Information Security Compliance Manager
Out-of-pocket healthcare costs are skyrocketing each year, forcing people across America to make difficult decisions about their health and money. We started Lively because we believe no one should have to sacrifice their personal health for their financial health. Lively makes it easier to manage rising costs through Health Savings Accounts (HSA) that allow people not only save on the costs of healthcare today, but plan for the costs of tomorrow.
Located in San Francisco, Lively is backed by the top institutional and individual investors including Costanoa Ventures, Y-Combinator, Ally Ventures, The Durant Company, SV Angel, Point Judith Capital, Streamlined Ventures, among others.
About the Role
Lively is looking for an information security compliance manager to spearhead communication about Lively’s security program to outside parties. This person will work closely with Lively’s Legal and Compliance Department as well as Lively’s Security team. This role will be responsible for implementing systems, which allow Lively to continue to protect Lively’s user’s information as a leading HSA company.
Partner with Legal and Compliance and the Head of Security to enhance fund monitoring systems to help reduce fraud.
Partner with the Compliance Counsel, internal stakeholders, and external auditors to provide evidence for SOC and PCI audits.
Perform information security risk assessments on existing and prospective third parties.
Review and revise security policies and procedures and develop and maintain standards.
Support gap assessment remediation related to security audits and frameworks.
Review, advise, and produce memos on new legislation and its potential impact on Lively.
Provide responses to questionnaires and requests for proposals from third parties about Lively’s security program.
Lead quarterly identity and access management reviews on third party tools and services.
Skills & Experience
3+ years of experience in the information security sector.
CISSP or other certifications are desired but not required.
Prior experience in the healthcare, fintech, or regulated industry is preferred.
Ability to communicate complex information in a simplified manner.
Strong ability to organize and process information.
Proactive in identifying and addressing issues.
Creates and delivers persuasive, clear, actionable, and concise insights.
Proficient in Google Suite, including drive, sheets, etc.
Self-motivated, embraces change, follows through with commitments and maintains a positive attitude in challenging situations.
Is an advocate for diversity, equity, and inclusion of underprivileged and marginalized people.
Demonstrates tolerance and empathy.
Applicants must be currently authorized to work in the United States on a full-time basis with no sponsorship needed now, or in the future.
We encourage you to apply if you do not meet all of the qualifications but feel you would be a good fit for the position.
Benefits & Perks
We offer competitive salaries, stock options, medical, dental, vision, life and disability coverage, HSA with employer contribution, FSA, flexible vacation, commuter benefits, a 401k plan, and more.
At Lively, we believe having diverse teams in which everyone can be their authentic self is key to our success. We encourage people from underrepresented backgrounds to apply. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Come join us in our mission to help people optimize their healthcare spending, maximize their savings, and better their livelihood!