Compliance Specialist – FedRAMP, HITRUST

🕒 il y a 8 jours

🌽 Illinois – Distant

🌽 Illinois – Remote

💵 $120 000 - $150 000 / an

⏰ Temps Plein

🟡 Intermédiaire

🟠 Senior

🚔 Conformité

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Jorie AI

Site WebLinkedInTous les Emplois

1001 - 5000 employés

🤖 Intelligence artificielle

⚕️ Assurance santé

💳 Fintech

Artificial Intelligence • Healthcare Insurance • Fintech

Jorie AI est une entreprise qui révolutionne les industries de la santé et de la finance en fournissant des solutions avancées basées sur l'intelligence artificielle. Spécialisée dans la gestion du cycle de revenus (RCM), Jorie AI utilise l'automatisation des processus robotiques et des outils puissants d'intelligence économique pour rationaliser les opérations financières et médicales, augmenter la rentabilité et améliorer les rapports. Leurs services incluent la maximisation de la production opérationnelle, la gestion des ressources et la structuration de flux transparents de données critiques sur les patients et les finances. Jorie AI se concentre sur la fourniture de solutions d'automatisation personnalisées adaptées aux objectifs des clients pour améliorer les résultats des patients, la satisfaction des médecins et les marges financières. L'entreprise est reconnue pour son utilisation innovante de l'IA dans la gestion des réclamations de santé et le conseil en cycle de revenus, réduisant significativement les inefficacités opérationnelles et améliorant les performances financières.

Description

• Support the implementation and maintenance of Jorie’s FedRAMP authorization program in alignment with agency and customer requirements. • Develop and maintain FedRAMP System Security Plans (SSP), POA&Ms, and supporting documentation. • Coordinate with internal IT and cloud engineering teams to ensure continuous compliance of systems within AWS, Azure, or other CSP environments. • Liaise with 3PAOs (Third-Party Assessment Organizations ) and government stakeholders during audits and assessments. • Ensure consistent control alignment between FedRAMP Moderate/High baselines, HITRUST CSF, and NIST 800-53 frameworks. • Maintain evidence documentation, control mapping, and compliance matrices for overlapping regulatory programs (HITRUST, SOC 2, HIPAA, PCI). • Participate in ongoing HITRUST recertification processes, including control review, evidence validation, and policy updates. • Collaborate with internal and external auditors (e.g., ISP) to ensure accurate reporting and compliance posture visibility. • Assist in continuous monitoring of security controls and remediation of POA&M items. • Conduct risk assessments for cloud systems, vendors, and new integrations impacting the FedRAMP boundary. • Coordinate vulnerability scans, incident response activities, and configuration management documentation in alignment with FedRAMP and HITRUST requirements. • Develop, update, and enforce policies related to data security, cloud compliance, and regulatory reporting. • Provide compliance guidance and training to engineering, DevOps, and IT personnel involved in the FedRAMP environment. • Support internal readiness reviews, gap assessments, and compliance roadmap initiatives.

🎯 Exigences

• Bachelor’s degree in Information Security, Computer Science, Compliance, or related field required. • 3–6 years of experience in compliance, information security, or risk management. • At least 2 years of direct experience supporting FedRAMP programs or equivalent government compliance frameworks. • Hands-on experience with HITRUST CSF certification processes, evidence collection, and auditor coordination. • Experience working in cloud-based environments (AWS, Azure, or GCP) and familiarity with continuous monitoring tools (Splunk, Qualys, Nessus, etc.). • Background in healthcare, AI, or SaaS industries strongly preferred. • In-depth understanding of NIST 800-53, FedRAMP Moderate/High baselines, and HITRUST CSF control mapping. • Strong knowledge of HIPAA, HITRUST, SOC 2, and ISO 27001 standards. • Excellent documentation and writing skills — ability to produce and maintain formal compliance deliverables. • Strong analytical, organizational, and communication skills, with the ability to work across technical and non-technical teams. • FedRAMP (3PAO) Assessor or equivalent experience.