Manager, GRC Risk Management

Datavant is a data platform company and the world’s leader in health data exchange. Our vision is that every healthcare decision is powered by the right data, at the right time, in the right format.

Our platform is powered by the largest, most diverse health data network in the U.S., enabling data to be secure, accessible and usable to inform better health decisions. Datavant is trusted by the world’s leading life sciences companies, government agencies, and those who deliver and pay for care.

By joining Datavant today, you’re stepping onto a high-performing, values-driven team. Together, we’re rising to the challenge of tackling some of healthcare’s most complex problems with technology-forward solutions. Datavanters bring a diversity of professional, educational and life experiences to realize our bold vision for healthcare.

What We’re Looking For

We are seeking a driven senior Risk Management professional to advance our enterprise wide information security risk management and audit readiness initiatives. This role focuses on driving risk identification, quantification, remediation tracking, and readiness across security and compliance frameworks. The ideal candidate is an experienced risk leader with strong program management and people management skills who can balance strategic oversight with hands-on execution. They will ensure risks are transparently communicated, aligned with organizational objectives, and continuously monitored through automated systems and analytics platforms.

What You Will Do

• Work remotely from anywhere in the United States
• Lead the identification, evaluation, and quantification of information security risks using standardized methodologies.
• Develop and maintain information security risk register, ensuring consistent classification, ownership, and prioritization.
• Translate technical risks into business impact metrics that support data-driven decision-making by leadership.
• Support the definition and refinement of risk appetite, tolerance, and key risk indicators (KRIs).
• Manage end-to-end remediation lifecycle for audit findings, risk exceptions, and control gaps.
• Partner with control owners and system teams to document, track, and validate remediation progress.
• Develop dashboards and reports to visualize remediation status and risk trends.
• Facilitate risk acceptance and exception processes, ensuring appropriate business justification and executive visibility.
• Partner with technical and compliance teams to develop and implement AI governance controls and risk assessments.
• Track AI-related regulatory developments and support readiness for future standards (e.g., EU AI Act, NIST AI RMF).
• Provide expert support for compliance activities related to HITRUST, HIPAA, ISO 27001, PCI, SOC 2, FedRAMP and other relevant frameworks, ensuring adherence to industry standards and regulations.
• You will also be expected to support your peers across the security team by contributing to policy and standards development, collaborating on data governance initiatives, assisting with vendor security assessments, and supporting awareness and training programs.

What You Need to Succeed

What Helps you Standout

We are committed to building a diverse team of Datavanters who are all responsible for stewarding a high-performance culture in which all Datavanters belong and thrive. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

At Datavant our total rewards strategy powers a high-growth, high-performance, health technology company that rewards our employees for transforming health care through creating industry-defining data logistics products and services.

The range posted is for a given job title, which can include multiple levels. Individual rates for the same job title may differ based on their level, responsibilities, skills, and experience for a specific job.

The estimated total cash compensation range for this role is :

$144,000—$180,000 USD

To ensure the safety of patients and staff, many of our clients require post-offer health screenings and proof and / or completion of various vaccinations such as the flu shot, Tdap, COVID-19, etc. Any requests to be exempted from these requirements will be reviewed by Datavant Human Resources and determined on a case-by-case basis. Depending on the state in which you will be working, exemptions may be available on the basis of disability, medical contraindications to the vaccine or any of its components, pregnancy or pregnancy-related medical conditions, and / or religion.

This job is not eligible for employment sponsorship.

Datavant is committed to a work environment free from job discrimination. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status. To learn more about our commitment, please review our EEO Commitment Statement here (https : / / www.datavant.com / eeo-commitment-statement) . Know Your Rights (https : / / www.eeoc.gov / know-your-rights-workplace-discrimination-illegal) , explore the resources available through the EEOC for more information regarding your legal rights and protections. In addition, Datavant does not and will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay.

At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your answers will be anonymous and will help us identify areas for improvement in our recruitment process. (We can only see aggregate responses, not individual ones. In fact, we aren’t even able to see whether you’ve responded.) Responding is entirely optional and will not affect your application or hiring process in any way.

Datavant is committed to working with and providing reasonable accommodations to individuals with physical and mental disabilities. If you need an accommodation while seeking employment, please request it here, (https : / / peopleteam.datavant.com / portal / en / newticket?departmentId=248697000248790029&layoutId=248697000248795462) by selecting the ‘Interview Accommodation Request’ category. You will need your requisition ID when submitting your request, you can find instructions for locating it here (https : / / app.tango.us / app / workflow / Greenhouse Locating-Requisition-ID-2c7d618c8a8a423da4330ff12330695e) . Requests for reasonable accommodations will be reviewed on a case-by-case basis.

For more information about how we collect and use your data, please review our Privacy Policy (https : / / www.datavant.com / privacy-policy) .

#J-18808-Ljbffr