Regulatory & Privacy Compliance Analyst at ELLKAY, LLC – Remote

ELLKAY started out providing connectivity solutions to laboratories and within a few years, grew to also provide data management solutions to ambulatory organizations. ELLKAY is now a trusted data management partner in five healthcare segments. ELLKAY’s solutions continue to serve laboratories and ambulatory practices and have expanded to empower hospitals and health systems, healthcare IT vendors, ambulatory practices, health plans, and other healthcare organizations with cutting-edge technologies and solutions that drive their growth and interoperability strategies.

Today, ELLKAY remains true to our core values, building strong partner relationships and offering unparalleled service and support while providing innovative, scalable solutions to the challenges our customers face in today’s data-rich world.

ELLKAY's experience, customer-focused approach, and reputation for innovation, speed, and accuracy differentiate ELLKAY as a premier partner for your interoperability needs and data management strategy.

Job Description:

The Policy, Training & Regulatory analyst manages the lifecycle of key security, privacy, and compliance policies and coordinates training and attestations. This role helps translate regulatory and contractual requirements into clear policies and mapped controls, including support for privacy impact assessments (DPIAs/PIAs) and AI‑specific governance.

Working Hours – 2 PM to 11 PM (Indian Standard Time)

Essential Duties & Responsibilities:

• Maintain the master inventory of policies, standards, and procedures; coordinate drafting, reviews, approvals, publishing, and version control.
• Ensure policies are mapped to relevant regulations and frameworks and linked to controls in the GRC platform.
• Plan and coordinate mandatory training programs (e.g., security awareness, privacy, AI governance, compliance), including schedules, reminders, and completion tracking.
• Manage attestation campaigns (e.g., policy acknowledgments, code of conduct sign‑offs) and ensure completion records are retained.
• Partner with Legal/Privacy to interpret new or updated regulations and reflect them in policies and controls.
• Support privacy and regulatory assessments (DPIAs/PIAs, AI use‑case reviews) by documenting scope, risks, mitigations, and approvals.
• Contribute to customer‑facing compliance materials (security overview decks, standard responses, policy summaries).
• Provide guidance and quick reference materials that help staff understand and comply with policies.
• Identify and recommend improvements to policy structure, training content, and communication methods.

Qualifications:

• 3–5+ years in compliance, GRC, privacy, or related fields.
• Experience writing, editing, or maintaining policies and procedures.
• Understanding of core security and privacy principles and common regulations/frameworks (e.g., HIPAA, GDPR/CCPA, SOC 2, ISO 27001).
• Strong communication skills with the ability to explain requirements in clear, non‑technical language.
• Experience planning and tracking training or attestation programs.

• Experience working with legal, HR, or privacy teams on regulatory interpretation.
• Familiarity with DPIAs/PIAs or AI governance processes.
• Certifications such as CIPM, CIPT, CIPP, or similar.

Additional Information:

ELLKAY is committed to fostering a collaborative and high-performance work environment that supports innovation, teamwork, and professional growth. Most roles are designed to operate from our office locations to encourage effective collaboration and engagement across teams.

Any alternative work arrangements may be considered at the company’s discretion based on role requirements and business needs.

For more information about our company, please visit www.ELLKAY.com.

ELLKAY is a Smoke-Free Workplace