IT & Cybersecurity Compliance Specialist

June 8, 2026

Other Jobs To Apply

No other job posts for this day.

About PearlPearl is shaping the future of dentistry with a suite of AI solutions developed to establish higher standards of quality and care for patients worldwide. Since 2019, our team has engineered FDA-cleared computer vision capabilities for interpretation of 2D and 3D dental imagery; industry-leading capabilities which clinicians, practice owners, labs, and insurers use to elevate the efficiency, accuracy, and consistency of dental care around the world.The RoleWe are seeking an experienced IT & Cybersecurity Compliance Specialist to manage our IT infrastructure and lead cybersecurity and privacy compliance efforts. This role combines hands-on IT administration with strategic compliance program ownership, ensuring our systems are secure, well-maintained, and aligned with global regulatory frameworks including SOC 2, HIPAA, and GDPR. The ideal candidate is a proactive, detail-oriented professional comfortable spanning both technical IT operations and formal compliance management within a SaaS medical device environment.Key ResponsibilitiesIT Infrastructure & Systems Administration<ul style="min-height:1.5em"><li>Administer and maintain core IT systems including endpoint management, identity and access management (IAM), and SaaS tooling (e.g., Google Workspace, Slack, Notion).</li><li>Manage employee onboarding and offboarding processes including provisioning and deprovisioning of accounts, hardware, and system access.</li><li>Maintain and enforce IT access controls, role-based permissions, and the principle of least privilege across all systems.</li><li>Serve as the first point of escalation for internal IT support requests and tickets, triaging and resolving technical issues.</li><li>Manage and maintain the company’s device fleet, including MDM (Mobile Device Management) enrollment, patching, and compliance monitoring.</li><li>Administer and monitor cloud infrastructure and SaaS platform configurations for security and availability.</li><li>Maintain IT asset inventory and manage software licensing.</li></ul>Cybersecurity & Privacy Compliance<ul style="min-height:1.5em"><li>Conduct gap assessments to evaluate compliance with security and privacy regulations (e.g., SOC 2, HIPAA, GDPR).</li><li>Develop, write, and revise Standard Operating Procedures (SOPs) for security and privacy programs.</li><li>Implement and monitor security-related Key Performance Indicators (KPIs) to measure and improve compliance performance.</li><li>Assess, document, and report security breaches or incidents, ensuring timely and accurate communication.</li><li>Perform security assessments of all new and existing suppliers, including annual reviews.</li><li>Conduct Information Security incident reviews and recommend corrective actions.</li><li>Manage Corrective and Preventive Actions (CAPAs) related to security and privacy.</li><li>Prepare for and manage security and privacy audits, ensuring readiness and compliance.</li><li>Complete security questionnaires for clients, vendors, and partners.</li><li>Stay current on evolving security and privacy regulations and recommend updates to policies and procedures as needed.</li></ul>Compliance Tooling & Programs<ul style="min-height:1.5em"><li>Administer and manage the Vanta platform (or equivalent GRC tool) to automate and streamline compliance monitoring and evidence collection.</li><li>Oversee the design, delivery, and management of security and privacy training programs for employees.</li><li>Design and execute phishing simulation campaigns and related training to enhance employee security awareness.</li><li>Host and facilitate recurring security committee meetings and management reviews to align stakeholders on compliance objectives.</li></ul>Qualifications<ul style="min-height:1.5em"><li>3+ years of experience in IT administration, systems management, or a combined IT/security role.</li><li>3+ years of experience implementing and maintaining SOC 2 certification.</li><li>3+ years of experience with HIPAA, GDPR, and other global privacy frameworks.</li><li>Proven track record of managing compliance programs, including audits, risk assessments, and CAPAs.</li><li>Hands-on experience with compliance tools such as Vanta or similar platforms.</li><li>Demonstrated experience with endpoint management, IAM platforms, MDM solutions, and SaaS administration.</li><li>Strong understanding of cybersecurity best practices, incident response, and supplier risk management.</li><li>Excellent written and verbal communication skills, with the ability to translate complex requirements into actionable processes.</li><li>Ability to work independently and collaboratively in a fast-paced environment.</li><li>Relevant certifications (e.g., CISA, CISM, CISSP, CompTIA Security+, or equivalent) are a plus.</li></ul>Preferred Qualifications<ul style="min-height:1.5em"><li>Experience in a SaaS company is strongly preferred.</li><li>Experience in a medical device company and/or supporting FDA submissions.</li><li>Experience with ISO 27001, ISO 27701, CCPA, or other international security/privacy frameworks.</li><li>Background in managing phishing simulation programs and employee training initiatives.</li><li>Familiarity with SaaS-specific compliance challenges and customer-facing security requirements.</li><li>Experience with Google Workspace administration and IT helpdesk/ticketing workflows.</li><li>Comfort operating as a one-person or small-team IT function in a high-growth environment.</li></ul>What We Offer<ul style="min-height:1.5em"><li>Competitive Benefit and Compensation Offerings</li><li>Ongoing Training and Development Opportunities</li><li>Unaccrued, Flexible PTO</li><li>Remote Work</li></ul>

Back to blog

DISCLAIMER

Other Jobs To Apply