Director of Legal Compliance

Job Summary

A company is looking for a Director of Legal, Risk & Compliance.

Key Responsibilities

• Lead the company's information security and compliance programs, ensuring adherence to relevant standards
• Define and improve the security control framework and risk management processes
• Review customer contracts and partner with various departments to align security and compliance efforts

Required Qualifications

• 8-12+ years of experience in information security, governance, compliance, and legal, preferably in healthcare or SaaS
• CISSP or equivalent advanced security certification strongly preferred
• Deep knowledge of HIPAA, SOC 2, HITRUST, GDPR, and CCPA; FedRAMP experience preferred
• Experience in leading audits, certifications, and regulatory assessments
• Proven experience in reviewing and negotiating contractual language