Director, Security & Compliance

What we want to accomplish and why we’re hiring you
Suki is creating a new category in the health tech space – the digital assistant.  We are going to be the voice user interface for healthcare.  What does that mean?  Currently, doctors use their electronic medical record system to track patient encounters (a digital version of the old paper charts you used to see in your doctor’s office and on TV).  These systems can be hard to navigate and very time consuming to manage.  Time that doctors would rather have to spend with their patients.  This is the problem we’re solving right now!  Doctors that use Suki spend 50%+ less time on administrative tasks and we’re striving to do even better.

We are a product driven company. Suki has one product running as a single service and we’re focused on making that world class. We’re a cloud native company using the latest and greatest technologies built on top of Google Cloud. As a healthcare tech company, HIPAA compliance and data security is front and center in everything we do.

What will you do everyday?
As a seasoned security leader, you will be responsible for leading Security & Compliance at Suki.  You will advise on overall security strategy and roll up your sleeves to manage and test our security policies, design and execute company-wide security trainings and continually improve our overall security capabilities to be best-in-class.  As part of your role, you will collaborate with Engineering, Product and Legal, among other teams, to champion security and compliance at Suki. You will also:

  • Create and implement flexible and automated programs that promote good security practices and compliance adherence. 
  • Create and execute on a plan to achieve SOC2 readiness 
  • Manage the initiative to attain HITRUST certification. 
  • Lead security audit responses & process management.
  • Drive security on-boarding for new employees.
  • Build a Security Operations Center to manage Day-to-Day risk

Ok, you're sold, but what are we looking for in the perfect candidate?

  • Passion: you’re very excited about security and compliance and know how to get others excited about it too.
  • Commitment: you are tenacious in your dedication to data security and will shout from the rooftops to make it happen all while being there to help balance company priorities
  • Adaptability: you thrive in a fast-moving organization that uses light-weight process and cutting-edge technology to have a huge impact
  • Empathy: you want to empower others and feel bad when they feel bad
  • Experience: you’ve led security and compliance programs before and relish the challenges and opportunities that an early stage company has to offer.
  • Communication: you know how to boil down complex topics into easy to understand trainings, policies and day-to-day guidance and instructions 

Technical Requirements

  • Bachelors in Computer Science, Engineering, Management Information Systems or related.
  • 10+ years of experience with security, compliance and governance processes in the SaaS industry.
  • Experience with security and compliance frameworks, controls, information security and risk management: PCI, SOC 2 and 3, HIPAA, HITRUST etc.
  • Experience working on a software as a service product.
  • Experience working on Cloud infrastructure like AWS/GCP/Azure
  • Excellent organizational skills with phenomenal attention to detail. 
  • Excellent project management and analytical skills.
  • Resourceful, proactive and structured.
  • Relevant certifications a plus (CISA, CISSP)
  • Prior Start-Up experience is preferred

* Requirements is such a strong word. We don’t necessarily expect to find a candidate that has done everything we’ve listed, but you should be able to make a credible case that you’ve done most of it and are ready for the challenge of adding some new things to your resume.

Tell me more about Suki

  • On a roll: Named "Best New Startup" (Rock Health); Announced major partnership with Sutter Health. 
  • Great team: Founded, managed and backed by successful veterans of Google, Salesforce, Oracle in tech and UCSF and Stanford in medicine. We have technologists and doctors working side by side to solve difficult problems.
  • Great investors: we’re backed by Venrock, First Round Capital, Marc Bennioff and others.
  • Huge market: Disrupting a massive, growing $30+ billion market for transcription, dictation and order entry solutions - our vision is to become the voice user interface for healthcare, bringing innovation that relieves the administrative burden on doctors instead of adding to it.
  • Great customers: Help our doctors save time in their day so they can focus on providing great care.
  • Impact: A fun and exciting start-up culture that empowers its people to make a huge impact.

Suki is an Equal Opportunity Employer. We are dedicated to building a company that fosters inclusion and belonging and reflects the diverse communities we serve across the country. We know we are stronger this way and we look forward to growing our team with these shared values.

To all recruitment agencies: Suki does not accept agency resumes. Please do not forward resumes to Suki (or any related) jobs alias or directly to any Suki employees. Suki will not be responsible for any fees related to unsolicited resumes.

Want to apply later?

Type your email address below to receive a reminder

Apply to Job

ErrorRequired field
ErrorRequired field
ErrorRequired field
Error
Error
insert_drive_file
insert_drive_file