wisp

Compliance Analyst

wisp

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

About the role

  • Assist in the development, implementation, and maintenance of compliance programs, policies, and procedures
  • Support HIPAA and patient privacy initiatives, including risk assessments, audits, and ongoing monitoring
  • Partner cross-functionally with legal, product, engineering, marketing, and operations to evaluate compliance and privacy impacts of new and existing initiatives
  • Help identify, document, and track compliance risks and mitigation efforts across the organization
  • Assist with privacy incident management, including documentation, investigation support, and follow-up actions
  • Support training and education efforts related to HIPAA, privacy, and regulatory compliance
  • Maintain compliance documentation, logs, and evidence needed for audits and internal reviews
  • Manage day-to-day complaint and issue management activities, including documentation, investigation, corrective actions, and reporting.
  • Conduct compliance reviews of marketing materials for regulatory accuracy and risk mitigation.
  • Assist with drafting, updating, and reviewing internal policies and procedures to ensure compliance with applicable laws, regulations, and external policy requirements, including, but not limited to, consumer facing Privacy Policy, Terms of Service, Telehealth Consent.
  • Serve as the primary liaison for internal and external audits, coordinating audit requests, responses, and remediation activities.
  • Monitor regulatory updates and help assess their impact on company policies and operations
  • Support vendor and third-party risk assessments related to data privacy and security
  • Help develop processes to ensure compliance considerations are embedded early in marketing, product, and operational workflows

Requirements

  • 2–5 years of experience in healthcare compliance, privacy, risk, or a related field
  • Foundational knowledge of HIPAA, patient privacy, and healthcare regulatory requirements
  • Strong attention to detail and ability to manage multiple initiatives simultaneously
  • Experience working cross-functionally with technical and non-technical teams
  • Excellent written and verbal communication skills
  • Strong organizational and documentation skills
  • Ability to evaluate processes and identify areas of risk or improvement
  • Comfortable working in a fast-paced environment with evolving regulatory requirements
  • Proactive mindset with a willingness to learn and grow
  • Nice to Have: Experience in telehealth, digital health, or healthcare technology; Familiarity with data protection frameworks beyond HIPAA (e.g., state privacy laws); Experience supporting audits or regulatory inquiries; Exposure to incident response or breach notification processes; Certifications such as CHC, CHPC, or similar (or interest in pursuing one)
Benefits
  • equal-opportunity employer
  • workplace free from discrimination
  • diversity of experience, perspectives, and background

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
HIPAAcompliance programsrisk assessmentsauditsprivacy incident managementregulatory compliancecompliance documentationvendor risk assessmentsprocess evaluationtelehealth
Soft skills
attention to detailcross-functional collaborationwritten communicationverbal communicationorganizational skillsdocumentation skillsproactive mindsetability to manage multiple initiativeswillingness to learnability to identify areas of risk
Certifications
CHCCHPC