Senior GRC Analyst
TinesSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Healthcare Technology, Mental Health ServicesIndustries
Requirements
Candidates should have 5+ years of experience alongside security and/or software engineering roles in startup or growth stage teams with a demonstrated history of delivering on governance, risk, and compliance goals, and strong technical depth and breadth with experience with secure product platforms. Strong knowledge of security and privacy principles is required, as well as experience with various compliance frameworks such as SOC2, HiTrust, GDPR/CCPA, and experience with tools like Wiz, Datadog, and PagerDuty.
Responsibilities
The Senior GRC Analyst will build, extend, and connect Headway risk and compliance processes that scale with the business, coordinate security or privacy certification audits, partner with Trust and Engineering teams to identify risk signals, and assist in ongoing security operations including incident response, vulnerability management, and penetration testing. They will also be responsible for building and maintaining a Common Controls Framework to align and continuously monitor shared compliance and risk controls across different certifications and customer requirements.
Skills
Risk Management
Compliance Frameworks
Security Engineering
Risk and Compliance Processes
Partnering with Security, IT, Engineering
Headway
Connects patients with affordable mental health services
About Headway
Headway simplifies the process of finding and paying for mental health therapy. It operates in the mental health market, addressing the challenge that many Americans face in accessing care due to high costs and complicated insurance processes. For individuals, Headway provides a platform where they can easily search for therapists and psychiatrists who accept their insurance, allowing them to find the right mental health care without incurring out-of-pocket expenses. For mental health care providers, Headway reduces the administrative workload associated with accepting insurance, enabling them to focus more on patient care. The company connects patients with providers while ensuring effective use of insurance, and it generates revenue by partnering with health plans and providers. Headway's goal is to create a more accessible and affordable mental healthcare system.
New York City, New YorkHeadquarters
2019Year Founded
$318.1MTotal Funding
LATE_VCCompany Stage
HealthcareIndustries
1,001-5,000Employees
Benefits
Equity Compensation
Medical, Dental, and Vision coverage
HSA / FSA
401K
Work-from-Home Stipend
Therapy Reimbursement
16-week parental leave for eligible employees
Carrot Fertility annual reimbursement and membership
13 paid holidays each year as well as a Holiday Break during the week between December 25th and December 31st
Flexible Paid Time Off
Employee Assistance Program (EAP)
Training and professional development
Risks
Increased competition from platforms like BetterHelp and Talkspace.
Potential backlash from professionals feeling undervalued by Headway's platform.
Regulatory scrutiny as Headway expands into Medicare Advantage and Medicaid.
Differentiation
Headway simplifies finding and paying for therapy with an insurance-accepting provider network.
It reduces administrative burdens for mental health professionals, enhancing focus on patient care.
Headway's platform offers both virtual and in-person therapy sessions, increasing accessibility.
Upsides
Raised $100M in Series D to expand into Medicare Advantage and Medicaid.
Partnerships with Cigna and Blues plan to expand services to all 50 states.
Growing demand for telehealth services boosts Headway's market potential.
Related Jobs
RemoteRemoteGRC Analyst
MercurySalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteInformation Security Risk Analyst II
AcornsSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteSenior Compliance Analyst
EarnestSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteSenior Security Governance Risk & Compliance (GRC) Analyst
AlmaSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Director, Risk Managment
ServiceNowSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteLead Security Analyst - Governance, Risk, and Compliance
LaunchDarklySalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteTechnical Program Manager - GRC/InfoSec
AngiSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteProduct GRC SME, Vanta for Government
Vanta$163,000 - $192,000/year
- Full Time
- Senior (5 to 8 years)