Description

Lead Nayya's security strategy, compliance programs, and IT operations. You will be responsible for protecting sensitive health and financial data, maintaining regulatory compliance (HIPAA, SOC 2), and ensuring the reliability of internal systems.

Requirements

• Experience in security leadership and compliance
• Expertise in HIPAA and SOC 2 frameworks
• Knowledge of IAM, encryption, and incident response
• Proven ability to manage IT operations and vendor risk
• Strong cross-functional collaboration skills

Responsibilities

• Lead security program design and continuous improvement
• Own SOC 2 Type II and HIPAA compliance initiatives
• Manage IT operations and help desk services
• Evaluate and manage vendor and third-party security risks
• Collaborate with engineering on cloud security and infrastructure hardening