Senior Security GRC Engineer
Company: Hill Physicians Medical Group
Location: San Ramon
Posted on: November 26, 2025
|
|
|
Job Description:
Job Description At PriMed, your uniqueness is valued,
celebrated, encouraged, supported, and embraced. Whatever your
relationship with Hill Physicians, we welcome ALL that you are. We
value and respect your race, ethnicity, gender identity, sexual
orientation, age, religion, disabilities, experiences,
perspectives, and other attributes. Our celebration of diversity
and foundation of inclusion allows us to leverage our differences
and capitalize on our similarities to better serve our communities.
We do it because it's right! Job Description We are seeking a
skilled Governance, Risk, and Compliance (GRC) Engineer to
strengthen our security posture and ensure adherence to healthcare
regulations. The GRC Engineer will play a vital role in designing,
implementing, and maintaining risk management processes, compliance
frameworks, and policies that align with healthcare regulations
such as HIPAA and HITECH. The ideal candidate will have experience
with tools like SAI360, CyberArk, and other compliance and security
platforms. Job Responsibilities: Develop, implement, and maintain
GRC policies, processes, and controls in alignment with industry
best practices and regulatory requirements (e.g., HIPAA, HITECH,
NIST, ISO 27001). Perform risk assessments and develop mitigation
strategies for identified security risks. Administer and optimize
SAI360 for governance, risk management, and compliance activities,
including reporting and policy management. Collaborate with
cross-functional teams to ensure new projects and systems are
designed with security and compliance in mind. Monitor and report
on compliance status, identifying gaps and proposing remediation
strategies. Oversee third-party vendor risk assessments and ensure
adherence to security requirements. Support internal and external
audits by providing documentation, evidence, and responses to audit
findings. Conduct security awareness training programs and promote
a culture of compliance within the organization. Required
Experience/Skills/Knowledge: 5 years of experience in Governance,
Risk, and Compliance roles or a related field. Strong knowledge of
healthcare regulations, including HIPAA, HITECH, and other relevant
standards. Proficiency in GRC tools such as SAI360 for compliance
and risk management. Experience with privileged access management
tools like CyberArk. Solid understanding of risk assessment
methodologies and security frameworks, including NIST CSF, ISO
27001, or COBIT. Excellent communication and collaboration skills
to engage with technical and non-technical stakeholders. Strong
analytical and organizational skills with attention to detail. This
role is critical in maintaining our organization’s compliance with
healthcare security standards and reducing risk exposure. Required
Education: Bachelor’s degree in computer science, Information
Technology, Cybersecurity, or a related field. Equivalent work
experience may be considered in lieu of a degree.
Keywords: Hill Physicians Medical Group, San Ramon , Senior Security GRC Engineer, IT / Software / Systems , San Ramon, California
