hero

Heartcore Portfolio Careers

Discover opportunities across our portfolio of companies who are enchanting the world through technology

EU Compliance Manager (f/m/d)

Kaia Health

Kaia Health

Legal
Munich, Germany
Posted 6+ months ago
Kaia is a mission-focused health technology company.
Our story began in 2016, when our founders Konstantin Mehl and Manuel Thurner, set out on a mission to bring affordable and accessible relief to millions of people with chronic conditions. No strangers to chronic pain themselves, they decided to innovate ways to remove the obstacles many people experience in getting the leading-edge care they need in order to live their best lives.
How do Kaia apps work? Kaia uses a dynamic AI-powered algorithm. Our programs are based on multimodal rehabilitation, a holistic approach to managing chronic conditions. Our users have easy access via smartphone and tablet to our programs for back/hip/knee pain and COPD using this evidence-based approach.
Five years into our story, we are a leader in digital therapeutics, with 500,000+ users worldwide. Having raised $125 million from investors such as Optum Ventures, idInvest, and Balderton Capital. We are poised to create a global footprint in digital self-care; Kaia is patient empowerment made easy.
The regulatory landscape is quickly adapting to the digital ecosystem. Therefore, our mission and strategy bring new opportunities for exceptional talent to join our journey. With over 100 “Kaianeers” spread across the globe, we need now, more than ever, specialized talent to help take our mission further.

Duties and Responsibilities

  • Design and regularly update internal policies, procedures, and instructions
  • Managing projects related to compliance and information security,
  • Cooperate with business units (Engineering, Product, IT, DevOps, Legal, HR etc.) and management on a regular basis to facilitate implementation of security practices and controls within the organisation,
  • Create and lead the execution of the compliance roadmap,
  • Evaluate company risks on an ongoing basis, perform risk assessments, and risk treatment
  • Create, organise and conduct data protection and information security training sessions to communicate regulatory changes and requirements,
  • Schedule and conduct periodic internal security audits;
  • Ensure and check that agreed procedures are being implemented,
  • Evaluate the efficiency of implemented controls,
  • Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities in the future;
  • Prepare reports for senior management and external regulatory bodies as appropriate
  • Review contracts as part of the contract review process; assessing and recommending adjustments that serve to minimise security risk in agreements
  • Coordinate with the security team to evaluate the results of internal & external system vulnerability scans, penetration testing and to track remediation efforts to ensure adhere to the compliance requirements.

Requirements

  • BS or MS in Computer Science, Business Administration, Law or related field;
  • 5+ years of of experience as a governance, risk and compliance manager, compliance officer, compliance manager, or similar;
  • Experience with audits (auditing or being audited);
  • Strong knowledge of information security frameworks such as ISO 27001, SOC 2, HITRUST;
  • Strong knowledge and experience of Governance, Risk and Compliance management in Cybersecurity;
  • Knowledge of operational security practices, incident management, cloud, endpoint and network security;
  • You are able to work with cutting edge technology and assimilate information rapidly
  • Project Management experience.
  • Collaborative mindset - You’ll interact with team members from all different departments; you’re excited to hear new ideas and work together to execute on creative solutions.
  • You possess strong analytical skills to investigate and resolve customer support tickets
  • You are able to work with cutting edge technology and assimilate information rapidly

Ideally you also have

  • Professional security certification such as CISM or CISSP;
  • Experience in AWS cloud environment
  • Experience with DVG process

What we offer in Germany

  • A competitive salary
  • Occupational pension plan opt-in
  • Gym membership subsidy
  • Mobile Plan
  • Child Care subsidy opt-in
  • Flexible working hours
  • Transportation Allowance up to 60€ per month
  • Meal allowance up to 100€ per month
  • A laptop of your choice (Mac or PC) up to 2,000€
  • 600€ budget for peripherals
  • An annual budget of 1,200€ dedicated to your personal development and 4 personal development days off
  • 24 vacation days and flexible PTO
  • Complimentary access to Kaia app
  • Free beers after 6pm in the office & Free fruits
  • Centrally located office in Munich (Sendlinger Tor) or possibility to book a desk in a local co-working space.

Some of the benefits of being a Kaianeer:
  • You can directly influence the future of digital health in a team of industry experts and digital shapers.
  • You will work alongside serial entrepreneurs (previously founded and scaled another startup, Foodora).
  • You’ll enjoy accessible leaders, a hybrid (home/office) or remote work environment, and flexible vacation and working times.
  • We support your professional development and have a budget and PTO set aside for you just for that!
  • Happy hours, team events, and knowledge-sharing sessions.
  • Join us if you’re looking for an entrepreneurial adventure and an exciting place to grow personally and professionally.