There is no quality healthcare without a quality dialogue. Today, that dialogue is broken; we need you to help us fix it.
Doctors and nurses across the world are facing unprecedented challenges. When we meet them, they're dealing with heavy workloads, extensive paperwork, and the pressure of performing well, which in healthcare, can have dire consequences. This system is gradually undermining the passion and autonomy of our dedicated healthcare professionals, who entered this field to provide care, not to clerk.
Corti has built the world's premier AI assistant for healthcare providers. It listens in during patient dialogue, takes notes, writes summaries, journals and does quality assurance. When information is missed, or risk is high, it offers nudges and prompts to help steer the dialogue back on the right path. Entire countries trust Corti to deliver better healthcare, and our AI has already helped millions of patients, but we are just getting started.
Role Overview
Corti is seeking an IT Compliance Officer to ensure we continue to meet and exceed our rigorous standards for data privacy, security, and regulatory compliance, particularly as it pertains to managing sensitive patient information. In this role, you will oversee our adherence to essential frameworks such as ISO 27001, SOC 2, GDPR, and C5. These frameworks are fundamental to safeguarding sensitive data, as they establish strict controls on data privacy, risk management, and region-specific compliance.
The ideal candidate will play a critical role in implementing, monitoring, and refining our compliance strategies to meet evolving regulatory requirements. By leading our compliance efforts, you’ll help build trust with clients, partners, and regulatory bodies, demonstrating our commitment to responsible data handling and supporting the long-term security and sustainability of our operations.
The IT Compliance Officer would work closely with other IT, as well as Governance & Market Access teams members, including management, to develop, implement and maintain compliance policies and procedures as well as ensuring company adherence to them.
Key Responsibilities
- Compliance Frameworks: Proactively develop and maintain a comprehensive overview of Corti’s compliance frameworks that addresses all relevant laws, regulations, and standards.
- Policy Development: Develop and maintain IT compliance policies and procedures, and ensure they are communicated to all relevant staff.
- Compliance Monitoring: Conduct regular internal and external compliance audits and assessments to identify and address any areas of non-compliance.
- Compliance Reporting: Prepare and submit compliance reports to management and relevant regulatory bodies.
- Compliance Training: Develop and deliver compliance training programs to educate employees about the organization's compliance obligations.
- Risk Management: Identify and assess IT compliance risks, and develop and implement mitigation strategies.
Qualifications
- Bachelor's degree in Computer Science, Information Technology, or a related field OR 3+ years of experience in IT compliance or a related field.
- Strong understanding of IT compliance laws, regulations, and standards.
- Experience with conducting internal and external compliance audits and assessments.
- Analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Ability to work independently and as part of a team.
- Experience with our compliance tooling (Drata) would be an advantage.
If You Are Successful, You Will Have
- Taken a proactive approach to coordinating Corti’s compliance efforts, helping refine our long-term compliance roadmap in collaboration with the Governance & Market Access team.
- Ensured Corti remains up-to-date with relevant regulatory requirements.
- Worked closely with other teams to research compliance requirements for relevant markets. (E.g developing a gap analysis, identifying overlaps with existing frameworks etc.)
- Continually monitored any non-compliance and took the appropriate steps to remediate any issues. (E.g policy acceptance, device compliance, security training etc.)
- Made use of project management tools to clearly define and communicate workload requirements to various stakeholders and management.
- Collaborated effectively with our external auditors to ensure a smooth experience (e.g providing evidence & communicating remarks internally).
- Helped Corti reduce our overall risks, safeguarding Corti’s reputation of handling patient data in a secure, responsible manner.
Practicalities
- The work location for this position is in Copenhagen
- Hybrid working model (3 days in the office)
- Full-time position, starting as soon as possible.
Ready to dive into the world of Corti?
🤝 Bringing in top talent from all backgrounds is crucial in our pursuit to improve the world of healthcare. We encourage applications from all people and do not discriminate based on race, religion, national origin, gender, sexual orientation, age, and/or disability status.
At Corti, experience comes in many forms, and we’re passionate about creating teams with a multitude of perspectives! If you believe your experience is close to what we’re looking for but not an exact match, we still hope you’ll consider applying!