NeverHard
Data Compliance & Security Lead at Salcott — NeverHard
Data Compliance & Security Lead at Salcott in Астана. View salary, required skills, and apply on NeverHard.
- Company
- Salcott
- Location
- Астана
- Type
- not_specified
Remote: Yes
Data Compliance & Security Lead (Part-time / Fractional) We are looking for a pragmatic Data Compliance & Security Lead who can help us build a lightweight but robust compliance foundation for working with US clients (healthcare and e-commerce). This is not a “policy-only” role — we need someone who can work hands-on with our systems, define practical controls, and gradually bring the company to HIPAA and SOC 2 readiness without overengineering. WHAT YOU’LL BE DOING 1. Build a practical compliance foundation Define minimum viable security and compliance setup for a distributed team (Kazakhstan, Philippines). Work with our IT/System Admin to ensure: MFA, SSO, device management are enforced, access is controlled and auditable, data is handled securely 2. Create only the policies we actually need Draft and implement essential policies (not bureaucracy): Information Security|Access Control|Incident Response|Acceptable Use Make sure policies are: understandable actually used (not just stored somewhere) 3. Prepare us for HIPAA Identify where we might touch sensitive data (ePHI) Ensure basic HIPAA requirements are covered: access control, audit logs, vendor agreements (BAA) Support lightw
This page requires JavaScript. Please enable it in your browser, or explore
neverhard.com for more information.