Compliance and Privacy Officer

Akido is a care delivery platform focused on overcoming the complex needs of our most vulnerable populations. We are on a mission to leverage modern technology and proprietary datasets that have historically been locked up in our public health ecosystems in order to radically improve the quality of life and affordability of care for underserved people.

We are a fast-growing, impact-focused, Y Combinator company being used nationwide to combat the Covid-19 pandemic, homelessness, and other public health crises. Across the country, health systems and government service providers use Akido to launch new technology-powered public health initiatives that improve the health and well-being of the communities they serve.

We're building a dynamic, diverse and driven team of people who care deeply about our mission and are passionate about creating transformational change in healthcare as we continue to grow and broaden our impact. We tackle new challenges together while working hard to... cultivate an environment where everyone can thrive. Our team is on the path to eclipsing several major milestones in 2021 and we're looking for new teammates to help us accelerate our progress and join us on this journey to transform healthcare for our vulnerable populations. We look forward to meeting you!

Akido Labs is looking for a Compliance Manager to support our Governance, Risk and Compliance program, which is a critical business function at Akido Labs. Compliance programs and certifications allow our internal and external stakeholders to be confident in the security and privacy of our applications and handling of data, while also providing frameworks for well-tuned information security management systems and programs. These standards provide clarity to Akido Labs’ teams on how to incorporate privacy and security principles into the management of systems, the development of products, and the expansion of our business footprint. Reporting to the General Counsel, the Compliance Manager will also serve as Akido Labs’ Privacy Officer and will work closely with the legal, engineering and product teams regarding our compliance programs.

This role requires excellent project execution, communication, issue resolution, and organizational skills. You will assist in performing internal compliance assessments and working with external assessors, as well as in reviewing, developing and implementing policies and practices to ensure and maintain compliance. We guarantee that you will be challenged and have room for growth on our team!

What You'll Do

• Review and implement procedures, policies and systems to help guide our overall security and privacy policies and governance architecture
• Ensure compliance with internal policies in accordance with relevant legal and regulatory requirements, including local (e.g. CCPA) and national (e.g. HIPAA)
• Prepare compliance audit data and manage external assessors through the lifecycle of assessments (e.g SOC 1/SOC 2, HIPAA)
• Reporting to the General Counsel, serve as Privacy Officer, oversee training, conduct organizational risk assessments and ensure execution of improvement actions
• Perform pre- and post-implementation audits of significant system implementations
• Perform technical reviews of new and current technology vendors
• Support customer and internal requests related to information privacy and security

Qualifications

• 5+ years experience performing compliance and audit testing with demonstrated ability to execute activities all along the audit life cycle (e.g. planning, audit execution, reporting and wrap up, remediation)
• Demonstrated success working in multiple compliance/audit frameworks, supporting these types of assurance: SOC 1/SOC 2 (SSAE18), HIPAA, HITRUST, and NIST CSF
• Experience in drafting and implementing privacy and security policies and procedures and managing related risk assessments
• Manage compliance programs, defining milestones and success criteria, resource allocation and successful on-time delivery
• Excellent verbal and written communication skills and the ability to interact professionally with a diverse group of executives, managers, and subject matter experts
• Ability to prioritize, manage multiple projects, and execute in a fast-paced and dynamic environment with a strong work ethic and ownership mentality
• Ability to work closely with auditors, regulators, and internal stakeholders and articulate technical concepts to non-technical teams and legal concepts to technical teams
• Experience working on a remote team in an asynchronous workflow
• The ability to partner with and effectively communicate to legal, engineering, and product staff
• Ability to understand and work effectively against metrics/KPIs which assess program performance
• Communicate schedules, priorities, and status to all levels in the company
• Bachelor’s or master’s degree in computer science, management information systems, engineering, or a related discipline a plus
• Security and Privacy certifications (CISM, CISSP, CIPP, or CIPT) are a plus