Compliance & Security Lead
Plentiful.ai
full-time
Posted on:
Location Type: Hybrid
Location: San Francisco • California • United States
Visit company websiteExplore more
Job Level
About the role
- Own and maintain Plenful’s compliance roadmap across relevant frameworks (SOC 2, HIPAA, HITRUST)
- Evaluate and consider future certifications; assess relevance and feasibility
- Partner with Engineering and Security to design, document, and test technical and organizational controls
- Coordinate evidence collection, policy reviews, gap assessments, and internal training for audit readiness
- Drive vendor risk management: evaluate security questionnaires, manage relationships with compliance-automation partners
- Perform and maintain company‑wide risk assessments
- Develop and deliver company-wide compliance training
- Respond to customer security questionnaires, RFPs, and due-diligence requests
Requirements
- 5+ years of compliance and audit experience at a B2B SaaS or healthcare-tech company
- Demonstrated hands-on ownership of SOC 2 Type II and HIPAA compliance programs
- Strong working knowledge of NIST, ISO 27001, HITRUST, and related regulatory frameworks
- Experience coordinating with engineering teams on technical controls and evidence collection
- Excellent written and verbal communication skills - able to translate complex requirements into actionable tasks
- Self-starter who thrives in a dynamic, fast-paced startup environment.
Benefits
- 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
SOC 2HIPAAHITRUSTNISTISO 27001compliance programsrisk assessmentsvendor risk managementevidence collectionpolicy reviews
Soft Skills
written communicationverbal communicationorganizational skillsself-starteradaptabilitycollaborationproblem-solvingtraining deliveryattention to detailstakeholder management