Medicom Technologies Inc. · 17 hours ago
Information & Security Program Manager
United States
Full-time
Remote
Senior Level, Lead/Staff
$130K/yr - $130K/yr
8+ years expMedicom Technologies Inc. is a leading enterprise imaging software company addressing interoperability challenges in healthcare. They are seeking an Information Security Program Manager to lead their information security and regulatory compliance programs, ensuring adherence to standards like HIPAA and preparing for additional frameworks such as SOC 2 and GDPR.
Health CareHealth DiagnosticsInformation TechnologySaaSSoftware
Responsibilities
Own and lead Medicom’s internal compliance and security programs, ensuring ongoing adherence to HIPAA, HITRUST, GDPR, SOC 2, and other evolving regulatory frameworks and standards
Partner closely with the Engineering team to incorporate security and compliance requirements into product design, feature development, and system architecture
Develop, maintain, and clearly communicate to internal and external stakeholders Medicom’s information security program, including controls, risk areas, and known limitations
Lead preparation for new compliance certifications and readiness efforts (e.g., SOC 2 Type 2, GDPR certification, FedRAMP readiness)
Serve as the primary coordinator for the Confidentiality & Security Team (CST), including agenda setting, monthly meetings, and executive-level reporting
Manage all aspects of SOC 2 audits, including coordination with third-party auditors and internal stakeholders
Act as a trusted internal advisor, providing guidance, education, and support on compliance and security-related topics across the organization
Monitor changes in relevant laws, regulations, and industry standards, recommending and implementing updates to internal policies and processes
Qualification
Required
8+ years of experience in compliance, information security, privacy, or risk management, preferably within healthcare, health tech, or SaaS environments
Strong working knowledge of industry frameworks and federal, regional, and state regulations such as HIPAA, SOC 2, CCPA, and GDPR; experience with FedRAMP is a plus
Proven ability to interpret complex regulatory requirements and translate them into practical, actionable guidance
Experience leading external audits, certifications, or regulatory assessments
Excellent documentation, organizational, and program management skills
Strong written and verbal communication skills, with the ability to align cross-functional stakeholders
Comfortable working independently and proactively in a fast-paced, growing organization
Preferred
CISSP (Certified Information Systems Security Professional) certification strongly preferred or other advanced technical security certifications (e.g. Information Systems Security Architecture Professional, Information Systems Security Engineering Professional)
Company
Medicom Technologies Inc.
We created the first federated health information network: a powerful platform that connects disparate data silos through a single interface.
51-200 employees
Funding
Current Stage
Growth StageTotal Funding
$36.32MKey Investors
Triangle Tweener FundOval Park Capital
2024-07-25Series Unknown
2024-04-03Series Unknown· $4M
2021-11-18Series B· $21.8M
Leadership Team
Michael Rosenberg
Chief Executive Officer
Malcolm Benitz
President
Recent News
Company data provided by crunchbase