Information Security and Compliance Administrator

Employment Type

: Full-Time


: Miscellaneous

Loading some great jobs for you...

Who we are
Sempre Health uses dynamic pricing + SMS to reduce patients' out-of-pocket spend on drugs. 1 in 3 patients skips taking their meds because they are too expensive. We're on a mission to fix that. Patients receive texts like, 'If you pick up your rx by Sunday you'll pay $20. If you wait until next week, you'll pay $30.' Then, wherever they fill, Sempre's integrations with the pharmacy switch ensure they get the right price.In 2018, Sempre announced our $8M series A (, major partnerships with pharma manufacturers & PBMs (, and 12-month outcomes & expanding partnership with UPMC, the second largest integrated health system in the US ( Now that we are quickly bringing on new health plan partners, we are looking for people like you to help scale and deploy Sempre nationwide. Come join our rapidly-growing team of 14 on our mission to help people thrive, physically and financially.Job Description
As the first dedicated member of our Security and Compliance Operations team, you will maintain day-to-day compliance operations at Sempre, as well as tackle projects that improve Sempre's security posture and help us protect the privacy of our patients. There is a great opportunity here to learn about healthcare security and compliance, and to gain experience improving the processes of an established security program working directly under our co-founder/CSO.You will be responsible for day-to-day maintenance of Sempre Health's security program and HITRUST certification: performing audits, reviewing and improving, policies and procedures, handling adverse event reporting, and more. In addition, you will play a critical role in establishing trust with our partners through accurate communication and in-depth knowledge of the Sempre program. Our ideal candidate has some knowledge about HIPAA and its implications on IT security, but an important part of the role is the ability to get up to speed on Sempre's security and privacy requirements and to keep abreast of regulatory changes.In addition to security and compliance, this role includes some IT management work. Any experience with IT operations, software engineering, or software testing is a big plus, but not required.Responsibilities
- Manage the day to day operations of Sempre's security and compliance program
- Develop initiatives to improve Sempre's security posture and compliance readiness
- Manage the projects that comprise of maintaining Sempre Health's HITRUST certification
- Manage employee security and compliance training
- Manage Sempre's adverse event reporting to pharmaceutical company partners
- Manage provisioning and monitoring of Sempre's hardware assets
- Own the compliance side of onboarding and offboarding of employees (filing relevant tickets, making sure access is granted/revoked from proper systems)
- Manage Sempre's library of policies and procedures. This includes creating new documentation and keeping existing documentation up-to-date
- Act as primary point of contact for security and compliance audits with clients
- Act as primary point of contact for Sempre's security and compliance vendors
- Keep abreast of regulatory developments within or outside of the company as well as evolving best practices in compliance control
- Where possible and time permits, automate existing processes to reduce the amount of time we spend on compliance.
- Manage Sempre's IT resources (e.g. WiFi and AV)Requirements
- Bachelor's degree or equivalent
- Strong written communication skills
- Interest in working on a small, tight-knit teamNice to haves
- Basic familiarity with UNIX & command line
- Software engineering or DevOps experience
- Security or compliance certification

Launch your career - Create your profile now!

Create your Profile

Loading some great jobs for you...