Sr. Manager, Governance Risk and Compliance

Included Health(1 month ago)

RemoteFull TimeManager$138,380 - $254,111Information Security

About this role

The Sr. Manager, Governance Risk and Compliance (GRC) leads Included Health’s overarching governance, risk, and regulatory compliance programs, with a strong focus on protecting PHI and meeting healthcare-specific requirements. Reporting to the Chief Information Security Officer, this role owns third-party risk, enterprise risk, and internal and external audit activities across the organization. The position serves as a primary liaison to auditors and clients on security matters and ensures that policies and frameworks align with HIPAA, HITECH, SOC 2, and related standards. It also supports executive decision-making through structured risk reporting and compliance oversight.

View Original Listing

Required Skills

Third-Party Risk Management
Vendor Risk Assessment
Vendor Risk Governance
Contract Review
Business Associate Agreements
Risk Register Management
Audit Management
Evidence Collection
Regulatory Compliance
HIPAA Compliance

+25 more

Qualifications

Bachelor's degree in Computer Science
Bachelor's degree in Information Security
Bachelor's degree in Business Administration
CISSP
CISM
CRISC
CISA
GRCP
CHPS
CIPP/US

About Included Health

includedhealth.com

Included Health is a digital healthcare company that delivers personalized, all‑in‑one virtual care, care navigation, and community support for employers, health plans, and members. Its platform connects people to virtual primary and mental healthcare, expert medical opinions, and navigation services to guide complex care decisions and specialty referrals. Included Health aims to improve outcomes and reduce costs through integrated care coordination, telehealth, and tailored member engagement with an emphasis on equity and underserved populations. Founded in 2021 and led by Owen Tripp, the company partners with employers and payers to modernize employee and member healthcare.