Security & Compliance Manager


San Francisco, CA, US
  • Job Type: Full-Time
  • Function: Operations
  • Post Date: 02/02/2021
  • Website:
  • Company Address: 450 5TH ST. SUITE 405, SAN FRANCISCO, CA 94107

About PlushCare

Virtual concierge primary care platform offering a subscription membership model to consumers

Job Description

PlushCare is a membership-based virtual primary care platform that is transforming the healthcare industry by making exceptional healthcare more accessible, convenient, and affordable. We connect thousands of patients with world-class physicians right from their phones—creating a seamless and enjoyable experience that eliminates many of the frustrations associated with doctors visits.

From urgent care to ongoing care and even mental health and beyond, we are committed to the whole-body wellness of our patients. As we continue to grow our services and expand our impact, we are looking for passionate and empathetic individuals to join our team.

Experience in the startup ecosystem is helpful, but a passion for helping people live healthier, happier & longer lives is essential.

The Role

As an experienced, driven, and hands-on security & compliance manager, you will be a founding member of the Security & Compliance Team, reporting to the VP of Engineering. You will be responsible for leading PlushCare’s compliance initiatives, establish best practices for information security across the organization, and help manage third party requests and audits.

What you’ll do

Lead, implement, maintain, and improve PlushCare’s compliance initiatives and auditing
Establish best practices for information security and privacy and help enhancing organization wide governance and risk management (NIST)
Work with teams such as Engineering, Clinical Operations, IT, and HR to ensure compliance across the organization
Consult on the compliance requirements and implementation of security and compliance requirements in contracts and RFPs
Collect and manage evidence for audits
Conduct company-wide information security training
Help perform vendor security assessments

What we’re looking for

Academic background in Computer Science or similar profession
In lieu of a formal “degreed” education, an equivalent combination of experience would meet this requirement
CISSP certification or similar
5+ years of security compliance or audit related experience
Extensive security control auditing or implementation experience
SOC 2, ISO 27001, NIST, or HITRUST auditing or implementation experience
Experience with HIPAA privacy regulations
Exposure to cloud-based infrastructure such as AWS
Understanding of security risk management and security best practices.
Deep understanding of security policies
Strong team player in a flat-structured, highly-collaborative, agile environment is a must
Strong program management skills
Excellent written and verbal communication skills

Bonus Points

Experience in the e-commerce or telemedicine space


We believe diversity drives innovation. We are committed to inclusion across race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We celebrate multiple approaches and diverse points of view that drives us forward every day.

Related Jobs

Growth Product Manager

PlushCare - San Francisco, CA, US

Senior Manager Performance Marketing

PlushCare - San Francisco, CA, US

Physicians: 2021 IC Physician - California

PlushCare - Remote

Senior Product Designer

PlushCare - San Francisco, CA, US

Software Development Engineer in Test (SDET)

PlushCare - Vancouver City, British Columbia, CA
Disclaimer: Local Candidates Only
This company does NOT accept candidates from outside recruiting firms. Agency contacts are not welcome.