Security Compliance - Technical Program Manager (AI)

TL;DR

Security Compliance - Technical Program Manager (AI): Driving hirify.global's HITRUST program end-to-end, ensuring alignment with HIPAA Security, Privacy, and Breach Notification Rules and obligations under Business Associate Agreements (BAAs) with an accent on designing and implementing secure, scalable, and HIPAA-aligned solutions. Focus on continuous compliance and monitoring initiatives, including automation of evidence collection, control validation, and reporting across cloud-native and hybrid environments.

Location: Livingston, NJ / New York, NY / Sunnyvale, CA / Bellevue, WA. While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration. This position requires access to export controlled information. To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, or (B) eligible to access the export controlled information without a required export authorization, or (C) eligible and reasonably likely to obtain the required export authorization from the applicable U.S. government agency.

Salary: $143,000 to $210,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location.

Company

hirify.global delivers a platform of technology, tools, and teams that enables innovators to build and scale AI with confidence.

What you will do

• Own and drive the HITRUST program end-to-end, ensuring alignment with HIPAA Security, Privacy, and Breach Notification Rules and obligations under Business Associate Agreements (BAAs).
• Define, document, and continuously refine the HITRUST control environment, including data flows, system boundaries, and trust zones for systems that store, process, or transmit electronic Protected Health Information (ePHI).
• Partner closely with Product, Engineering, Infrastructure, and Security teams to design and implement secure, scalable, and HIPAA-aligned solutions that meet HITRUST CSF requirements.
• Lead HITRUST (e1/i1/r2) assessment readiness and certification efforts, including risk-based scoping, gap assessments, control maturity evaluations, and cross-functional remediation programs.
• Drive continuous compliance and monitoring initiatives, including automation of evidence collection, control validation, and reporting across cloud-native and hybrid environments.
• Manage compliance and certification lifecycles, ensuring accurate tracking of controls, risks, corrective action plans (CAPs), and audit artifacts.

Requirements

• Experience leading HITRUST certification and readiness programs (e1, i1, r2), including control implementation, gap remediation, and audit support in HIPAA-regulated environments.
• Strong understanding of HIPAA Security, Privacy, and Breach Notification Rules, with hands-on experience implementing safeguards for ePHI in cloud and distributed systems.
• Proven ability to design and scale compliance programs in high-growth or hyperscale environments, balancing regulatory requirements with engineering velocity.
• Experience aligning HITRUST CSF with frameworks such as HIPAA, ISO 27001, SOC 2, and NIST to streamline controls, enable inheritance, and reduce audit overhead.
• Deep knowledge of cloud-native security controls, including IAM, encryption (at rest and in transit), logging and monitoring, network segmentation, and container/Kubernetes security.
• Strong analytical, communication, and stakeholder management skills, with the ability to translate complex compliance requirements into actionable guidance.

Culture & Benefits

• Medical, dental, and vision insurance - 100% paid for by hirify.global.
• Flexible Spending Account and Health Savings Account.
• Tuition Reimbursement and Ability to Participate in Employee Stock Purchase Program (ESPP).
• Mental Wellness Benefits through Spring Health and Family-Forming support provided by Carrot.
• Flexible PTO and a casual work environment.
• 401(k) with a generous employer match.