Who We Are and What We’re About:

Brightline is on a mission to build a bright future for every child, bringing extraordinary behavioral health care to children and families.

We’re in the middle of a behavioral health crisis that we can’t ignore—especially not when it comes to our children. 1 in every 5 children has a behavioral health condition, yet up to 80% still get little or no help. Far too many families face insurmountable barriers when their child really needs help, and parents are too often left feeling alone and without the support they need. We can do so much better. That’s why we’re here! 

When you join Brightline, you’re joining a team that has an unstoppable drive to change the lives of families across the country. We’re a team of thoughtful problem-solvers, expert and kind clinicians, and experienced operators and technologists. Above all, we’re committed to helping each other succeed, learn, and grow—all while bringing care to families when, where, and how they need it.

No matter what you’re looking for in your next role, we’re pretty confident that you’ll #FindItAtBrightline. 

About the Role: 

Brightline is looking for an IT Risk and Compliance Manager to join the Security & Compliance team and be a foundational builder of Brightline’s compliance program. 

We are looking for someone with a strong understanding of IT risk and compliance requirements with emphasis on HIPAA regulations. This hire will leverage their experience working with control owners to design, implement, test and report on control activities. This position will focus on supporting our IT and Security teams by driving consistent processes across new applications and technologies as we scale our business practices and will work closely with our engineering teams as they create the features for our application. This position requires someone with a positive frame of mind and someone looking to be an agent of change and an appetite for growth. This position can be remote in the United States, but with an expectation of occasional travel for company events.

Responsibilities:

• Review, document and identify gaps in current IT processes while charting the path to remediation. You will work in close collaboration with our operational partners to drive gaps to closure and make meaningful and lasting changes to our processes. 
• You will work closely with our external audit teams to plan audit timelines, participate and lead walkthrough conversations, collaborate with stakeholders to gather audit evidence and perform tests of design and effectiveness for key processes and controls. These efforts will directly tie to our ability to deliver on our SOC 2 and HITRUST ambitions.
• You will build for the future by designing IT testing procedures to identify and evaluate risk exposures and determine the effectiveness and efficiency of controls. You will look to automate as much as possible so we can continue to deliver value for the business.
• Serves as the subject matter expert and point of contact to External Auditors. Assists project teams with creation and implementation of IT controls objectives. Our customers will have trust in the work we do based on your representation of us. 

 Who You are:

• You’re someone who wants to influence your own development and enjoys working in a dynamic environment. 
• You’re looking for a company where you have the opportunity to pursue your interests across functions.
• You’re looking to make an impact quickly and be able to dictate your career. Where a job title is not considered the final definition of who you are, but the starting point. 
• You have the ability to take ownership and be effective with limited supervision including leveraging your excellent analytical and written communication skills to produce high quality documentation and reporting for management.
• You are effective at engaging with teams in various functions and across different levels. Strong organizational skills and ability to prioritize and manage multiple projects simultaneously. 

Requirements:

• 4-8 years of related work experience in IT Audit, IT Compliance, or IT Risk Management. 
• Basic understanding of modern system development lifecycle and web / mobile application development. 
• Demonstrated experience conducting in assisting or being the subject of third party audits (SOC 2, ISO 27001, HITECH) evaluations including planning, scoping, execution, and reporting of audit programs. 

Bonus Points:

• Experience with standards such as ISO 27001, HIPAA, HITRUST, HITECH, SOC 2 
• IT experience in a healthcare compant 
• Prior people management experience 
• Big 4 or regional level audit background  

Benefits + Perks: 

• Remote first and focused on community—we have Bright Spots with employees across the country (check out more info below) + generous work-from-home stipend
• Competitive compensation & benefits packages because we know the work you do is hard and we recognize how valuable you are, including an unlimited PTO policy + 14 paid holidays, Health, Vision, Dental, 401k, and stock options
• Collaborate with diverse members across teams with weekly group learning opportunities and team breakfasts (and offsite retreats in the future!)
• Dedicated time for your health and wellness, including group workouts and meditations hosted by Brightline employees 
• With your help, we’ll build diverse & equitable programs and experiences

Brightline is a nationally distributed team with many of our team members located throughout the country, some of those being: New York, Boston, Seattle, Portland, Atlanta, Houston, Denver, Minneapolis, San Diego, and Los Angeles. The Brightline office is headquartered in the SF Bay Area, but we consider all local and remote (U.S.) candidates. 

At Brightline, we believe that collaborative, diverse, and empathetic tech & product teams can create transformational products to change the lives of families across the country. In a conscious effort to create a diverse and inclusive environment for our employees and the families we serve, we celebrate our individual differences and walks of life. Brightline is an equal opportunity employer and encourages all applicants from every background and life experience to apply.