Compliance Engineer

OneOncology is positioning community oncologists to drive the future of cancer care through a patient-centric, physician-driven, and technology-powered model to help improve the lives of everyone living with cancer. Our team is bringing together leaders to the market place to help drive OneOncology’s mission and vision.

Why join us? This is an exciting time to join OneOncology. Our values-driven culture reflects our startup enthusiasm supported by industry leaders in oncology, technology, and finance. We are looking for talented and highly-motivated individuals who demonstrate a natural desire to improve and build new processes that support the meaningful work of community oncologists and the patients they serve.

Job Description

Role Summary:

As a member of the Navigating Care Product & Engineering team, this role is responsible for executing technical work that supports our DevOps and QA initiatives across both internal systems and client-facing products. You will directly contribute to ensuring our platforms meet security standards/requirements and helping us scale that program across the Engineering organization. The ideal candidate is a strategic thinker with strong analytical skills and a proven ability to tackle complex problems while delivering measurable improvements in security compliance. This role reports to the VP, Software Engineering. 

This is a full-time, fully remote position based in the United States.

Responsibilities

• Lead & perform technical evidence gathering for audits & compliance reviews, ensuring accuracey, completeness & audit readiness
• Own the creation and governance of system documentation, including PHI data stores and data flows
• Execute release certifications and tracking of certification requirements, including MIPS reporting.

Interested in remote work opportunities in Devops? Discover Devops Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Partner with leadership to help shape & evolve the compliance strategy , including the integration of AI into the program.
• Drive cross-functional implementation and validation of compliance requirements across systems and workflows.
• Architect & maintain automated test suites to validate compliance requirements - Pre-production environments, Production smoke testing.
• Lead audit readiness and execution efforts for external frameworks (e.g., HITRUST, SOC 2), including auditor engagement and response coordination
• Continuously improve compliance processes, tooling and documentation to improve efficiency, scalability and control effectiveness
• Additional responsibilities as assigned to help drive our mission of improving the lives of everyone living with cancer.
  
  

Required Or Preferred Qualifications (specify Within)

• 5+ years of experience in a technical role supporting HIPAA and HITRUST environments (e.g. support desk, SRE, or software engineering)

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Proven ability to produce clear, accurate compliance documentation for both technical and non-technical audiences (policies, checklists, audit evidence, deployment guides)
• Extensive experience leading & supporting external audits (HITRUST, SOC 2, or similar), including ownership of evidence collection, control validation and auditor coordination
• Preferred certifications: CCSFP (HITRUST), CISA, CISM, CISSP
  
  

Essential Competencies

• Attendance is an essential job function.
  
  

This job description does not contain a full listing of activities, duties or responsibilities required of this role. Duties, responsibilities and activities may change, or new ones may be assigned at any time with or without notice.