Director, Security & Compliance

About IntusCare

IntusCare is a healthcare analytics platform that synthesizes healthcare data to identify risks, visualize trends, and optimize care for PACE programs. IntusCare empowers care providers to mitigate high risk events and equips executives with the tools to make informed decisions based on comprehensive clinical and operational data. Our mission is to catalyze data-driven change to achieve high-value, multi-disciplinary care for older adults. In addition, IntusCare offers a broad range of technical assistance and consulting services to support PACE programs under development and existing programs that are growing and evolving to meet the needs of their communities.

Role Overview:

We are seeking a Director of Security and Compliance to lead and mature our organization’s security, privacy, and healthcare compliance programs. This individual will partner cross-functionally across Engineering, Product, Customer Success, Legal and Executive leadership to ensure IntusCare remains fully compliant with HIPAA, SOC 2, and all relevant healthcare and data protection regulations.

This role is critical to maintaining the trust of our partners and customers while enabling the secure, scalable delivery of our EMR and analytics products.

Responsibilities:

• Own and evolve IntusCare’s healthcare compliance strategy, policies, and processes, ensuring alignment with HIPAA, SOC 2, and other regulatory frameworks

• Lead and manage internal and external audits, risk assessments, and security reviews

• Partner with Product and Engineering to integrate security and compliance requirements into our platform, tools, and development lifecycle

• Develop and maintain Business Associate Agreements (BAAs), data handling policies and breach response plans

• Serve as a subject matter expert on healthcare compliance, security best practices, and evolving regulatory requirements

• Lead incident response efforts and coordinate with legal and executive teams in the event of a data breach or compliance concern

• Drive internal compliance education and training programs for staff

• Oversee the implementation and monitoring of key controls related to access management, audit logs, encryption, data retention, and vendor risk management

• Act as the primary point of contact for external partners and clients on security and compliance-related topics

• Collaborate with customers during onboarding and security due diligence to instill confidence in IntusCare’s practices

• Support contract negotiations by reviewing and advising on data privacy and security terms

Qualifications:

• 7+ years of experience in healthcare compliance, data privacy, or information security roles, ideally in a SaaS or healthtech environment

• Deep understanding of HIPAA, SOC 2, and other healthcare regulatory frameworks

• Proven track record of leading audits and managing security or compliance programs end-to-end

• Strong knowledge of security controls, data governance, and privacy standards.

• Experience collaborating with cross-functional teams including Engineering, Product, Legal and Sales

• Excellent communication skills, with the ability to translate complex regulations into practical guidance for both technical and non-technical audiences

• Prior experience working with or advising EMR or healthcare technology platforms

Preferred Skills:

• Strong familiarity with PACE, value-based care, or long-term care models.

• Certifications such as CHC, CISSP, CIPP/US, or HCISPP are a plus

• Experience conducting risk assessments and vendor security reviews.

• Knowledge of state-specific healthcare regulations and Medicaid/Medicare compliance.

• Ability to build compliance and security programs from the ground up in a scaling startup environment.

• Comfortable leading and mentoring small teams or cross-functional working groups

Benefits

• Competitive salary and benefits package including uncapped PTO and health insurance

• Opportunity to work with a passionate and innovative team

• Professional development and growth opportunities

• Flexible work environment; fully remote

Compensation: The salary range for this role is $155K–$185K. We expect the ideal candidate to fall near the midpoint of this range, though final compensation will be determined based on experience, skills, and organizational needs.

Work location: This is a fully remote role based in the United States.

Sponsorship: This position is not eligible for sponsorship.