WebMD is the most recognized and trusted brand of health information and the leading provider of health information services, serving consumers, physicians, healthcare professionals, employers and health plans through our public and private online portals and WebMD the Magazine. The WebMD Health Network includes WebMD, Medscape, MedicineNet, eMedicine, RxList, theheart.org and Medscape Education. Our consumer portals and mobile health applications provide engaging, relevant and credible health and wellness information, personalized health assessment tools and access to online communities.
WebMD is an Equal Opportunity/Affirmative Action employer and does not discriminate on the basis of race, ancestry, color, religion, sex, gender, age, marital status, sexual orientation, gender identity, national origin, medical condition, disability, veterans status, or any other basis protected by law.
Assist the Lead GRC Analyst with compliance projects that are in progress.Work with the GRC Analysts to determine which compliance projects need to be done in the near future.Investigate and analyze the compliance requirements.Create a project proposal, including a timeline, that will meet those requirements. Once approved, communicate and implement the plan.Work with the Legal team to ensure plans and timelines meet their guidance and expectations.Work with the Security team as appropriate.Use the current tool set to manage, document & archive the project.Assist the VP of Compliance to develop and implement compliance policies, procedures, and training programs.
QUALIFICATIONS:Bachelor’s degree in a relevant field3-5 years of experience in compliance-related roles.Proficiency in using GRC tools like OneTrust and TrustArc.Strong knowledge of regulations like GDPR, HIPAA, CCPA and state regulations.Strong project management and problem solving skills.Strong oral and written communication skills.Ability to work in a fast-paced environment and prioritize tasks effectively.Strong ethical standards and commitment to maintaining the confidentiality and integrity of sensitive information.Certifications such as CGRC, GRCP, CISA, CRISC, and CISSP are a plus.