Governance Risk Compliance Lead

Position Overview:

We are seeking a GRC Manager to lead our offshore Governance, Risk & Compliance team in India. This team consists of Junior Analysts specializing in customer risk assessments, policy and procedure management, and automated evidence collection using the Anecdotes platform. The GRC Manager will provide local leadership, ensure team alignment with organizational goals, and track KPIs for performance. The ideal candidate will have a strong understanding of complianc

e frameworks (HITRUST, SOC 2, ISO 27001, NIST), policy governance, and continuous monitoring processes.

Key Responsibilities

• Provide day-to-day leadership and support for the offshore GRC team.
• Ensure team members have the resources and guidance needed to meet objectives.
• Track and report KPIs for all team functions, including risk assessment turnaround, evidence alignment, and policy review completion.
• Collaborate with the U.S.-based GRC Manager to align priorities and communicate progress.
• Oversee process improvements and ensure adherence to compliance frameworks.
• Assist in escalations and complex requests related to customer risk assessments, policy governance, and evidence collection.
• Maintain documentation of workflows, KPIs, and team performance metrics.

Qualifications

• Bachelors degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
• 5+ years of experience in GRC, compliance, or information security roles.
• Strong understanding of HITRUST, SOC 2, ISO 27001, and NIST frameworks.
• Proven leadership and team management experience.
• Excellent communication and collaboration skills across global teams.
• Ability to analyze KPIs and drive continuous improvement initiatives.

Preferred Skills

• Experience with GRC platforms (Anecdotes or similar).
• Familiarity with policy management tools and audit processes.
• Knowledge of cloud environments and SaaS security principles.

Success Metrics & KPIs

• Team Performance: Ensure offshore team meets all KPIs for turnaround time, accuracy, and volume.
• Policy Governance: 100% of policies reviewed annually and procedures aligned to current HITRUST version.
• Evidence Management: Maintain complete and accurate evidence for compliance frameworks.
• Process Improvements: Implement at least 2 efficiency enhancements per quarter.
• Stakeholder Satisfaction: Positive feedback from U.S. leadership and internal teams.

Why Join Us?

• Lead a growing offshore GRC team and shape its success.
• Work with cutting-edge compliance automation tools.
• Collaborate with global teams on strategic governance initiatives.

Equal Employment Opportunity has been, and will continue to be, a fundamental principle

at Health Catalyst, where employment is based upon personal capabilities and

qualification without discrimination or harassment on the basis of race, color, national

origin, religion, sex, sexual orientation, gender identity, age, disability, citizenship status,

marital status, creed, genetic predisposition or carrier status, sexual orientation or any

other characteristic protected by law. Health Catalyst is committed to a work environment

where all individuals are treated with respect and dignity.