IT Compliance Manager

About us

LifeMD is a leader in virtual primary care, headquartered in NYC, and we're redefining how healthcare meets technology. Our vertically integrated digital care platform powers telemedicine, laboratory services, and pharmacy solutions, serving over 200 conditions across all 50 states.

At the heart of this transformation is our team of 50+ talented developers, engineers, and tech innovators building state-of-the-art systems that make healthcare smarter, faster, and more accessible. From architecting scalable backend systems to crafting intuitive user experiences, we are pushing boundaries every day.

Recognized as one of the fastest-growing healthcare tech companies (#166 on Deloitte Fast 500 in 2023), LifeMD is not just a healthcare company—it’s a tech company revolutionizing healthcare.

If you're passionate about building impactful technology, solving complex challenges, and seeing your code change lives, LifeMD is the place to grow, innovate, and make a difference.

Join us and let's build the future of healthcare—together. 🚀

Position Summary

We are seeking a highly skilled and experienced IT Compliance Manager to join our growing team. In this critical role, you will be the cornerstone of our IT compliance program, with a specialized focus on ensuring adherence to Sarbanes-Oxley (SOX) IT General Controls (ITGC) and the Health Insurance Portability and Accountability Act (HIPAA). You will be instrumental in safeguarding our financial reporting integrity and protecting sensitive patient health information (PHI) across our dynamic technology landscape. If you are a meticulous professional with a passion for IT governance and regulatory compliance in a fast-paced healthcare technology environment, we encourage you to apply.

Core Responsibilities

• Design, implement, and maintain robust IT compliance frameworks, policies, and procedures, with a strong emphasis on SOX ITGC and HIPAA regulations
• Conduct targeted risk assessments and audits of IT systems, infrastructure, and processes to identify and mitigate compliance gaps related to financial reporting and PHI
• Develop and manage remediation plans for identified compliance issues, ensuring timely resolution
• Monitor evolving regulatory landscapes (SOX, HIPAA) and proactively update IT policies and procedures
• Collaborate closely with IT, Finance, Legal, Security, and Healthcare Operations teams to embed compliance into daily operations
• Ensure effective implementation and operation of security controls, including access management, audit logging, and data encryption, to meet SOX and HIPAA requirements
• Develop and deliver comprehensive compliance training programs for employees, tailored to SOX ITGC and HIPAA
• Lead and coordinate internal and external IT compliance audits
• Manage vendor risk assessments, particularly for those handling financial data or PHI
• Contribute to incident response efforts, focusing on potential SOX control weaknesses or HIPAA breaches

Basic Qualifications:

• Bachelor's degree in Computer Science, Information Systems, Business Administration, or a related field
• 5+ years of experience in IT compliance, IT audit, or a related role, with specific, hands-on experience in SOX ITGC and HIPAA
• Strong understanding of SOX ITGC requirements and best practices (change management, access controls, computer operations, SDLC)
• In-depth knowledge of HIPAA Privacy, Security, and Breach Notification Rules
• Experience with IT risk assessment methodologies
• Proficiency in developing and implementing IT policies and procedures
• Knowledge of relevant industry frameworks and standards (e.g., NIST, ISO 27001)
• Experience managing IT audits (internal and external)
• Familiarity with technical security controls and their implementation
• Demonstrated ability to interpret and apply complex regulatory requirements to IT practices

Preferred Qualifications:

• Relevant certifications such as CISA, CISM, CRISC, CHPC, or equivalent

• Experience working within a publicly traded company and/or a healthcare environment
• Excellent analytical and problem-solving skills
• Strong communication (written and verbal) and interpersonal skills, with the ability to influence and build consensus
• Ability to work independently and collaboratively across diverse teams
• Strong project management, organizational skills, and attention to detail
• Ethical and objective approach to compliance

• Salary Range: $130,000-$150,000
• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Unlimited PTO Policy
• Paid Holidays
• Short Term & Long Term Disability
• Training & Development