Senior HIPAA/Information Security Analyst
New York, USA, Remote; Massachusetts, USA, Remote
Applications have closed
About Datadog:
We're on a mission to build the best platform in the world for engineers to understand and scale their systems, applications, and teams. We operate at high scale—trillions of data points per day—providing always-on alerting, metrics visualization, logs, and application tracing for tens of thousands of companies. Our engineering culture values pragmatism, honesty, and simplicity to solve hard problems the right way.
The Team:
The Governance, Risk and Compliance (GRC) team works within the Information Security organization and across Datadog to implement, monitor, and continuously improve Datadog’s security, risk, and compliance programs.
The Job:
As a Senior Security Analyst, you will lead security efforts to acquire and maintain industry certifications, design solutions that enable Datadog’s security goals, and collaborate directly with engineering teams to work quickly and securely. You will be responsible for defining the implementation of technical compliance capabilities and lead efforts to provide transparency to customers, prospects and other stakeholders.
This role is focused on building and operating a global HIPAA compliance program. You will provide technical recommendations on scoping the environment, guide the protection of regulated ePHI, and lead the continuous improvement of Datadog’s HIPAA program.
This role will also be responsible to create and maintain solutions that uphold Datadog’s continuous compliance and synthesize a broad set of industry and federal regulations.
You will:
- Play a lead role in designing and maintaining a global HIPAA compliance program.
- Provide precise guidance and feedback on the implementation of technical architecture and engineering requirements.
- Lead and coordinate technical risk assessments to validate and enhance Datadog’s HIPAA program and architecture.
- Design solutions using modern technology that allow Datadog’s security and engineering teams to move quickly and adapt to an evolving threat landscape.
- Coordinate the implementation of technical security capabilities and engineering requirements.
- Create documentation to provide transparency to customers, prospects and other stakeholders.
- Create and maintain automated solutions to uphold Datadog’s continuous compliance with a broad set of industry and federal regulations.
- Drive compliance efforts to enable Datadog to enter increasingly regulated markets.
Requirements:
- You have a BS or at least 5 years of relevant industry experience.
- You have delivered or helped develop a HIPAA program, understand how to articulate controls, and how to design effective compensating controls where necessary.
- You have a deep understanding of how to achieve compliance objectives in a cloud native environment.
- You have familiarity with AWS, GCP, or Azure.
- You have a proven track record working in security audit, compliance, information security operations, or security consulting.
- You value correctness and efficiency, and have an exceptional eye for detail.
- You have exposure to compliance and regulatory regimes (e.g. FedRAMP, GDPR, HIPAA, ISO 27001, PCI DSS).
- You want to work in a fast, high growth environment.
Bonus Points:
- You’ve managed a multi-cloud HIPAA program.
- You hold a relevant certification (CCSFP, CHQP, CIPT).
- Relevant security industry certification (CISSP, CISA, GIAC) or Specialist Certification (ISO 27001 Lead Auditor/Implementer).
- Background in IT or Security Operations.
- You like to automate the boring stuff.
- Experience implementing a multi-cloud based security program.
<p style="background-color:white;color:white;">#LI-Remote This is a remote position</p>
#LI-Remote
Equal Opportunity at Datadog:
Datadog is an Affirmative Action and Equal Opportunity Employer and is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and more. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.
Your Privacy:
Any information you submit to Datadog as part of your application will be processed in accordance with Datadog’s Applicant and Candidate Privacy Notice.
Tags: AWS Azure CISA CISSP Cloud Compliance FedRAMP GCP GDPR GIAC Governance HIPAA ISO 27001 PCI DSS Privacy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs