IT/Compliance Manager
Cancer IQ, United States

Company Description

CancerIQ is building intelligent analytical technologies aimed to optimize cancer risk prediction, prevention, and treatment. We do this by providing care providers with workflow tools built upon informed decision engines and data-driven classification models. Our mission strives to engage and educate patients, and guide them through the complex, convoluted, and intimidating journey of cancer prevention.

Job Description

We are seeking an IT/Compliance amp; Security Manager to take ownership of technology-related compliance issues across the organization including information security, identity management, user access, and data integrity in a Healthcare Technology start-up environment. This includes working to identify, document and monitor current risks and controls within the organization. You will have the unique opportunity of building out an IT program from the ground up by provisioning, troubleshooting, and configuring systems and accounts on devices, while keeping abreast of changing regulatory requirements and appropriately adjusting the scope of the IT Compliance program to accommodate developments as needed.

You will manage the certification processes and general compliance with HIPAA and our internal policies. You will build out these policies, procedures and standards made accessible by all employees and auditors.

Requirements

• Develop, maintain and publish internal policies, procedures, and standards and assist employees to identify or manage documentation in question
• Be the main point of contact for IT and utilize extensive knowledge and understanding of audit standards/practices, and information security policies and guidelines
• Work collaboratively to identify and manage gaps in privacy, data protection risks, and compliance requirements to help meet stakeholder expectations
• Monitor activities of assigned areas to ensure compliance with internal policies and procedures regarding HIPAA, HITRUST, SOC2
• Ownership of employee device amp; asset management including configuration of SSO administration (LDAP and SAML), MDMs (Cloud Identity, Jamf, Intune), security keys (MFA and FIDO2), and various software vendors/services
• Understanding of end-user computing tools, hardware, application software, network, communications and mobile technologies
• Assist with employee onboarding and offboarding, on top of managing a fleet of remote devices
• Management of on-site office network and phone system
• Certificate configuration, deployment and renewals
• Responding to IT Support requests and providing security and privacy training
• Prioritize improvements and conduct compliance projects to reduce risk and improve regulatory compliance

Minimum Qualifications

• 5+ years experience with compliance regulations in a healthcare setting
• Familiarity with NIST CSF and other security best practices
• Working through HITRUST assessment
• Experience managing end-to-end projects in collaboration with cross-functional groups
• Provisioning and troubleshooting employee devices
• Excellent verbal and written communication skills
• Above and beyond organization skills

Bonus points for:

• Experience with osquery
• Management of internal CA

Benefits

• Competitive pay and benefits (Health, Vision, Dental, HSA/FSA, EAP)
• Travel amp; gym membership subsidies, commuter benefits
• Unlimited PTO
• Passionate, high-energy culture with a team of people that are excited to get stuff done and make an impact
• Building things to save lives

CancerIQ building a diverse and inclusive work environment. We welcome people of diverse backgrounds, experiences, abilities and perspectives. We are an equal opportunity employer and strive to cultivate a fast-paced, collaborative, laid back, rewarding space to work.

Note: At CancerIQ, the safety and wellness of our employees is our top priority. To provide our employees with the support they may need to maintain their personal health and wellness, our office is open and available for those employees who are interested in using it. Our long-term goal is for CancerIQ employees to return to our Chicago office likely with a hybrid on site/remote model, however working remotely full-time will be an option until everyone is comfortable, and it is 100% safe for all to return.

Job Rewards and Benefits