LazyApply Logo

LazyApply

How It WorksPricingReviewsAI Cover Letter
Commure
Commure

201-500 employees

WebsiteLinkedIn
Health Care
Information Technology and Services
Software Development
About Commure

Commure is a healthcare technology company focused on transforming the healthcare system by building a modern, interoperable platform that enables healthcare providers to deliver better patient care. Founded in 2019, Commure develops software solutions that integrate clinical, operational, and financial data to improve decision-making and streamline workflows for healthcare organizations. Their platform supports interoperability and data sharing across disparate systems, aiming to reduce administrative burdens and enhance patient outcomes. Commure's mission is to empower healthcare providers with technology that drives innovation and improves the overall healthcare experience.

3 months ago

Governance, Risk, and Compliance Lead

Bengaluru - Office
Full-time
Lead
Governance, Risk, and Compliance Lead
Report problem

đź“‹

Description
  • At Commure, our mission is to simplify healthcare by leveraging AI solutions to transform the industry.
  • We are seeking an experienced Governance, Risk, and Compliance (GRC) Lead to drive our compliance strategy across global operations.
  • The role involves designing and overseeing compliance frameworks, managing risk assessments, conducting audits, and providing training and advisory support to ensure adherence to regulations like HIPAA, GDPR, and CCPA.
  • The ideal candidate will have expertise in IT security policies, risk management, and experience managing compliance tools such as Sprinto, Drata, or Vanta.
  • They will lead internal investigations, develop corrective actions, and communicate compliance status to leadership.
  • This position requires a strong understanding of healthcare regulations, security standards, and risk mitigation strategies, with a focus on building scalable GRC programs in a fast-growing healthcare tech environment.

🎯

Requirements
  • Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Risk Management, or related discipline (Master’s preferred).
  • 2+ years of progressive experience in GRC, IT compliance, cybersecurity assurance, or related governance roles.
  • Deep expertise in HIPAA, GDPR, CCPA, and IT risk management frameworks such as NIST, ISO 27001, and SOC 2.
  • Hands-on skills setting up and managing Sprinto/Drata/Vanta is mandatory.
  • Proven experience in internal audits, risk assessments, and implementing compliance programs in complex or regulated environments.
  • Demonstrated ability in vendor risk management, third-party audits, and compliance oversight.
  • Strong written and verbal communication skills with the ability to simplify complex regulatory concepts for diverse audiences.

🏖️

Benefits
  • Health insurance
  • Dental and vision coverage
  • Parental leave
  • Remote work options
  • Flexible working hours
  • Opportunities for professional development
  • Supportive team environment