💼 About This Role

You'll act as the primary interface for partners and clients, translating Sword Health's security posture into clear, authoritative responses to enable business growth. You'll own certification lifecycles and bridge the gap between technical security controls and medical device quality standards. This role offers a chance to work in a fast-paced AI-first healthcare environment with significant impact.

🎯 What You'll Do

• Respond to security questionnaires and RFPs as primary SME.
• Manage certification lifecycles (ISO 27001, Cyber Essentials) end-to-end.
• Partner with QARA to align security with medical device compliance.
• Collaborate with product teams to ensure security-by-design.

📋 Requirements

• 5+ years hands-on GRC experience with audit leadership.
• Experience with ISO 27001, SOC 2, HITRUST, or NIS2 (at least 3).
• Exceptional English communication for complex security concepts.
• Strong understanding of security controls in Infrastructure and Product environments.

✨ Nice to Have

• Familiarity with Medical Device regulations (ISO 13485, FDA GMP).
• Experience using LLMs to accelerate GRC workflows.
• Designing AI-driven automations for compliance processes.

🎁 Benefits & Perks

• 🏖️ Unlimited vacation
• 🏥 Health and well-being program (digital therapist sessions)
• 💻 Remote or hybrid work
• 🚀 Career development in fast-growing high-tech startup

🚩 Heads Up

• Requirements include extensive list of frameworks and AI skills, potentially overloading the role.