Cybersecurity Compliance Manager Jobs

Join Aya Healthcare, winner of multiple Top Workplace awards!

Seeking an Cybersecurity Compliance Manager to identify, manage, and report on the company's information security and compliance objectives.

Under the direction of and in partnership with the VP of Information Technology, this position will manage the Information Security Compliance program; with the primary goal of ensuring adherence to sound information security practices and that company & customer data is safeguarded and used ethically and responsibly.

This position will involve mentoring teammates, including facilitating knowledge transfer and socializing best practices within our architectures and our workflows. The ability to multi-task, while maintaining structure and organization, is essential in this position. The ideal candidate for this job is resourceful and a good problem solver and communicator.

Who We Are: 

We're a $10+ billion, rapidly growing workforce solutions provider in the healthcare industry. We deliver tech-enabled services that help healthcare organizations meet and manage their contingent labor needs. We build and manage tech-enabled marketplaces for national and local healthcare talent and deliver contingent labor management solutions through our proprietary software platform.

At Aya, we're obsessed with creating exceptional experiences for our clients, clinicians, and employees. In fact, we put employee satisfaction above all else. Our team members are responsible for incomparable customer experience and we know that happy employees are critical to maintaining happy clients. We foster an entrepreneurial, high-energy, low-bureaucracy culture and value innovative thinking and creative problem solving. We embrace diversity in thought and backgrounds unified by a commitment to high achievement. When you join Aya, you'll be surrounded by teammates who care about you as an individual and leaders who will help you grow both personally and professionally.

Responsibilities:

• Comprehend, develop, and provide meaningful reports on current state of and adherence to frameworks and standards
• Conduct client-vendor-supply chain assessments
• Manage internal and external audit and testing programs, reporting risks that need correction.
• Record, analyze, and document cybersecurity compliance issues and incidents, where necessary
• Excellent communication and organizational skills, and the ability to stay focused on completing tasks and meeting goals within a busy workspace.
• Partake in security incident response and corrective action planning
• Develop and manage information security policies, and verify compliance with those policies, with emphasis on CSF & HIPAA.
• Help shape and drive the company's information security risk management program and internal control framework.
• Organize and conduct Risk/Privacy/Compliance trainings and assessments
• Complete internal security risk assessments

Required Qualifications:

• Familiarity with software & infrastructure security methodologies and in-depth defense strategies.
• Bachelor's degree (or equivalent) in Computer Science, Information Systems, or related field.
• Exceptional organizational skills with strong attention to detail.
• Understanding of IT Infrastructure and software development processes and associated controls required to support a fully functioning and controlled information security program.
• Understanding writing meaningful policies, procedures, and controls in one or more standards/frameworks.
• Ability to respond and collaborate in a professional and courteous manner.
• Five years of related experience in information security and compliance.
• Technical or engineering background, including software development, data management, networking, and/or cloud architecture.
• Background working with security teams performing vulnerability scanning and PEN testing.
• Knowledge and experience of applicable information security frameworks and regulatory requirements, e.g. ISO, NIST, HIPAA, CIS, FISMA, etc.

What We Offer: 

• Celebrations! We hit our goals and reward ourselves.  
• Company-sponsored virtual events, happy hours and team-building activities are always on the horizon — plus, you get a special treat on your birthday! 
• Aya also offers other benefits to those that are eligible and where required by applicable law, including reimbursements and discretionary bonuses 
• Unlimited DTO — we believe in time off!  
• Free premium medical, dental, life and vision insurance 
• Aya provides paid sick leave in accordance with all applicable state, federal, and local laws. Aya's general sick leave policy is that employees accrue one hour of paid sick leave for every 30 hours worked. However, to the extent any provisions of the statement above conflict with any applicable paid sick leave laws, the applicable paid sick leave laws are controlling 
• Virtual yoga, meditation or boot camp classes offered daily 
• Generous 401(k) match 

Compensation: Aya reasonably anticipates the pay scale for this position to be an annual salary of $140,000 to $170,000.

The pay scale for this position may vary if applicant possesses experience outside of what Aya reasonably anticipates for this position. Bonuses are subject to the role and your manager's discretion. 

Aya is an Equal Opportunity Employer (EEO), including Disability / Vets, and welcomes all to apply. Please click here for our EEO policy.