All roles
OperationsRemote.Full-time

Compliance Specialist

Help SecUnit maintain its own compliance posture and support customers navigating the healthcare regulatory landscape.

About the Role

Healthcare cybersecurity is inseparable from compliance. We are looking for a Compliance Specialist to help SecUnit maintain its own compliance posture and help our customers navigate the regulatory landscape.

What You'll Do

  • Manage and maintain SecUnit's compliance certifications (SOC 2, HIPAA, HITRUST)
  • Conduct internal audits, risk assessments, and gap analyses
  • Develop and maintain compliance documentation, policies, and procedures
  • Support customers with compliance questionnaires, BAA negotiations, and audit requests
  • Monitor regulatory changes and assess their impact on SecUnit and our customers
  • Collaborate with engineering to ensure security controls are implemented and documented

What We're Looking For

  • 3+ years in compliance, risk management, or information security governance
  • Deep knowledge of HIPAA, HITRUST, and SOC 2 frameworks
  • Experience managing compliance programs and audit processes
  • Strong documentation and communication skills
  • Detail-oriented with the ability to balance rigor with pragmatism

Nice to Have

  • Experience in healthcare or cybersecurity compliance
  • HCISPP, CISA, CRISC, or similar certifications
  • Familiarity with GRC tools (Vanta, Drata, OneTrust)
  • Understanding of cloud security controls (AWS, Azure)