Compliance Manager
Remote U.S.
Flywheel Exchange
Flywheel’s medical imaging data and AI platform streamlines the massive tasks of data discovery, aggregation, and curation. Learn more here.
About the Opportunity
Flywheel is seeking a dynamic and motivated Compliance Manager to manage our information security and healthcare GRC audit programs. Successful applicants will have a passion for collaboration, risk analysis, program management, and audit expertise. This role requires managing internal and external audits, testing security control effectiveness, developing policies and procedures, and maintaining Flywheel’s compliance program.
Environment
In this role, you will work closely with compliance, information security, and IT stakeholders, as well as external auditors and regulatory bodies. Our audit program is based on SOC 2, HITRUST, and ISO 27001 and includes compliance with HIPAA, HITECH, and NIST frameworks (such as NIST 800-171 and 800-53).
We’re highly responsive to customer needs and constantly strive to make a positive contribution to the biomedical and life sciences communities we serve. Team members are recognized and rewarded when advocating for customer success and satisfaction over other concerns. We value self-motivated, creative individuals who work well in a collaborative environment – constantly generating and sharing new ideas and solutions with the team.
Flywheel has a comprehensive benefits package and encourages a balanced work life and home life.
Flywheel is seeking a dynamic and motivated Compliance Manager to manage our information security and healthcare GRC audit programs. Successful applicants will have a passion for collaboration, risk analysis, program management, and audit expertise. This role requires managing internal and external audits, testing security control effectiveness, developing policies and procedures, and maintaining Flywheel’s compliance program.
Environment
In this role, you will work closely with compliance, information security, and IT stakeholders, as well as external auditors and regulatory bodies. Our audit program is based on SOC 2, HITRUST, and ISO 27001 and includes compliance with HIPAA, HITECH, and NIST frameworks (such as NIST 800-171 and 800-53).
We’re highly responsive to customer needs and constantly strive to make a positive contribution to the biomedical and life sciences communities we serve. Team members are recognized and rewarded when advocating for customer success and satisfaction over other concerns. We value self-motivated, creative individuals who work well in a collaborative environment – constantly generating and sharing new ideas and solutions with the team.
Flywheel has a comprehensive benefits package and encourages a balanced work life and home life.
Responsibilities
- Lead Flywheel’s SOC 2, HITRUST, ISO 27001, and 21 CFR Part 11 annual external audits.
- Test and monitor security control effectiveness in GRC software Vanta.
- Manage risk assessments, third-party vendor reviews, and corrective action plans.
- Lead annual internal audit and quality management system implementation.
- Develop information security policies and procedures.
- Manage security awareness training program.
- Act as a key liaison for audits, regulatory inquiries, and external assessments.
- Comply with company policies, including security, confidentiality, and data protection requirements, to maintain a secure work environment.
What would make you a great fit
- Bachelor’s degree in related field and minimum 5 years of experience in compliance.
- Hands-on expertise implementing SOC 2, ISO 27001, and HITRUST audit programs.
- Extensive knowledge of global cyber regulations, compliance standards, and technology with a proven track record in implementing and managing security frameworks.
- Significant experience in designing, developing, and managing security policies, procedures, and controls to safeguard critical assets.
- Strong communication skills, can clearly convey security and risk topics to technical and non-technical stakeholders, and ability to work collaboratively in a team environment.
- Experience with medical imaging or healthcare IT systems (preferred but not required).
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
6
2
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: Audits Compliance HIPAA HITRUST ISO 27001 NIST NIST 800-53 NIST Frameworks Risk analysis Risk assessment SOC SOC 2
Perks/benefits: Health care
Regions:
Remote/Anywhere
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsInformation Systems Security Officer jobsInformation Security Officer jobsInformation Security Specialist jobsInformation System Security Officer jobsSenior Cybersecurity Engineer jobsSenior Cyber Security Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsPrincipal Security Engineer jobsIT Security Engineer jobsSenior Penetration Tester jobsSecurity Specialist jobsSenior Information Security Analyst jobsCyber Security Specialist jobsChief Information Security Officer jobsCloud Security Architect jobsStaff Security Engineer jobsInformation System Security Officer (ISSO) jobsCybersecurity Consultant jobsCyber Security Architect jobsIT Security Analyst jobsSecurity Operations Analyst jobsThreat Intelligence Analyst jobsSenior Product Security Engineer jobs
SaaS jobsEncryption jobsSDLC jobsRMF jobsMalware jobsGDPR jobsIDS jobsEDR jobsSplunk jobsIPS jobsSQL jobsForensics jobsBash jobsTop Secret jobsITIL jobsDoDD 8570 jobsFinance jobsOWASP jobsIntrusion detection jobsTerraform jobsDocker jobsCompTIA jobsUNIX jobsCRISC jobsTCP/IP jobs
Active Directory jobsSANS jobsThreat detection jobsPolygraph jobsGIAC jobsOSCP jobsVPN jobsBanking jobsJavaScript jobsClearance Required jobsSOAR jobsAnsible jobsData Analytics jobsCCSP jobsSOX jobsArtificial Intelligence jobsDNS jobsHIPAA jobsSOC 2 jobsJira jobsMachine Learning jobsMITRE ATT&CK jobsIT infrastructure jobsCISO jobsGCIH jobs