**Security and Compliance Manager** **Description** **University of Colorado Anschutz Medical Campus** **Department: Health Data Compass** **Job Title: Security and Compliance Manager** **Position #: 00798345 - Requisition #:** **37537** **Job Summary:** Key Responsibilities: **Business & Research Compliance (35%):** + Under the supervision of the DFA, work with Compass staff to support the HIPAA compliance program for Compass cloud systems, including researching, justifying, and documenting compliance controls. + Develop and update applicable system and compliance policies and procedures. + Draft, update, and evaluate internal and external contracts and agreements, including but not limited to: memorandums of understandings (MOUs), business associate agreements (BAAs), statements of work (SOWs), or master service agreements (MSAs). + Coordinate processes for data request delivery with the Security and Compliance Committee including reviewing, editing, modifying, validating documentation to match Internal Review Board (IRB) documentation, and coordinate follow up between data owners, requestors/customers, data analysts, and Business Intelligence (BI) developers. **Health Data Compass Technology (40%):** + Manage security and compliance activities, including vulnerability scans and penetration tests, analysis and risk justification of findings, and responding to incidents and issues. + Provide security and compliance input and feedback to Compass management and engineers for technical designs and strategies in support of cloud technology, data warehouse, and infrastructure platforms. + Analyze and document risk analysis and risk assessments for system, architecture designs, applications, or software for use within Health Data Compass (HDC). + Lead, investigate, and document security and privacy incidents, as needed, in accordance with Compass policies and procedures. **Administration (25%):** + Manage, coach, and mentor Compass Staff and students to develop professionally, while ensuring goals and performance expectations are met. **Work Location:** Remote **Why Join Us:** **Why work for the University?** + Medical: Multiple plan options + Dental: Multiple plan options + Additional Insurance: Disability, Life, Vision + Retirement 401(a) Plan: Employer contributes 10% of your gross pay + Paid Time Off: Accruals over the year + Vacation Days: 22/year (maximum accrual 352 hours) + Sick Days: 15/year (unlimited maximum accrual) + Holiday Days: 10/year + Tuition Benefit: Employees have access to this benefit on all CU campuses + ECO Pass: Reduced rate RTD Bus and light rail service **Qualifications:** **Minimum Qualifications:** + Bachelor's degree in Security Administration, Information Systems, Information Security, Computer Science, Biological or Health Sciences, law or related field. + At least three (3) years working within healthcare industry or federal health agency (e.g. hospital, federal government). + At least two (2) years' experience with privacy or compliance within regulated environments (e.g. federal government, HIPAA, FISMA, ITAR etc.). + Previous supervisory experience in a similar environment. **Preferred Qualifications:** + Masters or doctorate degree in security administration, information systems, information security, computer science, biological or health sciences, law, or related field. + A Juris Doctor or Doctorate degree in security administration, information systems, information security, computer science, biological or health sciences, law, or related field. + Experience with NIST 800-53, NIST 800-171 or ISO 27000 frameworks. + Experience with DICOM - PACS deidentification and compliance **Knowledge, Skills and Abilities:** + Strong interpersonal and excellent written and verbal communication skills. + Organized, with strong attention to detail. + Ability to handle multiple simultaneous tasks and effectively. + Able to work independently, self-starter. + Ability to communicate effectively, both in writing and orally. + Ability to establish and maintain effective working relationships with employees at all levels throughout the institution. + Demonstrated commitment and leadership ability to advance diversity and inclusion. + Attention to detail and accuracy, with strong analytical and critical thinking skills. + Demonstrated effectiveness in a complex organizational environment **How to Apply:** **Screening of Applications Begins:** **Anticipated Pay Range:** **HIRING RANGE** **$85,000-$105,000** **.** **Equal Employment Opportunity Statement:** **ADA Statement:** **Background Check Statement:** **Vaccination Statement:** **Job Category** **Primary Location** **Schedule** **Posting Date** **Unposting Date** **To apply, visit https://cu.taleo.net/careersection/2/jobdetail.ftl?job=37537&lang=en (https://apptrkr.com/6465004)** Copyright 2025 Jobelephant.com Inc. All rights reserved. Posted by the FREE value-added recruitment advertising agency (https://www.jobelephant.com/) Security and Compliance Manager - 37537 University Staff The Security and Compliance Manager plays a critical role in safeguarding Compass's operations and cloud-based solutions. This position is responsible for reviewing and managing agreements and contracts, developing and maintaining internal policies and procedures, and coordinating efforts to ensure compliance with all applicable state and federal regulations. The manager will lead activities to support HIPAA compliance and alignment with