity. This position is also eligible for health insurance, 401k and bonus opportunity.

BENEFITS

We realize that our employees are instrumental to our success, and we reward them accordingly with very competitive compensation and benefits packages, an incentive bonus program, as well as recognition and awards programs.  Our work environment is friendly and supportive, and we offer flexible schedules whenever possible, as well as a wide range of live and web-based professional development and educational programs to prepare you for advancement opportunities.

Your benefits will include:

• Medical, dental and vision coverage with low deductible & copay
• Life insurance
• Short and long-term disability
• Paid Parental Leave
• 401(k) + match
• Employee Stock Purchase Plan
• Generous Paid Time Off – accrued based on years of service
  • WA Candidates: the accrual rate is 4.61 hours every other week for the first two years of tenure before increasing with additional years of service
• 10 paid company holidays
• Tuition reimbursement
• Flexible Spending Account
• Employee Assistance Program
• Sick time benefits – for eligible employees, one hour of sick time for every 30 hours worked, up to a maximum accrual of 40 hours per calendar year, unless the laws of the state in which the employee is located provide for more generous sick time benefits

EEO STATEMENT

Claritev is an Equal Opportunity Employer and complies with all applicable laws and regulations.  Qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability or protected veteran status.  If you would like more information on your EEO rights under the law, please click here.

APPLICATION DEADLINE

We will generally accept applications for at least 5 calendar days from the posting date or as long as the job remains posted.

#LI-MZ1