SonicJobs Logo
Left arrow iconBack to search
  1. Home
  2. 32897, Orlando, FL
  3. Compliance Architect

Compliance Architect

Fountain Life
Posted 12 days ago, valid for 16 days
Location

Orlando, FL 32897, US

Salary

Competitive

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • The Compliance Architect at Fountain Life is responsible for building a robust compliance program that supports innovative healthcare solutions while ensuring the protection of patient data.
  • This role requires 5-8 years of compliance experience in healthcare, health tech, or medical devices, with direct management of HITRUST r2 certification being a non-negotiable requirement.
  • Key responsibilities include managing HITRUST certification, maintaining HIPAA compliance, and developing AI governance frameworks for patient-facing tools.
  • The position offers a competitive salary, reflecting the critical nature of the role in ensuring regulatory adherence and fostering trust within the organization.
  • As the first compliance hire, you will have the opportunity to shape the compliance landscape as the company scales globally, protecting 8,000 members while driving innovation.

As the Compliance Architect at Fountain Life, you build the foundation that allows innovation to flourish safely. While we push the boundaries with AI-driven diagnostics and personalized medicine, you ensure we protect the members who trust us with their health data.

You partner with engineers developing patient-facing AI tools, turning HITRUST, HIPAA, and GDPR requirements into frameworks our 200-person team can execute. Your work accelerates trust, opens markets, and protects our mission. You're building this program from the ground up鈥攖he architect, not just the auditor.

What You'll Do

Own Our Regulatory Foundation

聽聽聽聽聽聽聽Manage our HITRUST r2 certification program end-to-end, from evidence collection to external assessor coordination

聽聽聽聽聽聽聽Build and maintain our HIPAA compliance program across all clinical and operational systems

聽聽聽聽聽聽聽Design compliance frameworks that enable international expansion with GDPR readiness

Pioneer AI Governance in Healthcare

聽聽聽聽聽聽聽Partner with engineering to establish governance for patient-facing AI diagnostic tools

聽聽聽聽聽聽聽Develop controls addressing algorithmic bias, model explainability, data leakage, and patient safety

聽聽聽聽聽聽聽Integrate compliance into product development workflows

聽聽聽聽聽聽聽Prepare for EU AI Act


Build Cross-Functional Trust

聽聽聽聽聽聽聽Advise executive leadership on risk and regulatory strategy

聽聽聽聽聽聽聽Translate regulations into clear guidance that enables teams

聽聽聽聽聽聽聽Deliver HIPAA and security awareness training

聽聽聽聽聽聽聽Manage compliance incidents with urgency and discretion

Key Responsibilities

聽聽聽聽聽聽聽Manage HITRUST r2 certification: scoping, controls, evidence, and assessor coordination

聽聽聽聽聽聽聽Maintain HIPAA Security Rule, Privacy Rule, and Breach Notification compliance

聽聽聽聽聽聽聽Create AI risk assessment frameworks integrated into product development

聽聽聽聽聽聽Conduct third-party vendor due diligence and risk assessments

聽聽聽聽聽聽聽Develop data protection frameworks satisfying HIPAA and GDPR

聽聽聽聽聽聽聽Conduct quarterly internal audits and gap assessments

聽聽聽聽聽聽聽Monitor regulatory changes and adapt programs proactively

Your Qualifications

Required

聽聽聽聽聽聽聽5-8 years compliance experience in healthcare, health tech, or medical devices

聽聽聽聽聽聽聽Direct HITRUST r2 certification management experience (non-negotiable)

聽聽聽聽聽聽聽Expert knowledge of HIPAA Security Rule, Privacy Rule, and HITRUST CSF r2

聽聽聽聽聽聽聽Experience implementing HIPAA compliance in cloud-based healthcare environments

聽聽聽聽聽聽聽Track record working with engineering teams in product-driven organizations

聽聽聽聽聽聽聽Ability to build compliance programs independently with minimal oversight

聽聽聽聽聽聽聽Strong understanding of cloud security architecture (AWS, Azure, or GCP)

聽聽聽聽聽聽聽Working knowledge of AI/ML systems and patient-facing AI diagnostic risks

聽聽聽聽聽聽聽Foundational understanding of GDPR and international privacy regulations

Preferred

聽聽聽聽聽聽聽HITRUST CCSFP, CISA, CISSP, CRISC, CISM, CIPP/US, CCEP, or CRCM certifications

聽聽聽聽聽聽聽Experience with ISO 27001, NIST Cybersecurity Framework

Core Competencies

聽聽聽聽聽聽Technical fluency to work directly with engineers and translate regulatory requirements

聽聽聽聽聽聽聽Strategic risk thinker who balances compliance rigor with business needs

聽聽聽聽聽聽聽Clear communicator to both technical teams and executive leadership

聽聽聽聽聽聽聽Self-directed with strong ownership and initiative

聽聽聽聽聽聽聽Collaborative partner seen as innovation enabler, not blocker

聽聽聽聽聽聽聽Calm under pressure during audits, incidents, and regulatory situations

What Success Looks Like in Year One

聽聽聽聽聽聽聽Complete HITRUST r2 re-certification with zero major findings

聽聽聽聽聽聽Build trusted advisor relationships with Engineering, Product, and Executive teams

聽聽聽聽聽聽聽Create comprehensive compliance documentation accessible to all teams

聽聽聽聽聽聽聽Develop GDPR readiness roadmap for international expansion

聽聽聽聽聽聽聽Position compliance program for scale as we grow


As the Compliance Architect, you'll:

聽聽聽聽聽聽聽Build a compliance program for one of healthcare's most innovative models

聽聽聽聽聽聽聽Work on emerging challenges at the intersection of healthcare AI and patient privacy

聽聽聽聽聽聽Protect 8,000 members while enabling life-changing healthcare innovation

聽聽聽聽聽聽聽Grow into leadership as our first compliance hire when we scale globally



Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Logo
SonicJobs
Your next career move. Sorted.
Search jobsbackground image

Contact us

漏 2017 - 2026 SonicJobs Inc. All rights reserved

Terms & Conditions聽|聽Privacy Policy聽|聽Browse Jobs