Security And Compliance Analyst

Invitae Seattle , WA 98113

Posted 7 months ago

Invitae is dedicated to bringing comprehensive genetic information into mainstream medicine to improve healthcare for billions of people. Our team is driven to make a difference for the patients we serve. We are leading the transformation of the genetics industry, by making genetic testing affordable and accessible for everyone to guide health decisions across all stages of life.

We are looking for people with a variety of experience levels and roles with IT backgrounds and experience in the technical implementation of HIPAA, SOX, or ISO controls to join the Compliance Operations team, within our Computing Group. This is an opportunity to expand and grow into the Security and Data Privacy realms, and take a lead role in providing customers with confidence in Invitae's leadership in the clinical genetic testing space. You will support compliance initiatives by engaging various process owners in the design, documentation, implementation, and monitoring of the appropriate IT controls in our computing environments including our College of American Pathologists accredited clinical laboratory and demonstrating those controls to external auditors. You will play a key role in ensuring that Invitae meets the requirements from a variety of regulations and compliance standards, such as HIPAA, SOX, FedRAMP, GDPR, and HITRUST.

The Computing Group is a unified organization comprised of various teams that collaborate to deliver technologies in a compliant, secure way. Moreover, their mission is to strengthen Invitae's position as a leading clinical genetic testing solution, through a security-first approach to compliance. The Compliance Operations team is a new team that is responsible for the assessment, verification, review, and implementation of general computer controls across the enterprise. It will also take a lead role in the adoption of new compliance and security frameworks.

The ideal candidate has a unique set of skills including project management, collegial engagement across teams, the ability to communicate with both internal and external auditors, and an eye towards future standards and regulations that will impact our customers. If you're a self-starter who wants to make a difference, we want you on board.

What you'll do:

  • Conduct audits of IT risks and controls associated with both on premise and cloud infrastructure and processes related to SOX, HIPAA, NIST, and ISO, among others

  • Perform IT controls testing and develop recommendations based on confirmed observations

  • Work with process and control owners to help them understand the audit results, identify remediation options and prioritize their closure

  • Work with the Security Team in identifying security gaps as reported by internal and external customers

  • Assist management in the development of the appropriate documentation, including, for example, system security plans, information security policies, and risk assessment procedures

  • Create and report compliance metrics

  • Assist in assessing the security impact of changes to the systems and applications

  • Perform other IT security and compliance related tasks as assigned by management

What you bring:

  • Strong experience in Information Security, Computer Science, Management Information Systems or a related field. In-depth knowledge in IT security frameworks and best practices, such as NIST-800 publications, CoBIT, CCM, and Trust Principles and Criteria

  • Experience in IT regulation and compliance standards such as HIPAA, SOX, and HITRUST CSF

  • Experience with the technical implementation of SOX and HIPAA controls in a hybrid environment, including a clinical laboratory, using tools such as Salesforce, Okta, ZenGRC, JIRA, and others

  • Working knowledge of terms and concepts used in information security, privacy, risk assessments and contingency planning

  • Understanding of IT methodologies, such as software development lifecycle and operations

  • Strong analytical and problem solving skills

  • Excellent oral, written and presentation communication skills

  • Ability to work independently or with a team

By joining Invitae, you'll work alongside some of the world's experts in genetics and healthcare at the forefront of genetic medicine. We've created a culture that empowers our teams and our teammates to have the biggest impact and to explore their interests and capabilities. We prize freedom with accountability and offer significant flexibility, along with excellent benefits and competitive compensation in a fast-growing organization.

Join us.

At Invitae, we value diversity and provide equal employment opportunities (EEO) to all employees and applicants without regard to race, color, religion, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Architecture Security & Compliance Executive Director

Jpmorgan Chase & Co.

Posted 5 days ago

VIEW JOBS 2/13/2020 12:00:00 AM 2020-05-13T00:00 Architecture – Security & Compliance - Executive Director Req #: 200010425 Location: Seattle, WA, US Job Category: Technology Job Description: Our Global Technology Infrastructure group is a team of innovators who love technology as much as you do. Together, you'll use a disciplined, innovative and a business focused approach to develop a wide variety of high-quality products and solutions. You'll work in a stable, resilient and secure operating environment where you—and the products you deliver—will thrive. As a senior leader in Architecture, your quest for innovation happens directly at the intersection of technology and business strategy, leading organizational, operational and technological change, now and in the future. You'll spearhead the efforts of passionate and dedicated teams of architects, aligning cross-functional and cross-LOB projects, ensuring that they're fiscally and technically within reason. You'll collaborate with internal teams and business leaders alike, creating strategically sound Target State Architectures that can handle today's needs and be ready for tomorrow's needs as well. Of course, you'll also have a stake in budgeting, hiring, mentoring, setting team priorities and fostering a client-centric environment where everyone learns and grows. You'll be able to innovate in collaboration with technologists across JPMorgan Chase & Co.'s global technology community, as well as in partnership with some of the most important tech firms in the world. We are seeking an exceptional thought leader, who is highly motivated and results oriented. You should be technically and managerially skilled in prioritization, organizational operations, and execution with at working in a highly regulated infrastructure environment. In an organization of this size it is also hyper critical that you be able to build strong partnerships cross functionally, and be able to influence decision making through negotiation, in a "Win, Win" fashion. Experience driving technical decisions, in a fast pasted environment is a must. Our team needs a true leader who can build team success though vision and exceptional technical knowledge. This role requires a wide variety of strengths and capabilities, including: * BS/BA degree or equivalent experience * Seasoned expertise in application, data and infrastructure architecture disciplines * Mastery of architecture, design and business processes * Complete understanding of industry wide technology strategies and best practices * Keen understanding of financial control and budget management * Expertise in leading collaborative teams to achieve common goals * Advanced knowledge of risk and controls landscape, ensuring company-wide standards are met * Ability to set and drive the business' strategic direction to deliver technology that meets internal and external needs * Expertise in working in partnership with colleagues throughout the firm, and in leading collaborative teams to achieve common goals * Expertise in financial control and budget management * Strong agile discipline with an experience helping deliver true "Agile Transformation" * Ability to deliver clear executive focused messaging as related to status of deliverables, project requirements, resourcing requests, and budget implications. * Ability to work across multiple organization and development teams to drive measurable success. When you work at JPMorgan Chase & Co., you're not just working at a global financial institution. You're an integral part of one of the world's biggest tech companies. In 20 technology centers worldwide, our team of 50,000 technologists design, build and deploy everything from enterprise technology initiatives to big data and mobile solutions, as well as innovations in electronic payments, cybersecurity, machine learning, and cloud development. Our $10B+ annual investment in technology enables us to hire people to create innovative solutions that will are transforming the financial services industry. At JPMorgan Chase & Co. we value the unique skills of every employee, and we're building a technology organization that thrives on diversity. We encourage professional growth and career development, and offer competitive benefits and compensation. If you're looking to build your career as part of a global technology team tackling big challenges that impact the lives of people and companies all around the world, we want to meet you. Jpmorgan Chase & Co. Seattle WA

Security And Compliance Analyst

Invitae