About Care Continuity

Care Continuity is redefining patient navigation. We combine clinical expertise, AI-driven insights, and compassionate human support to ensure patients receive the care they need - when and where they need it. Our solutions empower health systems and providers to close care gaps, reduce readmissions, and drive ROI through smarter, more connected navigation.

Our work is transforming how care decisions are made - and we're just getting started.

About the Role

As our Security and Compliance Manager, you'll own the ongoing development and governance of our information security program. You'll ensure our infrastructure, data, and processes meet the highest standards of confidentiality, integrity, and availability.

You'll be responsible for maintaining our security posture across cloud systems, infrastructure, and employee devices, as well as for leading audits, assessments, and incident response activities. This role is ideal for someone who thrives in a fast-moving, high-trust startup environment where hands-on technical skills and clear communication matter equally.

What You'll Do

Security Governance & Program Leadership

• Maintain and enhance Care Continuity's information security program to meet HITRUST, SOC 2, and HIPAA standards
• Support annual security attestations, penetration tests, and audits; track and drive resolution of findings
• Conduct ongoing risk assessments and implement remediation plans for identified gaps
• Develop and publish security standards, policies, and training materials to promote company-wide awareness
• Serve as the primary point of contact for all internal and external security assessments, audits, and client reviews
• Report regularly to senior leadership on key security metrics, trends, and incidents
• Oversee security onboarding and offboarding processes, including access provisioning, device setup, and security training for new hires and departing employees
• Partner with HR to ensure compliance with security policies throughout the employee lifecycle, including background checks, acceptable use agreements, and periodic security awareness training

Technical & Infrastructure Security

• Partner with system administrators and engineering teams to maintain secure cloud infrastructure (Azure) and staff device environments (Intune, Defender, Active Directory)
• Participate in design reviews to ensure new systems, integrations, and architectures adhere to security and privacy standards
• Review system and network logs to identify anomalies and coordinate incident response as needed.
• Stay current with emerging vulnerabilities, threat intelligence, and evolving security frameworks relevant to healthcare data

Incident & Risk Management

• Coordinate the identification, documentation, and remediation of security incidents
• Manage internal security ticket workflows, ensuring timely completion of incident, feature, and compliance-related tickets
• Conduct post-incident reviews and ensure lessons learned are integrated into improved processes and safeguards

What We're Looking For

• 5+ years of experience in information security, IT security, or related role
• Proven experience maintaining security programs in a regulated environment (healthcare preferred)
• Strong understanding of cloud and endpoint security, ideally within the Microsoft ecosystem (Azure, Intune, Defender, M365)
• Familiarity with compliance frameworks such as HITRUST, SOC 2, and HIPAA
• Hands-on experience with security assessments, audits, and incident response
• Excellent communication and collaboration skills - able to translate complex security issues into business impact
• Curiosity and continuous learning mindset to stay ahead of evolving threats and best practices

Nice to Have

• Experience working in a SaaS or health tech startup environment
• Familiarity with Terraform or Infrastructure-as-Code concepts
• Security certifications (e.g., CISSP, CISM, CISA, or similar)

Salary & Benefits

• Estimated Salary Range: $125,000 – $145,000, depending on experience and location
• Comprehensive benefits package, including medical, dental, vision, and 401(k)
• Equity opportunities
• Flexible PTO and fully remote work environment