This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Jorie AI is transforming healthcare operations through intelligent automation, secure cloud solutions, and data-driven insights. As a Compliance Specialist – FedRAMP, you will play a key role in ensuring Jorie’s cloud infrastructure and services meet stringent federal security and compliance standards while maintaining alignment with existing HITRUST and HIPAA frameworks. This position requires deep understanding of FedRAMP authorization processes, cloud security compliance, and the integration of HITRUST controls across multi-framework compliance programs. The ideal candidate is proactive, detail-oriented, and comfortable working cross-functionally with IT, security, and audit teams in a fast-paced technology environment.
Job Responsibility
Support the implementation and maintenance of Jorie’s FedRAMP authorization program
Develop and maintain FedRAMP System Security Plans (SSP), POA&Ms, and supporting documentation
Coordinate with internal IT and cloud engineering teams to ensure continuous compliance of systems within AWS, Azure, or other CSP environments
Liaise with 3PAOs and government stakeholders during audits and assessments
Ensure consistent control alignment between FedRAMP Moderate/High baselines, HITRUST CSF, and NIST 800-53 frameworks
Maintain evidence documentation, control mapping, and compliance matrices for overlapping regulatory programs
Participate in ongoing HITRUST recertification processes
Collaborate with internal and external auditors to ensure accurate reporting
Assist in continuous monitoring of security controls and remediation of POA&M items
Conduct risk assessments for cloud systems, vendors, and new integrations
Coordinate vulnerability scans, incident response activities, and configuration management documentation
Develop, update, and enforce policies related to data security, cloud compliance, and regulatory reporting
Provide compliance guidance and training to engineering, DevOps, and IT personnel
Support internal readiness reviews, gap assessments, and compliance roadmap initiatives
Requirements
Bachelor's degree in Information Security, Computer Science, Compliance, or related field required
3–6 years of experience in compliance, information security, or risk management
At least 2 years of direct experience supporting FedRAMP programs or equivalent government compliance frameworks
Hands-on experience with HITRUST CSF certification processes, evidence collection, and auditor coordination
Experience working in cloud-based environments (AWS, Azure, or GCP) and familiarity with continuous monitoring tools (Splunk, Qualys, Nessus, etc.)
Background in healthcare, AI, or SaaS industries strongly preferred
In-depth understanding of NIST 800-53, FedRAMP Moderate/High baselines, and HITRUST CSF control mapping
Strong knowledge of HIPAA, HITRUST, SOC 2, and ISO 27001 standards
Excellent documentation and writing skills
Strong analytical, organizational, and communication skills