SIGN IN
Senior Compliance Specialist II jobs in United States
cer-icon
Apply on Employer Site
company-logo

Spring Health · 14 hours ago

Senior Compliance Specialist II

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$148K/yr - $164K/yr
date7+ years exp
Spring Health is on a mission to revolutionize mental healthcare by removing barriers that prevent access to help. The Senior Compliance Specialist II will assist with Information Security compliance matters, leading enterprise-level compliance programs and serving as a point of accountability for audits and certifications.
Artificial Intelligence (AI)HealthcareWellnessHealth CareMental HealthmHealth

Responsibilities

Own and strategically lead enterprise-level compliance programs, including SOC 2 Type II, HITRUST, HIPAA, GDPR, ISO 27001, ISO 42001, and ITGC-SOX, from planning through execution and continuous improvement
Define and mature ISO 27001 and ISO 42001 control environments and SOX 404 ITGCs, including risk assessment, control testing strategy, and remediation oversight
Serve as the primary point of accountability for audits and certifications, independently managing assessment strategy, scope definition, auditor relationships, executive-level communications, and remediation prioritization
Design and evolve compliance program frameworks, proactively identifying gaps, scaling controls to support business growth, and aligning compliance initiatives with Spring Health’s risk tolerance and strategic objectives
Act as a subject matter expert and internal consultant for engineering, product, IT, Legal, Privacy, and Security teams, advising on control design, risk tradeoffs, and audit interpretation
Lead complex risk assessments and translate technical, regulatory, and operational risk into clear, actionable recommendations for leadership
Drive maturity of the GRC program and tooling, establishing best practices, improving automation and reporting, and ensuring high-quality, audit-ready evidence across the organization
Mentor and guide more junior compliance team members, setting standards for quality, rigor, and professionalism across compliance deliverables
Lead customer assurance and external stakeholder engagements for high-stakes or complex inquiries, including enterprise customer calls, escalations, and detailed security questionnaires
Own and mature cross-functional programs such as Business Continuity & Disaster Recovery, third-party risk management, and security awareness training, ensuring alignment with industry best practices and regulatory expectations
Provide strategic insights and regular updates to leadership, including risk trends, audit readiness, compliance metrics, and recommendations for investment or prioritization

Qualification

SOC 2 Type IIHITRUSTHIPAAGDPRISO 27001ISO 42001ITGC-SOXGRCRisk assessmentAudit managementCommunication skillsMentoringOrganizational skills

Required

Bachelor's degree plus 7+ years of progressive experience in a GRC, IT compliance, security, risk, or related fields
Deep, hands‑on expertise with frameworks and regulations such as SOC 2, HITRUST, HIPAA, GDPR, ISO 27001, ISO 42001, and SOX ITGCs
Proven experience leading large‑scale audits and certification efforts end‑to‑end with minimal oversight
Strong ability to interpret regulatory requirements and translate them into pragmatic, scalable controls
Demonstrated track record of influencing cross‑functional stakeholders and driving outcomes without formal authority
Experience designing or significantly maturing Business Continuity & Disaster Recovery programs
Exceptional written and verbal communication skills, with the ability to engage effectively with both technical teams and executive leadership
Highly organized, proactive, and comfortable operating in ambiguity within a fast‑paced environment

Benefits

Health, Dental, Vision benefits start on your first day at Spring.
Employer sponsored 401(k) match of up to 2% for retirement planning
A yearly allotment of no cost visits to the Spring Health network of therapists, coaches, and medication management providers for you and your dependents.
We offer competitive paid time off policies including vacation, sick leave and company holidays.
At 6 months tenure with Spring, we offer parental leave of 18 weeks for birthing parents and 16 weeks for non-birthing parents.
Access to Noom, a weight management program—based in psychology, that’s tailored to your unique needs and goals.
Access to fertility care support through Carrot, in addition to $4,000 reimbursement for related fertility expenses.
Access to Wellhub, which connects employees to the best options for fitness, mindfulness, nutrition, and sleep in one subscription
Access to BrightHorizons, which provides sponsored child care, back-up care, and elder care
Up to $1,000 Professional Development Reimbursement a year.
$200 per year donation matching to support your favorite causes.

Company

Spring Health

twittertwittertwitter
Glassdoor3.4
company-logo
Spring Health provides mental health solution for employers and health plans.
dateFounded in 2016
location
New York, New York, USA
people-size1001-5000 employees
web-link
https://www.springhealth.com

Funding

Current Stage
Late Stage
Total Funding
$466.5M
Key Investors
Generation Investment ManagementKinnevikTiger Global Management
2024-07-31Series E· $100M
2023-04-12Series D· $71M
2021-09-16Series C· $190M

Leadership Team

leader-logo
April Koh
Co-Founder & CEO
linkedin
leader-logo
Adam Chekroud
Co-Founder, President
linkedin

Recent News

MedCity News
The Digital Health M&A Wave Is Finally Here
2026-02-08
Fierce Healthcare
Spring Health to buy Alma as AI rapidly reshapes mental healthcare market
2026-02-03
Pulse 2.0
Spring Health To Acquire Alma, Pairing Employer And Payer Benefits With Clinician Insurance Infrastructure
2026-02-03
Company data provided by crunchbase