All roles

Open role

Compliance Specialist – FedRAMP & HITRUST

Remote · Mexico Full-time

Jorie AI is transforming healthcare operations through intelligent automation, secure cloud solutions, and data-driven insights. As a Compliance Specialist – FedRAMP, you will play a key role in ensuring Jorie’s cloud infrastructure and services meet stringent federal security and compliance standards while maintaining alignment with existing HITRUST and HIPAA frameworks. This position requires deep understanding of FedRAMP authorization processes, cloud security compliance, and the integration of HITRUST controls across multi-framework compliance programs. The ideal candidate is proactive, detail-oriented, and comfortable working cross-functionally with IT, security, and audit teams in a fast-paced technology environment.

Key Responsibilities

FedRAMP Compliance Oversight Support the implementation and maintenance of Jorie’s FedRAMP authorization program in alignment with agency and customer requirements. Develop and maintain FedRAMP System Security Plans (SSP), POA&Ms, and supporting documentation. Coordinate with internal IT and cloud engineering teams to ensure continuous compliance of systems within AWS, Azure, or other CSP environments. Liaise with 3PAOs (Third-Party Assessment Organizations) and government stakeholders during audits and assessments. HITRUST and Multi-Framework Alignment Ensure consistent control alignment between FedRAMP Moderate/High baselines, HITRUST CSF, and NIST 800-53 frameworks. Maintain evidence documentation, control mapping, and compliance matrices for overlapping regulatory programs (HITRUST, SOC 2, HIPAA, PCI). Participate in ongoing HITRUST recertification processes, including control review, evidence validation, and policy updates. Collaborate with internal and external auditors (e.g., ISP) to ensure accurate reporting and compliance posture visibility. Risk Management & Continuous Monitoring Assist in continuous monitoring of security controls and remediation of POA&M items. Conduct risk assessments for cloud systems, vendors, and new integrations impacting the FedRAMP boundary. Coordinate vulnerability scans, incident response activities, and configuration management documentation in alignment with FedRAMP and HITRUST requirements. Policy, Documentation, and Training Develop, update, and enforce policies related to data security, cloud compliance, and regulatory reporting. Provide compliance guidance and training to engineering, DevOps, and IT personnel involved in the FedRAMP environment. Support internal readiness reviews, gap assessments, and compliance roadmap initiatives.

Qualifications

Education Bachelor’s degree in Information Security, Computer Science, Compliance, or related field required. Experience 3–6 years of experience in compliance, information security, or risk management. At least 2 years of direct experience supporting FedRAMP programs or equivalent government compliance frameworks. Hands-on experience with HITRUST CSF certification processes, evidence collection, and auditor coordination. Experience working in cloud-based environments (AWS, Azure, or GCP) and familiarity with continuous monitoring tools (Splunk, Qualys, Nessus, etc.). Background in healthcare, AI, or SaaS industries strongly preferred. Skills & Competencies In-depth understanding of NIST 800-53, FedRAMP Moderate/High baselines, and HITRUST CSF control mapping. Strong knowledge of HIPAA, HITRUST, SOC 2, and ISO 27001 standards. Excellent documentation and writing skills — ability to produce and maintain formal compliance deliverables. Strong analytical, organizational, and communication skills, with the ability to work across technical and non-technical teams. FedRAMP (3PAO) Assessor or equivalent experience Preferred Certifications HITRUST Certified CSF Practitioner (CCSFP) – required Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) – preferred Certified Information Systems Security Professional (CISSP) – a plus Security+ or CCSP (Certified Cloud Security Professional)

More open positions

Director, E-Commerce Sales & Partnerships

Work from home Full-time role

Controller / Director of Accounting

Work from home Full-time role

Ontario Coalition of Rape Crisis Centres (OCRCC)Executive Director

Work from home Full-time role

Patient Access Representative

Work from home Full-time role

Virtual Group Facilitator

Work from home Full-time role

[Remote] Product Designer, Notifications

Work from home Full-time role

HUB Traffic Manager

Work from home Full-time role

Claims Outbound Caller - 1365 - Chile

Work from home Full-time role

Téléconseiller 100% Télétravail H/F CDD Bilingue

Work from home Full-time role

[Remote] Operations Fraud Officer - Bank Operations

Work from home Full-time role

Paralegal - Medical Records

Work from home Full-time role

Part-Time Remote Data Entry Specialist – Aviation Operations Support at careerzynith (Hourly Compensation)

Work from home Full-time role

Physics Research Fellow (PhD) | $25/hr Remote

Work from home Full-time role

Senior Site Reliability Engineer - Remote EST

Work from home Full-time role

Senior ABAP Developer

Work from home Full-time role

Consultant(e) RP - France

Work from home Full-time role

Senior Customer Success Manager- US (Mid West and West Coast)

Work from home Full-time role

Financial Analyst, Cash Flow

Work from home Full-time role

Catalog Operations Analyst II

Work from home Full-time role

Tax Expert – Seasonal

Work from home Full-time role

Business Development - Strategy Consultant (Partnerships Operations & Analytics Healthcare) Hybrid (ET/CT) R0056075

Work from home Full-time role