Senior Compliance Analyst
We are a 200+ person team funded by top-tier firms, based in Santa Monica, CA with satellite offices in San Francisco. We are a low-key but tight-knit group of hard-working people working to fix America's broken healthcare system. Americans spend over $400 billion per year on prescriptions and too many people simply can't afford the medications they desperately need. Join GoodRx and help us solve meaningful problems that help us make people’s lives better every day.
About the Role
We are looking for someone with a strong IT audit experience and background in the technical implementation of SOC2, HIPAA or SOX-404. As our Senior Analyst, you will support compliance initiatives by engaging various process owners in the design, documentation, implementation, and monitoring of the appropriate IT controls in our computing environments and demonstrating those controls to external auditors. This position will report into the Director of Information Security.
Responsibilities:
- Work closely with both technology and business process owners to identify, document, and implement processes to address areas of key risks
- Perform IT control testing and exception tracking when required
- Help implement controls and monitoring for frameworks such as SOC-2, HIPAA, PCI and SOX 404
- Work with external auditors and business partners to satisfy audit requests
- Assist management in the development of the appropriate security documentation, including system security plans, change management policies and risk assessment procedures
- Administrate our ISMS Training and Policy Portal
Skills & Qualifications:
- Experience in IT regulation and compliance standards such as SOC 2, SOX-404, HIPAA, and PCI
- Minimum of 3 years experience in an audit or compliance role
- Understanding of IT methodologies, such as software development lifecycle and operations
- Ability to understand complex technical environments
- Excellent oral, written and presentation communication skills
Nice to Have:
- CISA certification
- Experience working for a company in the technology or healthcare industry
- Familiarity with JIRA, GitHub and Asana
About GoodRx
GoodRx is America’s leading prescription price transparency platform. More than 8 million people use the GoodRx website and our mobile apps each month. GoodRx helps consumers save up to 80% on their medications by delivering prices and available discounts at nearly every pharmacy in the U.S. Thousands of physicians and employees use GoodRx, and its services have been positively reviewed by Good Morning America, the American Heart Association, The New York Times, ABC News, AARP, Forbes and many others.