Director of Governance Risk and Compliance - Fuze Health

📋 Description

• Lead unified security and compliance framework across healthcare entities.
• Drive HITRUST CSF and ISO 27001 certifications (roadmaps and audits).
• Align data protection with HIPAA/HITECH and CMS requirements.
• Own external assessors, evidence collection, and certification audits.
• Standardize policies across entities; chair the GRC Steering Committee.
• Enable continuous monitoring using GRC automation.

🎯 Requirements

• 10+ years in IT/Security GRC, with 5+ years in leadership.
• Excellent verbal and written communication; public speaking.
• Deep understanding of HIPAA, HITECH, CMS regulations.
• Proven HITRUST (r2) or ISO 27001 certification experience.
• Bachelor's degree (Master's preferred) in IT/Healthcare.
• Certifications: CISA/CISM/CISSP; CCSFP preferred.

🎁 Benefits

• Health insurance and Employee Assistance Programme
• Pension
• Flexible annual leave policy
• 3 paid volunteer days per year
• Free monthly LetsGetChecked tests
• Maternity, Paternity, Parental and Wedding leave