mPulse Mobile

Senior Director of IT & Compliance - Virtual/Remote



The Senior Director of IT and Compliance at mPulse Mobile is responsible for the development and delivery of a comprehensive information and data security strategy. Will lead the effort to interpret compliance regulations such as SOX, HIPAA, CCPA, and HITRUST into actionable IT Controls, with corresponding processes, and policy oversight.   Will support the Executive Leadership team, by establishing strategic & tactical objectives, along with defining operating policies and procedures necessary to meet the mPulse business objectives securely. Establish and coordinate responsibilities and project assignments to direct reports and cross-functional teams. Lead a team of Information Security, Information Technology, and Compliance specialists and interact with all functions of Product development, Engineering, Customer Success, and Operations to ensure compliance and adherence to policies and practices.

This position will manage the SOC and HITRUST controls and work with the internal and external auditors and process owners to organize the audits, management, testing, and manage findings and gap remediations.  This position is responsible for creating and updating the related policies and SOPs.

• Permanent Flexible Hybrid work schedule (remote)
• Medical insurance
• Dental insurance
• Vision insurance
• Prescription drug coverage
• Life Insurance
• Health Spending Account (HSA)
• Flex Spending Account (FSA)
• Paid holidays
• Paid time off
• Employee Referral Program
• Community service programs
Company Mission and Highlights:
mPulse Mobile is reimagining health engagement to inspire healthier lives and deeper relationships between healthcare organizations and their consumers. Healthcare's leading Conversational AI platform combines with award-winning health education for the streaming age to deliver tailored digital health engagement that educates and activates healthcare consumers. With over a decade of experience, 300+ healthcare customers, and nearly 1 billion conversations annually, mPulse Mobile has the data, the expertise and the solutions to drive healthy behavior change.

mPulse Mobile delivers well-being for the streaming age through a modern learning platform and cinematic content created with popular experts. Offering custom and licensable content solutions, mPulse Mobile helps health innovators reach more people and lower costs to serve and improve health outcomes. Combined, these solutions have a proven ability to reach and engage vital member populations with learning expertise and rich media health education experiences, enabling health innovators to deliver personalized conversational experiences in preferred member channels and streaming content formats.

