Full-Time

Security GRC Manager

Updated on 12/5/2024

Rightway

Rightway

201-500 employees

Personalized healthcare navigation and support platform

Data & Analytics
Healthcare

Compensation Overview

$150k - $170kAnnually

Mid, Senior

United States

Hybrid position; specific in-office requirements not provided.

Category
Cybersecurity
IT & Security
Required Skills
Git
AWS
JIRA
Requirements
  • 5-10 years of related work experience.
  • Proven experience leading HISRUST, SOC2, ISO 27001, or similar framework in a high growth environment.
  • Maintains a certification relevant to the role (e.g., CCSFP, CISA, CISM).
  • A deep understanding of risk assessment methodology.
  • Possess an intermediate to advanced understanding of the Software Development Life Cycle and of IT and security tooling as it relates to controls (e.g. AWS, OKTA, JIRA, GIT/GITHUB).
Responsibilities
  • Lead annual renewal of Rightway’s joint SOC2/HITRUST attestation partnering with Engineering, IT, People, and Finance.
  • Develop a comprehensive control library, mapping our control activities to multiple frameworks (SOC2, HITRUST, and NY DFS) to prepare for future customer and regulatory obligations.
  • Lead the evolution of business continuity planning and testing, honing the focus on a Business Impact Analysis (BIA) informed program.
  • Streamline operations by designing policies and procedures to balance compliance with operational efficiency at a rapidly scaling organization.
  • Take the helm in monitoring, measuring, and reporting on controls effectiveness and maturity using standard frameworks and models where applicable.
  • Leverage AI tooling to optimize and execute a flexible yet thorough Third Party “Vendor” Risk Management (TPRM) program.
  • Participates in assessment, triage, tracking, and remediation of Security risks, in addition to annual risk assessments activities e.g., HIPAA SRA.
  • Leverage novel tooling, including AI, to enhance RFP and questionnaire responses for security questions, assisting the Proposal Unit as needed.

Rightway Healthcare provides a comprehensive consumer healthcare ecosystem designed to help employees navigate the complex healthcare system. The company pairs each employee with a dedicated care team, which includes physicians, nurses, and clinical pharmacists, to offer personalized support through a centralized mobile platform. This team serves as a single point of contact for all healthcare needs, guiding users towards cost-effective therapies and improving their overall healthcare experience. Rightway partners with employers to include its services in employee benefits packages, aiming to reduce healthcare spending while enhancing health outcomes. The RightwayRx platform offers essential resources and analytics to track employee engagement, allowing for continuous improvement of services. The goal of Rightway is to optimize healthcare spending and provide high-quality care, ultimately delivering a return on investment for employers.

Company Stage

Late Stage VC

Total Funding

$234.2M

Headquarters

New York City, New York

Founded

2017

Growth & Insights
Headcount

6 month growth

14%

1 year growth

22%

2 year growth

61%
Simplify Jobs

Simplify's Take

What believers are saying

  • Rightway's proactive drug search tool empowers members to make informed medication decisions.
  • The company is recognized as a top workplace, enhancing employee satisfaction and retention.
  • Rightway's transparent PBM solution aligns with the rising demand for fair healthcare practices.

What critics are saying

  • A recent data breach could harm Rightway's reputation and lead to legal issues.
  • Increased competition from AI-driven solutions may challenge Rightway's market position.

What makes Rightway unique

  • Rightway offers a unique PBM platform eliminating legacy tactics and misaligned incentives.
  • The company provides a centralized mobile platform for personalized healthcare navigation.
  • Rightway's partnership with Curai Health enhances its AI-powered virtual care services.

Help us improve and share your feedback! Did you find this helpful?