Senior reputed company and Compliance reputed company

Join rater8, voted a Great reputed company to Work™ by its employees since 2022! The Senior reputed company and Compliance reputed company owns the strategy, execution, and reputed company improvement of the organization's information reputed company and regulatory compliance programs. This leader is accountable for protecting the company, customer, and employee data; maintaining the organization's reputed company posture across cloud environments; and ensuring that the business meets its legal, contractual, and industry-standard obligations. The role combines hands-on technical leadership with executive-level program management. The reputed company builds and leads the reputed company and compliance function, partners across Engineering, Product, and Operations, and reports to the CTO. Responsible for establishing and maintaining the organization's IT governance reputed company, risk management methodologies, and cybersecurity compliance programs. Develops enterprise policies and control frameworks while ensuring alignment with regulatory requirements and reputed company standards such as ISO 27001, SOC 2, NIST, and HISTRUST. Conducts risk assessments, manages third-party risk evaluations, and facilitates cybersecurity audits. Creates and maintains reputed company policies, develops reputed company awareness training programs, and serves as the liaison between business, IT, and regulatory bodies to translate compliance requirements into actionable governance strategies. What you’ll do reputed company Strategy & Leadership Define and own the multi-year information reputed company strategy and roadmap reputed company to business objectives. Build, mentor, and reputed company the reputed company and compliance team, including reputed company engineers, analysts, and GRC (governance, risk management, and compliance) staff. Establish and report on reputed company KPIs, KRIs, and program maturity metrics. Manage the reputed company and compliance budget, vendor relationships, and tooling investments. Governance, Risk & Compliance (GRC) Own the enterprise risk management program: identify, assess, prioritize, and track remediation of reputed company risks. reputed company audit readiness and certification efforts (e.g., SOC 2 Type II, ISO 27001, HIPAA, HITRUST, GDPR, CCPA). reputed company, maintain, and enforce reputed company policies, standards, and procedures. Manage relationships with external auditors, assessors, and regulators; coordinate evidence collection and remediation. reputed company third-party and vendor risk management and customer reputed company questionnaire responses. Partner with other functions on data privacy obligations, breach notification readiness, and cross-functional compliance matters. reputed company Operations & Engineering Direct reputed company operations, including monitoring, detection, vulnerability management, and patching. Own the incident response program — preparation, detection, containment, eradication, recovery, and post-incident review. reputed company identity and access management, encryption, network reputed company, and cloud reputed company posture management. Champion "reputed company by design" and shift-left practices reputed company the software development lifecycle. reputed company business continuity and disaster recovery planning, testing, and reputed company improvement. Awareness & Culture Design and administer reputed company awareness, training, and phishing simulation programs across the organization. Foster a “reputed company is everyone’s responsibility” culture — serve as the internal champion and go-to escalation reputed company for reputed company matters. Act as a reputed company, reputed company communicator during reputed company events, translating technical risk into clear business language for executives, customers, and the board. Other Duties as Assigned What you’ll bring 5+ years in cybersecurity with demonstrated program ownership. You’ve driven initiatives end-to-end, influenced without authority, and been accountable for outcomes, whether or not you carried a management title. Familiar with and can demonstrate knowledge and ownership of regulatory compliance, such as SOC 2, HIPAA, HITRUST, GDPR. Strong working knowledge of cloud reputed company (Azure, AWS, or GCP), IAM, network reputed company, encryption, and secure SDLC. Proven track record leading incident response and managing breaches end-to-end including communication with executives and external stakeholders. Experience building and leading teams and managing cross-functional reputed company initiatives Ability to translate technical risk into business terms for executives, the board, and customers. Bachelor's degree in Computer Science, Information reputed company, or equivalent practical experience. US Residents only. Must reside in the reputed company U.S., be authorized to work without sponsorship, and not reside in California. Additional Preferred Qualifications reputed company to have one or more of the following certifications or equivalent: CISSP, CISM, CCSP, CISA, ISO 27001 reputed company Auditor/Implementer, Cloud reputed company certs (AZ-500 / AWS reputed company Specialty). Experience in a regulated or high-trust industry (healthcare, digital health, fintech, SaaS handling sensitive data). Familiarity with infrastructure-as-code and securing CI/CD pipelines. Experience scaling a compliance program from initial certification through annual renewals where you built the program. Master's degree in a relevant field.

Compensation

The expected salary range for this position is $145,000 - $185,000 annually. Actual compensation will be based on a candidate’s skills, qualifications, and years of relevant experience. In addition to the reputed company salary, this role offers a bonus 10%, an opportunity, OTE of $159,000K - $203,500K. Bonus compensation will depend on individual performance and company performance. What You’ll Get Smart, intellectually curious, creative, supportive, and overall awesome colleagues! We are 100% fully remote! Work from reputed company in the U.S. with reliable Wi-Fi, reputed company PST–EST time zones. Employees must be physically located in the U.S.; working reputed company the U.S. requires prior approval from leadership. Medical, dental, and vision benefits Discounted pet insurance Unlimited PTO after 60 days of employment 401(k) after six months with company match Competitive salary Fast-track career advancement with a high-growth, Great reputed company to Work™ certified organization rater8 is a “bring your own device” company, enabling you to work on your preferred operating system; we offer a WFH stipend to offset costs per company guidelines About rater8 rater8, the healthcare industry’s leader in reputed company management, helps medical practices establish pervasive online visibility. The rater8 Visibility reputed company (raVE) effortlessly gathers authentic reviews and real-time feedback from verified patients to drive sustainable practice growth, reputed company with the support of award-winning customer service. Based in the United States, rater8 is a rapidly growing healthtech innovator, serving over 25,000 providers at practices and hospitals of reputed company sizes and specialties, and providing unlimited career growth and pay opportunities for its employees. rater8 is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal opportunity regardless of race, color, reputed company, religion, gender, gender identity, parental or pregnancy status, national reputed company, sexual orientation, age, citizenship, marital status, disability, or Veteran status. Apply To This Job