Compliance Officer

Compliance Officer

Are you meticulously organized, detail-oriented, and passionate about ensuring integrity and trust in healthcare? We're seeking a Compliance Officer who doesn't just check boxes but actively architects and enforces the policies and procedures that safeguard patient data and ensure our company operates with the highest standards of ethical and regulatory compliance.

This is a role in protecting our data, ideal for someone who thrives in a dynamic environment and values proactive problem-solving, execution, and strategic foresight.

Key Responsibilities

Regulatory Compliance & Risk Management

• Conduct regular internal audits and risk assessments to identify compliance gaps and operational risks related to data privacy and security.
• Serve as the primary point of contact for external audits and regulatory inquiries.
• Develop and manage the company's risk register, ensuring all identified risks are properly documented, mitigated, and monitored.
• Stay current with changes in data security regulations and industry standards to proactively update policies and procedures.

Policy & Program Management

• Draft, review, and update company policies and procedures to ensure alignment with all applicable laws and compliance frameworks (e.g., HIPAA, ISO 27001, SOC 2).
• Design and deliver comprehensive compliance training programs for all employees, ensuring a culture of security and privacy awareness.
• Manage the incident response plan from a compliance and reporting perspective, ensuring all breaches and incidents are handled in accordance with regulatory requirements.

Operational Oversight & Reporting

• Collaborate with the legal, security, and IT teams to ensure technical controls and operational practices meet compliance requirements.
• Establish and report on key compliance metrics (KPIs) to leadership and stakeholders.
• Maintain meticulous records of all compliance activities, audits, and training to demonstrate due diligence and readiness.

What We're Looking For

Required Qualifications

• Proven experience in a compliance or risk management role, preferably within the healthcare or health technology sector.
• Familiarity with other relevant compliance frameworks such as HIPAA, ISO 27001, SOC 2, and HITRUST.
• Experience in conducting internal audits, risk assessments, and developing compliance programs.
• Demonstrated ability to handle confidential information with discretion and integrity
• Exceptional organizational skills and a keen attention to detail.

Preferred Qualifications

• Experience with Governance, Risk, and Compliance (GRC) tools.
• Strong analytical skills with the ability to translate complex regulatory language into actionable policies.
• Excellent written and verbal communication skills, with the ability to explain complex legal and regulatory requirements to a wide range of audiences, from engineers to executives.
• A proactive and collaborative attitude, with the ability to work independently and as part of cross-functional teams.
• Relevant certifications (e.g., CIPP/US, CHPC, CHPS, HCISPP, CISM, CISSP).

Ready to challenge the status quo and redefine what secure systems look like?