Practice Better is seeking a Senior Manager, Information Security, IT, and Compliance to join their team. This role is crucial for managing the company's responsibilities as a Business Associate to thousands of healthcare practitioners globally, operating within a complex regulatory environment including HIPAA, GDPR/UK GDPR, PIPEDA, Quebec Law 25, PHIPA, and emerging US state privacy laws. The position involves managing three key areas: Information Security, IT Operations, and Compliance. The successful candidate will drive the execution of the compliance program, support vendor BAA/DPA negotiations, implement multi-jurisdictional privacy frameworks, mature the security posture, and close regulatory gaps. Additionally, they will manage IT operations such as user provisioning/deprovisioning, device management, SaaS vendor rationalization, and identity & access management. This role requires close collaboration with Engineering, Product, Legal, and Customer Success to integrate privacy-by-design principles, enhance operational security, and stay ahead of compliance requirements during the company's growth. The ideal candidate possesses strong knowledge of healthcare compliance (HIPAA/HITECH), European data protection (GDPR), SaaS security frameworks (SOC 2, ISO 27001), and has hands-on experience managing IT operations in a remote-first, high-growth setting. They should be adept at maturing compliance and IT programs, translating regulatory requirements into practical workflows, and navigating privacy and security decisions with sound judgment, understanding that compliance is a business enabler that builds customer trust.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed