onsite

Governance Risk and Compliance Security Analyst - Scarborough Health Network

Security Engineer

Governance Risk and Compliance Security Analyst responsible for safeguarding patient data, ensuring regulatory compliance, and managing risk across multiple hospital sites using HIPAA, ISO 27001, and audit frameworks.

About the role

Key Responsibilities

Develop and maintain governance, risk, and compliance frameworks for all hospital and satellite sites.
Conduct risk assessments, vulnerability scans, and security audits to identify and mitigate threats.
Lead incident response activities, including investigation, containment, and reporting to regulatory bodies.
Ensure compliance with HIPAA, ISO 27001, and other relevant health‑care regulations.
Collaborate with IT, clinical, and administrative teams to implement security controls and best practices.

Requirements

Bachelor’s degree in Information Security, Health Informatics, or related field.
3+ years of experience in healthcare risk management, compliance, or security roles.
Strong knowledge of HIPAA, ISO 27001, and regulatory audit processes.
Excellent analytical, communication, and stakeholder‑management skills.
Certifications such as CISSP, CISM, or CISA are highly desirable.

Skills

agile

CompanyScarborough Health Network

DepartmentEngineering

LocationScarborough, CA, United States

Experience3+ years

Tenurefull-time

LevelMid-Level

Posted June 20, 2026