Job Title: Cybersecurity Compliance Coordinator

Reports to: VP IT, Tech Ops and Security

Job Type: Full-time, Exempt

Location: Lawrenceville, GA or Remote

Founded in 1995, Vastian is the leading provider of healthcare and laboratory quality, compliance and accreditation solutions, powering laboratories and hospitals to achieve better clarity and show their higher standards. Its single, configurable integrated platform delivers a standardized, centralized solution that automates quality and compliance tasks and is fully customizable. With Vastian, health systems and labs can get ahead of compliance and quality processes, saving time that can be spent on delivering better care. Vastian is a private equity backed, fast-growing SaaS business based in Lawrenceville, GA, outside Atlanta.

#LI-Remote

Click here to learn more about Vastian and our suite of solutions.

In addition to a competitive base salary and performance bonus program, Vastian offers a comprehensive and very pro-employee benefits package which includes the following:

• Medical, dental and vision insurance
• Short- and long-term disability coverage
• Life insurance and AD&D
• Supplemental life insurance
• 401(k) savings plan
• Paid time off

We are seeking a highly organized and detail-oriented Cybersecurity Compliance Coordinator to join our growing team. This position will be involved in activities across the business to maintain our security posture and compliance with standards such as HIPAA, FedRAMP and SOC 2. The individual will have a strong technical background, ideally in SaaS, and experience in vulnerability management, security and compliance documentation, continuous monitoring and security and awareness training. The Cybersecurity Compliance Coordinator will work closely with IT to monitor compliance, facilitate audits, and promote a culture of security awareness.

For the right candidate, there is also the opportunity to get hands-on experience by assisting with the monitoring of cloud security configurations and the implementation of cloud security tools in Microsoft Azure.

Responsibilities and Duties:

Audit Management & Compliance

• Coordinate and support internal and external security audits (SOC 2, FedRAMP, HIPAA)
• Prepare and organize documentation, evidence and reports
• Track and manage audit findings and remediation plans, ensuring timely completion of corrective actions

Documentation Management

• Review and update cybersecurity policies, standards, and procedures
• Maintain a centralized repository of all compliance related documents, policies, and evidence, ensuring the timely completion of approval workflows.
• Communicate policy changes and updates to relevant stakeholders across the

Continuous Monitoring:

• Participate in and improve continuous monitoring activities through vulnerability management processes, validation of security benchmarks and risk assessment
• Administration of regular dynamic application scanning. Analyzing and prioritizing vulnerabilities, collaborating on remediation and reporting on status to internal and external stakeholders.

Security & Compliance Assurance:

• Act as a primary point of contact for client security questionnaires, RFPs/RFIs, client security contract requirements and due diligence requests.
• Serve as a point of contact for security and compliance-related questions from various business units.

Security Training & Awareness:

• Help develop and deliver cybersecurity awareness training and materials to
• Promote a culture of security and compliance throughout the

Risk Management:

• Assist in vendor risk and security assessments of new and existing

Skills & Experience:

• 1 - 3 years of experience in Information Security, ideally in a cloud hosted SaaS environment
• Solid understanding of security frameworks and regulations (e.g., NIST 800-53, FedRAMP, SOC 2, HIPAA preferred).
• Experience coordinating cybersecurity activities and audits
• Experience in web app vulnerability management and related tools (e.g. Qualys)
• Knowledge of Microsoft Azure tools for security and compliance management such as Sentinel and Defender for Cloud is desirable
• Excellent technical writing and interpersonal
• Strong organizational and communication skills
• Ability to work independently and prioritize quickly in a fast-paced environment.

Vastian is an equal opportunity employer. We do not discriminate on the basis of race, color, religion, national origin, pregnancy status, sex, age, marital status, disability, sexual orientation, gender identity or any other characteristics protected by law.