Compliance Specialist

Job not on LinkedIn

August 22

⛰️ Colorado – Remote

Although this job is listed in Colorado, this company may be open to hiring remote in other states.

🦬 Montana – Remote

Although this job is listed in Montana, this company may be open to hiring remote in other states.

+2 more states

⛰️ Colorado – Remote 🦬 Montana – Remote 🍁 Vermont – Remote 🦬 Wyoming – Remote

💵 $150k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🚔 Compliance

Apply Now

Receive Emails with Similar Jobs

New Charter Technologies

WebsiteLinkedInAll Job Openings

IT Managed Services • Cybersecurity • Healthcare

New Charter Technologies is a leading platform comprised of high-performing Managed Service Providers (MSPs) across North America, specializing in IT solutions for small and medium-sized businesses. They offer a comprehensive range of services including IT managed services, co-managed IT, consulting, outsourcing, and advanced cybersecurity. Their mission is to transform clients' IT needs from a necessary expense into a strategic advantage, leveraging modern technology and personalized service to enhance business productivity and innovation.

501 - 1000 employees

Founded 2018

🔒 Cybersecurity

📋 Description

• Compliance & Regulatory Oversight: Ensure adherence to regulatory and industry standards relevant to clients (e.g., HIPAA, PCI-DSS, SOC 2, CMMC, GDPR, NIST CSF, ISO 27001). • Policy & Documentation: Develop, implement, and maintain security compliance policies, standards, and procedures for both internal operations and client environments. • Risk & Incident Management: Partner with security and service delivery teams to identify, assess, and mitigate compliance risks. • Global Privacy Program: Design, implement, and manage a global privacy program that ensures compliance with data protection laws and regulations (e.g., GDPR, CCPA, HIPAA, PIPEDA, LGPD). • Mergers & Acquisitions Oversight: Lead security and compliance due diligence activities during M&A processes. • Third-Party Vendor Risk Management: Establish and maintain a third-party vendor risk management program.

🎯 Requirements

• Bachelor’s degree in Information Security, IT Management, Business, Law, or related field (or equivalent experience). • 5+ years of experience in security compliance, privacy, or risk management, ideally within an MSP, SaaS, or multi-client environment. • In-depth knowledge of global data privacy regulations (GDPR, CCPA, HIPAA, etc.). • Experience with M&A due diligence and post-acquisition integration. • Strong background in third-party/vendor risk management. • Familiarity with common security frameworks (ISO 27001, NIST CSF, SOC 2, PCI-DSS, CMMC). • Excellent written and verbal communication skills, including the ability to explain compliance requirements to technical and non-technical audiences. • Relevant certifications (e.g., CIPP/E, CIPM, CISA, CISM, CISSP, ISO 27001 Lead Auditor) strongly preferred.