GRC Security Analyst
At Curana Health, we’re on a mission to radically improve the health, happiness, and dignity of older adults—and we’re looking for passionate people to help us do it.
As a national leader in value-based care, we offer senior living communities and skilled nursing facilities a wide range of solutions (including on-site primary care services, Accountable Care Organizations, and Medicare Advantage Special Needs Plans) proven to enhance health outcomes, streamline operations, and create new financial opportunities.
Founded in 2021, we’ve grown quickly—now serving 200,000+ seniors in 1,500+ communities across 32 states. Our team includes more than 1,000 clinicians alongside care coordinators, analysts, operators, and professionals from all backgrounds, all working together to deliver high-quality, proactive solutions for senior living operators and those they care for.
If you’re looking to make a meaningful impact on the senior healthcare landscape, you’re in the right place—and we look forward to working with you.
For more information about our company, visit CuranaHealth.com.
Summary
Curana Health is seeking a detail-oriented and proactive GRC Security Analyst to join our IT Shared Services team. This role will be responsible for driving Governance, Risk, and Compliance initiatives with a strong emphasis on HIPAA and SOC 2 Type 2 audit readiness, facilitation, and remediation. The ideal candidate will bring a blend of technical acumen, regulatory expertise, and collaborative spirit to help ensure our security posture aligns with industry standards and regulatory requirements.
Essential Duties & Responsibilities
- Lead and support GRC activities across IT Security, including risk assessments, control testing, and compliance tracking.
- Facilitate and manage SOC 2 Type 2 audits and HIPAA compliance programs.
- Collaborate with internal teams to identify gaps, define remediation plans, and monitor progress.
- Maintain and improve security policies, procedures, and documentation.
- Assist in vendor risk management and third-party assessments.
- Provide guidance and training on compliance requirements to cross-functional teams.
- Stay current on regulatory changes and industry best practices.
Qualifications
- Experience: Minimum 3 years in GRC, IT Security, or related fields; 5+ years preferred.
- Education: Bachelor’s degree in Information Security, Computer Science, or related field preferred. May be offset by 5+ years of relevant experience.
- Certifications: CISA, CRISC, or similar certifications preferred.
- Skills:
- Strong understanding of HIPAA and SOC 2 frameworks.
- Experience with audit facilitation and compliance reporting.
- Excellent communication and documentation skills.
- Ability to work independently and manage multiple priorities.
We’re thrilled to announce that Curana Health has been named the 147th fastest growing, privately owned company in the nation on Inc. magazine’s prestigious Inc. 5000 list. Curana also ranked 16th in the “Healthcare & Medical” industry category and 21st in Texas.
This recognition underscores Curana Health’s impact in transforming senior housing by supporting operator stability and ensuring seniors receive the high-quality care they deserve.
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Join Outpost as an IT Systems Administrator to maintain and scale device management, identity/SSO, server and network infrastructure supporting a fast-growing logistics platform.
Peraton is hiring seasoned IT support and engineering professionals to deliver DOE OCIO business and technical services under the CBOSS 2.0 contract.
Huntsman's IT Infrastructure Internship at the The Woodlands corporate office offers hands-on experience supporting infrastructure, reporting and cross-functional projects for Summer 2026.
Lead RBAC design and automation as a Senior Information Security Analyst within TD Bank's Workforce Identity and Access Management team to improve access governance and identity controls across the enterprise.
Lime seeks a Cloud Network Engineer with strong AWS networking, Fortinet experience, and infrastructure-as-code skills to manage and scale the company’s cloud and hybrid network environment on a fixed-term contract.
Serve as the subject-matter expert for information protection at Electric Boat, ensuring classified and sensitive information is handled, stored and exchanged in compliance with federal, contractual and corporate security requirements.
Pro Talent HR is hiring a remote Help Desk Support specialist to handle network administration, troubleshooting, and user support while maintaining strong customer service and IT security practices.
Contact Government Services is hiring a Senior Database Administrator to administer and optimize Microsoft SQL Server systems supporting government clients.
Peraton seeks a seasoned ISSO to lead RMF- and NIST 800-53-driven cybersecurity, continuous monitoring, and compliance for mission-critical Deep Space Network systems in Monrovia supporting NASA/JPL.
Commonwealth Fusion Systems is hiring a Senior Cybersecurity Engineer to lead cloud and IT security compliance efforts, perform vulnerability and penetration testing, and help harden systems across the organization.
IntusCare seeks a Manager, IT Operations to centralize IT operations, streamline onboarding/offboarding and drive automation for a fully remote, US-based team.
Helion Technologies is looking for an experienced Tier 3 Systems Engineer to provide advanced remote support, lead complex infrastructure troubleshooting and projects, and mentor junior engineers across servers, cloud, virtualization, networking, and security.
A strategic Senior Business Systems Analyst role at AbbVie driving digital and CRM solutions for Medical Affairs, translating business needs into technical deliverables and managing cross-functional projects.
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
