Employer Active
Job Role: Compliance Manager
Location: Remote Candidates ok
Full-time/Permanent Role
Job Description
Bachelor's or higher degree, supplemented by professional training in HITRUST, ISO 27001, ISO 27701, SOC 2 Type 2 for cloud
5 plus years of experience as an IT Auditor in internal or external auditing or technology-related Compliance Manager
Direct responsibility for performing HITRUST readiness self-assessments or performing HITRUST validated assessment audits for HITRUST version 9.x or higher in/for a healthcare technology business associate organization
HITRUST CCSFP certification in the past 3 years
Direct experience with U.S. regulated e-PHI and/or PII data including HIPAA requirements for organizations classed as technology business associates as well as FDA 21 CFR Part 11, and certifications, i.e., ISO 27001, 27018, 27701, Type 2 SOC 2, and HITRUST
Ability to effectively translate ISO, SOC 2, HITRUST, NIST 800.x compliance and regulatory requirements to engineering and non-engineering stakeholders
Strong knowledge of cloud technology and engineering industry processes and regulations
Proven bench strength in defining and performing technology and business risk assessments, defining control design, and measuring and monitoring control operating effectiveness (there will be a technical compliance and risk assessment test as part of interview)
Outstanding written and verbal communication and interpersonal abilities, fluent in written and spoken English including writing policies and standard operating procedures for technology
An analytical and critical-thinking mindset with excellent organizational and programmatic skills
Ability to work effectively, accurately, and take accountability on critical compliance timelines
Must work on Pacific time zone hours if not located in Bellevue, WA.
Career training and experience as IT Auditor, internal or external audit or compliance consultant with healthcare data
Pluses: current or past certification as CISA, CIA, CRISC, CISSP, CIPT or related disciplines; big four audit house experience (PWC, EY, Protiviti, Deloitte).
Full Time