We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Ardent Corporate jobs

Senior Information Security Compliance Analyst

Ardent Corporate
United States, Tennessee, Brentwood
Aug 06, 2025
Overview

Ardent Health is a leading provider of healthcare in growing mid-sized urban communities across the U.S. With a focus on people and investments in innovative services and technologies, Ardent is passionate about making healthcare better and easier to access. Through its subsidiaries, Ardent delivers care through a system of 30 acute care hospitals, 24,000+ team members and more than 280 sites of care with over 1,800 affiliated providers across six states.

POSITION SUMMARY:

The Senior Information Security Compliance Analyst will ensure the development and maintenance of ITGC policies and procedures in alignment with SOX, PCI, and HIPAA requirements. This role will assist in managing the Risk and Control Matrix (RACM), monitoring compliance, and conducting risk assessments across these regulatory frameworks. The position will work closely with IT leadership, subject matter experts, and Internal Audit to maintain a robust and comprehensive IT compliance program.


Responsibilities

  • Maintain the Risk and Control Matrix (RACM) by ensuring control descriptions are accurate, effective, and aligned with SOX, PCI, and HIPAA objectives.
  • Continuously monitor the organization's adherence to SOX, PCI, and HIPAA requirements, internal policies, and industry standards.
  • Conduct systematic risk assessments to identify, evaluate, and prioritize risks related to SOX, PCI, and HIPAA compliance.
  • Design and monitor KPIs that indicate the continued operating effectiveness of IT controls across SOX, PCI, and HIPAA domains.
  • Develop and conduct training programs to educate control owners and stakeholders on SOX, PCI, and HIPAA compliance requirements.
  • Coordinate internal audits to evaluate the effectiveness of IT controls and ensure compliance with SOX 404, PCI DSS, and HIPAA.
  • Execute specific controls as needed to support compliance objectives.
  • Collaborate with control owners and stakeholders to address identified compliance gaps or audit findings.

Qualifications

Education & Experience:

  • Bachelor's degree in Information Technology, Cybersecurity, Business Administration, or a related field.
  • 5+ years of experience in information security compliance, IT Audit, or a related field
  • CPA, CISA, CRISC, or CISSP certification, preferred.
  • Previous experience in the Healthcare industry and/or publicly traded companies, preferred.
  • Previous experience with Ardent Key Systems: Epic, Lawson, Active Directory, and SailPoint, preferred.
  • Previous experience with AuditBoard, preferred.

Knowledge, Skills & Abilities:

  • Strong understanding of SOX, PCI, and HIPAA compliance requirements, as well as familiarity with IT infrastructure and security architecture.
  • Proven ability to understand business issues and objectives and translate them into compliance solutions.
  • Proven experience working in highly ambiguous environments, with the capability to independently identify problems, develop solutions, and drive initiatives to completion.
  • Familiarity with Microsoft O365 (word, teams, etc.) and ServiceNow, preferred.
  • Exposure to Alteryx or related data analytics and automation tools, preferred.

#LI-AG1

Applied = 0
MORE JOBS LIKE THIS

(web-8669549459-7b59w)