Senior GRC Associate

Senior Compliance Associate

The Senior Compliance Associate will work inside Strata’s Information Technology group and assist with all aspects of governance, risk, and compliance. This position works collaboratively to ensure Strata complies with industry regulations, client requirements, and best practices. This position serves as a subject matter expert in key certifications and regulatory frameworks, including state privacy laws, HIPAA, ISO 27001, and SSAE 18.

• Lead and coordinate HITRUST certification efforts, including audit readiness, evidence management, and external assessor coordination
• Support SOC 2 Type II compliance, including control testing, audit support, and ongoing control effectiveness monitoring
• Manage Disaster Recovery and Business Continuity programs, including planning, coordination, and execution of testing exercises
• Lead responses to customer security questionnaires (DDQs) and internal compliance requests, partnering cross-functionally to deliver accurate and timely information
• Drive remediation by managing corrective action plans (CAPs) and coordinating cross-functional efforts to closure
• Drive vendor risk management and security due diligence processes
• Maintain security documentation and support ongoing compliance initiatives, including AI governance and data practices in an AI-forward environment

• Bachelor’s degree or equivalent years of IT work experience
• Minimum 4+ years of experience with a concentration in IT Governance, Risk, and Compliance
• Experience achieving and maintaining HITRUST certification
• Experience with SOC Controls
• Excellent communication skills including the ability to communicate technical issues to users with little technical background/expertise
• Focus on Integrity and Reliability
• Self‑motivated, proactive and able to manage multiple priorities
• Ability to work with audiences at all levels of the organization
• Mastered knowledge in:
  • Microsoft office suite
  • Technical writing
  • Internal/External auditing
• Preferred qualifications:
  
  CCSFP, CRISC, CISA

Estimated Salary Range: $70,000 - $94,000. Actual salary will be determined based on factors including, but not limited to, skill set and level of experience.

Strata also provides discretionary variable pay programs based on role. In addition, Strata provides a comprehensive benefits package including retirement benefits, health and welfare benefits, paid time off, parental leave, life and accident insurance, and other voluntary and well‑being benefits.

Location and Working Arrangement: The preferred location for this role is in Chicago, IL or St. Louis, MO. The employee will work in a hybrid environment with all team members experiencing the flexibility to work from home, and must be able to attend in‑person events at the campus in either city.

As set forth in Strata Decision Technology’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.