Accountability - Take ownership. Execute with intent. Exceed client expectations.
Recognition - Be positive. Encourage others. Celebrate success.
Collaboration & Learning - Share what you know. Listen openly. Stay curious.
Thrive - Cultivate well-being. Be inclusive. Find balance.
Innovation - Inspire creative solutions. Activate consumers. Drive outcomes.
Commitment - Work with purpose. Make an impact. Help us win.
  • Enjoy Flexible PTO and flexible work hours 
  • Hybrid, a remote-first working model with quarterly team meetings (travel paid by mPulse)
  • Two office locations: Encino, CA, and Minneapolis, MN 
  • mPulse Mobile covers 100% of employee-only premiums for selected plans as well as 25% dependent coverage
  • Full Vision and Dental - Dental and Vision individual premiums paid by mPulse as well as 25% dependent coverage
  • 3 Weeks of Paid Maternity/Paternity Leave 
  • Virtual Happy Hours & events
  • Weekly All-Hands meetings giving regular access to leadership
  • Several team interest groups including Diversity, Inclusion, & You committee, Culture Club, and mPulse Mobilize 
  • Laptop fitness station in LA Office 
  • Employee referral bonuses (up to $3000)
  • Ping pong conference table and Foosball 
  • Free snacks and drinks 
Duties and Responsibilities:
  • Oversee the organization's technological infrastructure (networks and computer systems) to ensure optimal performance. Select and implement suitable technology to streamline all internal operations and help optimize their strategic benefits-monitor compliance systems to ensure their effectiveness.
  • Cyber risk and cyber intelligence: Keep abreast of developing security threats and provide guidance and counsel to the senior leadership team. Develop organization-wide standards and practices for security problems that might arise from customer contracts or from acquisitions or other business initiatives
  • Governance: Manage organization-wide information security governance processes. Lead efforts to internally assess, evaluate and make recommendations regarding the adequacy of the security controls. Coordinate and track all information technology and security-related audits including the scope of audits, timelines, auditing agencies, and outcomes. Work with auditors as appropriate to keep audit focus in scope, maintain excellent relationships with audit entities and provide a consistent perspective that continually puts the organization in its best light. Provide guidance, evaluation, and advocacy on audit responses.
  • User and Data Access: Ensure that only authorized people can access restricted data and systems. Lead the development and implementation of effective policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation.  Data loss and fraud prevention: Develop and implement a strategy for increasing the number of audits, compliance checks, and external assessment processes for internal/external auditors, PII, HIPAA, etc. Works with internal and external audit, business process, and IT owners on policies, processes, and support of controls. Represents IT Compliance to internal or external auditors in compliance reviews.
  • Maintain documentation of compliance activities, such as complaints received or investigation outcomes. Identify compliance issues that require follow-up or investigation, and partner with HR to conduct or direct the internal investigation of compliance issues. Collaborate with human resources departments to ensure the implementation of consistent disciplinary action strategies in cases of compliance standard violations.
  • Responsible for overall Compliance and Security Roadmaps.
  • Interprets and develops controls, policies, and SOPs to support compliance with various regulatory requirements including, HIPAA, SOC, and CCPA
  • Ensures employee training on compliance-related topics, policies, or procedures is established and executed.
  • Monitors, researches, analyzes, and interprets federal and state regulations to determine applicability and risks to IT operations
  • Verify that all firm and regulatory policies and procedures have been documented, implemented, and communicated.
  • Discuss emerging compliance issues with management or employees.
  • Keep informed regarding pending industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes.
  • Prepare management reports regarding compliance operations and progress.
  • Direct the development or implementation of compliance-related policies and procedures throughout an organization.
  • Review communications such as securities sales advertising to ensure no violations of standards or regulations.
  • Other duties as required and assigned
Skills, Abilities, and Experience:
  • Good working knowledge of Information Security frameworks (NIST 800-53, COBIT, CIS, HITRUST Etc.)
  • Good working knowledge of regulatory compliance frameworks (HIPAA, SOC2, CCPA, etc.)
  • Solid working knowledge of Microsoft Azure
  • Experience with configuring privacy and compliance software
  • Experience in a cloud-only environment, preferably Azure and AWS Cloud
  • Experience in multiple Information Security disciplines/domains
  • Solid working knowledge of internal and external audit practices
  • Technical support processes and protocol
  • Effectively using organizational and planning skills with attention to detail and follow-through.
  • Tracking, troubleshooting, and resolving user problems
  • Efficiently meeting deadlines, schedules, and target dates
  • Maintaining confidentiality of work-related information and materials
  • Establishing and maintaining effective working relationships
  • Security Certification highly desirable (Security+, ITIL, GCLD, CIPM, or any one Microsoft or AWS Cloud Security)
Minimum Qualifications:
  • Bachelor's Degree in Computer Science, Information Technology, Information Systems, Engineering, or a related field
  • 7 years of working experience in the Information Technology or Information Security field
  • 5 years of related management experience including people management and project/program, director level or above.
  • 3 years experience in the architecture, design, and implementation of network security solutions in a multi-tiered web-based environment with legacy systems.
  • Experience working in a Healthcare environment or working knowledge of the Healthcare Tech space
  • Excellent verbal, written, and interpersonal communication skills, including explaining technical concepts in non-technical terms
*Please note, due to the requirements of this position, responses may automatically disqualify you from moving forward in the application process. Please review the minimum qualifications thoroughly before applying. 
  • Minimum of 7 years working experience in Information Technology or Information Security field
  • Minimum 5 years of related management experience including people management and project/program.
  • Minimum 3 years’ experience in the architecture, design, and implementations of network security solutions in a multi-tiered web-based environment with legacy systems.
  • Experience working in a Healthcare environment or working knowledge of the Healthcare Tech space
  • Excellent verbal, written, and interpersonal communication skills, including explaining technical concepts in non-technical terms
  • Bachelor's Degree in Computer Science, Information Technology, Information Systems, Engineering, or related field
mPulse Mobile provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.