Apply now »

Senior Security GRC Analyst

About Providence

Providence, one of the US’s largest not-for-profit healthcare systems, is committed to high quality, compassionate healthcare for all. Driven by the belief that health is a human right and the vision, ‘Health for a better world’, Providence and its 121,000 caregivers strive to provide everyone access to affordable quality care and services.

Providence has a network of 51 hospitals, 1,000+ care clinics, senior services, supportive housing, and other health and educational services in the US.

Providence India is bringing to fruition the transformational shift of the healthcare ecosystem to Health 2.0. The India center will have focused efforts around healthcare technology and innovation, and play a vital role in driving digital transformation of health systems for improved patient outcomes and experiences, caregiver efficiency, and running the business of Providence at scale.


Why Us?

  • Best In-class Benefits
  • Inclusive Leadership
  • Reimagining Healthcare
  • Competitive Pay
  • Supportive Reporting Relation

Job Description – Cybersecurity Business Analyst & Technical Writer

 

Role Summary

The Cybersecurity Business Analyst & Technical Writer supports the documentation and standardization of cybersecurity business processes, with a primary focus on Identity & Access Management (IAM), governance workflows, security exception management, and cybersecurity policies. This role works under the guidance of senior cybersecurity, IAM, and GRC stakeholders to translate operational and technical practices into clear, structured, and audit-ready documentation.

Cybersecurity Business Process Documentation (IAM & GRC)

  • Document current-state (as-is) IAM and cybersecurity processes with guidance from senior team members.
  • Capture Joiner–Mover–Leaver (JML), access request, approval, provisioning, and de-provisioning workflows.
  • Assist in documenting privileged access, service account, and identity governance processes.
  • Create process narratives, flow diagrams, and basic swim-lane diagrams.
  • Validate documented processes with stakeholders and incorporate feedback.

Governance & Exception Management Support

  • Document cybersecurity governance workflows, approval steps, and decision artifacts.
  • Assist in documenting security exception and risk acceptance processes.
  • Capture exception intake, review, approval, tracking, and closure steps.
  • Maintain traceability between policies, standards, controls, and exceptions.

Cybersecurity Policy, Standards & Procedure Documentation

  • Support development and maintenance of cybersecurity policies, standards, and procedures.
  • Update existing documentation based on regulatory, control, or process changes.
  • Ensure documentation follows approved templates, language standards, and version control.
  • Simplify technical language into clear, business-friendly content.

Stakeholder Collaboration & Requirements Gathering

  • Work with IAM, GRC, IT, and Cybersecurity teams to gather documentation inputs.
  • Participate in walkthroughs, workshops, and working sessions.
  • Clarify requirements and assumptions to ensure documentation accuracy.

Audit, Compliance & Knowledge Management Support

  • Support audit readiness by maintaining accurate and up-to-date documentation.
  • Assist with evidence preparation related to policies and process documentation.
  • Maintain documentation repositories such as SharePoint or Confluence.
  • Follow established documentation standards and naming conventions.

Required Skills & Experience

  • 3–5 years of experience as a Business Analyst, Technical Writer, or documentation specialist supporting IT or cybersecurity teams.
  • Basic understanding of cybersecurity concepts such as access control, IAM, and governance.
  • Experience documenting processes, procedures, or policies.
  • Strong written communication and attention to detail.
  • Ability to work with multiple stakeholders and incorporate feedback.

Preferred Qualifications

  • Exposure to IAM concepts, access management, or GRC processes.
  • Familiarity with frameworks such as NIST CSF, ISO 27001, CIS Controls, or HIPAA (documentation context).
  • Experience using documentation or diagramming tools such as Word, Visio, Lucidchart, Confluence, or SharePoint.

Behavioral & Professional Competencies

  • Strong documentation discipline and organizational skills.
  • Analytical and process-oriented mindset.
  • Ability to learn cybersecurity concepts quickly.
  • Collaborative, responsive, and detail-focused working style.

Providence’s vision to create ‘Health for a Better World’ aids us to provide a fair and equitable workplace for all in our employment, whether temporary, part-time or full time, and to promote individuality and diversity of thought and background, and acknowledge its role in the organization’s success. This makes us committed towards equal employment opportunities, regardless of race, religion or belief, color, ancestry, disability, marital status, gender, sexual orientation, age, nationality, ethnic origin, pregnancy, or related needs, mental or sensory disability, HIV Status, or any other category protected by applicable law. In furtherance to our mission in building a more inclusive and equitable environment, we shall, from time to time, undertake programs to assist, uplift and empower underrepresented groups including but not limited to Women, PWD (Persons with Disabilities), LGTBQ+ (Lesbian, Gay, Transgender, Bisexual or Queer), Veterans and others. We strive to address all forms of discrimination or harassment and provide a safe and confidential process to report any misconduct.

Contact our Integrity hotline also, read our Code of Conduct.

Apply now »