ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Governance, Risk, and Compliance Officer (Part-Time)

Freed

San Francisco, United States Remote permanent

Posted: April 2, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

The Governance, Risk, and Compliance Officer is responsible for ensuring the quality and security of our products, as well as ensuring compliance with regulatory requirements. The ideal candidate will have a strong background in healthcare and risk management, with the ability to work in a fast-paced environment and communicate complex technical information to clinicians and other stakeholders. The role involves reviewing and implementing policies and procedures to ensure compliance with regulatory requirements, and providing training and support to clinicians on our products and compliance procedures.

Required Skills

Audit Certification SOC HIPAA Governance Risk Compliance Drata Vendor Management Policy Development

Job Description

ABOUT FREED:

Doctors are overworked, burnt out, and are quitting in masses.

At Freed, we combine clinician love with the latest AI tech and intense execution to create products that make clinicians happier.

Our first product is an AI scribe that automates medical documentation.

Since May of 2023, we have:

• Acquired 26,000 paying and loving clinicians

• Generated 100,000 patient notes daily and over 3 million monthly

• Made thousands of clinicians happier

With the backing of Sequoia Capital and other world-class VC’s, we are rapidly expanding our product offering. Patient-facing assistants, patient insights, EHR integrations, and other products are being built and used by thousands of clinicians every day.

We are looking for entrepreneurs. Fast, ambitious, and smart individuals who want to take care of the people who care for our health. Expect intense, clinician-focused, and interesting co-workers who want to win.

With an office in San Francisco, we embrace a hybrid schedule that brings out the best in teamwork and innovation. Our teams come together in person three days a week to collaborate, connect, and have a little fun along the way.

ABOUT THE ROLE:

We are hiring a Fractional GRC Manager (part-time, ~20 hrs/week) to build and own our compliance function.

Freed operates in a highly regulated environment (SOC 2 Type 2, HIPAA) with PHI flowing across 150+ vendors. Today, compliance work is fragmented across senior leaders, creating inefficiencies, audit friction, and product delays.

This role will act as the single accountable owner for Governance, Risk, and Compliance, responsible for maintaining audit readiness, unblocking product and vendor workflows, and reducing the compliance burden on engineering and leadership.

This is a hands-on, embedded operator role - not advisory. You will work closely with Finance, Engineering, Infrastructure, Legal, and GTM teams.

HOW YOU'LL HAVE IMPACT:

• Audit & Certification Ownership

• Own SOC 2 and HIPAA programs end-to-end

• Manage auditor relationships and streamline evidence collection

• Maintain continuous audit readiness via Drata

• Improve audit efficiency

• Vendor Compliance & Risk Management

• Own vendor compliance intake (BAAs, DPAs, security reviews)

• Build and maintain a centralized vendor registry with PHI exposure mapping

• Establish fast, repeatable onboarding processes

• Partner with Engineering on vendor security assessments

• Policy & Governance

• Audit and remediate ~30 existing policies with outdated ownership structures

• Replace “phantom roles” (e.g., Security Officer) with real owners

• Establish a meaningful policy review cadence

• Draft new policies (data retention, vendor management, access controls)

• Compliance Operations

• Own and operate Drata (controls, evidence, personnel tasks)

• Manage Trust Center accuracy and external posture

• Handle customer security questionnaires

• Support Sales with compliance documentation for enterprise deals

• Risk & Incident Support

• Document PHI data flows and system boundaries

• Support incident response from a compliance perspective

• Stay current on HIPAA and regulatory developments

WHAT YOU WILL BRING:

• 5+ years in GRC, security compliance, or related roles (startup experience strongly preferred)

• Deep experience with SOC 2 and HIPAA (hands-on ownership, not advisory)

• Strong familiarity with vendor risk management, BAAs, DPAs, and audits

• Experience with tools like Drata or similar compliance platforms

• Ability to operate independently in a fractional, high-ownership role

• Strong judgment - able to make pragmatic tradeoffs, not over-engineer

NICE TO HAVES:

• Exposure to HITRUST or ISO 27001 frameworks

• Experience working cross-functionally with Engineering and GTM teams

• Background in scaling compliance functions from early-stage

WHAT WE WILL BRING:

• Competitive salary and equity in a high-growth company

• Opportunity to make an immediate impact

• Medical, dental, and vision coverage

• Unlimited paid time off

• Company-sponsored annual retreats

• 401(k) plan to support your long-term financial goals

• Commuter stipend for San Francisco-based employees

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply