Compliance Managers

Job Role: Compliance Manager

Location: Remote Candidates ok

Full-time/Permanent Role

Job Description

Bachelor's or higher degree, supplemented by professional training in HITRUST, ISO 27001, ISO 27701, SOC 2 Type 2 for cloud

5 plus years of experience as an IT Auditor in internal or external auditing or technology-related Compliance Manager

Direct responsibility for performing HITRUST readiness self-assessments or performing HITRUST validated assessment audits for HITRUST version 9.x or higher in/for a healthcare technology business associate organization

HITRUST CCSFP certification in the past 3 years

Direct experience with U.S. regulated e-PHI and/or PII data including HIPAA requirements for organizations classed as technology business associates as well as FDA 21 CFR Part 11, and certifications, i.e., ISO 27001, 27018, 27701, Type 2 SOC 2, and HITRUST

Ability to effectively translate ISO, SOC 2, HITRUST, NIST 800.x compliance and regulatory requirements to engineering and non-engineering stakeholders

Strong knowledge of cloud technology and engineering industry processes and regulations

Proven bench strength in defining and performing technology and business risk assessments, defining control design, and measuring and monitoring control operating effectiveness (there will be a technical compliance and risk assessment test as part of interview)

Outstanding written and verbal communication and interpersonal abilities, fluent in written and spoken English including writing policies and standard operating procedures for technology

An analytical and critical-thinking mindset with excellent organizational and programmatic skills

Ability to work effectively, accurately, and take accountability on critical compliance timelines

Must work on Pacific time zone hours if not located in Bellevue, WA.

Career training and experience as IT Auditor, internal or external audit or compliance consultant with healthcare data

Pluses: current or past certification as CISA, CIA, CRISC, CISSP, CIPT or related disciplines; big four audit house experience (PWC, EY, Protiviti, Deloitte).