NIST 800 standards, ensuring our systems remain secure and audit-ready. Core responsibilities include evaluating internal and external agreements, creating and maintaining compliance documentation, and overseeing program activities to verify that Compass's technology and services meet rigorous regulatory and security requirements. This description is a summary only and describes the general level of work being performed, it is not intended to be all-inclusive. The duties of this position may change from time to time and/or based on business need. We reserve the right to add or delete duties and responsibilities at the discretion of the supervisor and/or hiring authority. - this role is eligible to work remotely, but the employee must be in the United States. Health Data Compass (Compass) serves as the technology innovation hub for the Office of the Vice Chancellor for Health Affairs at CU Anschutz. Our team manages a Google Cloud-based data integration and analytics platform that powers clinical and translational research across the Anschutz Medical Campus. By providing secure, scalable data solutions, Compass enables researchers and clinicians to advance discoveries that improve patient care and outcomes. We have AMAZING benefits and offerexceptional amounts of holiday, vacation and sick leave! The University of Colorado offers an excellent benefits package including: There are many additional perks & programs with the CU Advantage (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=https://advantage.cu.edu/) . Applicants must meet minimum qualifications at the time of hire. For full consideration, please submit the following document(s):1. A letter of interest describing relevant job experiences as they relate to listed job qualifications and interest in the position2. Curriculum vitae / Resume3. Three to five professional references, including name, address, phone number (mobile number if appropriate), and email addressQuestions should be directed to: Kelli Beightler, KELLI.BEIGHTLER@CUANSCHUTZ.EDU (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=KELLI.BEIGHTLER@CUANSCHUTZ.EDU) Immediately and continues until position is filled. The starting salary range (or hiring range) for this position has been established as The above salary range (or hiring range) represents the University's good faith and reasonable estimate of the range of possible compensation at the time of posting. This position may be eligible for overtime compensation, depending on the level.Your total compensation goes beyond the number on your paycheck. The University of Colorado provides generous leave, health plans and retirement contributions that add to your bottom line.Total Compensation Calculator (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=http://www.cu.edu/node/153125) CU is an Equal Opportunity Employer and complies with all applicable federal, state, and local laws governing nondiscrimination in employment. We are committed to creating a workplace where all individuals are treated with respect and dignity, and we encourage individuals from all backgrounds to apply, including protected veterans and individuals with disabilities. The University will provide reasonable accommodations to applicants with disabilities throughout the employment application process. To request an accommodation pursuant to the Americans with Disabilities Act, please contact the Human Resources ADA Coordinator at hr.adacoordinator@cuanschutz.edu (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=hr.adacoordinator@cuanschutz.edu) . The University of Colorado Anschutz Medical Campus is dedicated to ensuring a safe and secure environment for our faculty, staff, students and visitors. To assist in achieving that goal, we conduct background investigations for all prospective employees. CU Anschutz strongly encourages vaccination against the COVID-19 virus and other vaccine preventable diseases (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=https://www.cdc.gov/vaccines/schedules/downloads/adult/adult-combined-schedule.pdf) . If you work, visit, or volunteer in healthcare facilities or clinics operated by our affiliated hospital or clinical partners or by CU Anschutz, you will be required to comply with the vaccination and medical surveillance policies of the facilities or clinics where you work, visit, or volunteer, respectively. In addition, if you work in certain research areas or perform certain safety sensitive job duties, you must enroll in the occupational health medical surveillance program (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=https://research.cuanschutz.edu/ehs/home/divisions/occupational-health/oh-enrollment) . Application Materials Required: Cover Letter, Resume/CV, List of References : Business Services : Aurora Department: U0001 -- Anschutz Med Campus or Denver - 21538 - ADM VCHA COMPASS GENOPS : Full-time : Aug 12, 2025 : Ongoing Posting Contact Name: Kelli Beightler Posting Contact Email: KELLI.BEIGHTLER@CUANSCHUTZ.EDU (https://apptrkr.com/get\_redirect.php?id=6465004&targetURL=KELLI.BEIGHTLER@CUANSCHUTZ.EDU) Position Number: 00798345jeid-94244b5316eed04fae4dc6c7b448acbc The University of Colorado does not discriminate on the basis of race, color, national origin, sex, age, pregnancy, disability, creed, religion, sexual orientation, gender identity, gender expression, veteran status, political affiliation, or political philosophy. All qualified individuals are encouraged to apply.