Life. Unlimited. At Smith+Nephew we design and manufacture technology that takes the limits off living.
Are you ready to play a key role in safeguarding patient data and strengthening our global compliance posture This is a fantastic opportunity to own and drive our annual HIPAA Program, working with expert stakeholders and influencing meaningful governance across the organisation. If you enjoy structured programme delivery, risk assessment and cross functional collaboration, this role offers a purposeful and impactful career step.
What will you be doing
In this role you will take ownership of our annual HIPAA Program, guiding it from planning through delivery and reporting. Each year you will design the programme schedule in line with strategic direction, coordinate a broad network of internal and external partners and ensure that all activity is delivered with precision.
You will work closely with our Senior Director of Governance Risk and Compliance, the HIPAA Security Officer and the HIPAA Privacy Officer, as well as the Head of Compliance who owns the programme. Your work will include planning and supporting an annual HIPAA Security Risk Assessment, reviewing remediation outcomes, performing IT system assessments, monitoring regulatory changes and ensuring all programme records are accurately maintained in OneTrust. Through clear communication, structured management and sound judgement, you will help maintain the highest standards of security and compliance across our systems and processes.
What will you need to be successful
Success in this role comes from bringing structure, clarity and confidence to a complex and high impact compliance programme. You will be the person who helps colleagues navigate requirements, understands how systems and controls fit together, and ensures that every part of the HIPAA Program progresses with purpose.
You will thrive if you can
• Bring at least five years of experience in Information Security, including time spent in a compliance function, paired with practical understanding of HIPAA requirements and at least two years working directly with HIPAA compliance
• Demonstrate experience running structured programmes or projects, ideally within a governance, security, risk or compliance environment
• Confidently assess information security controls, understand security frameworks and translate technical risk into clear next steps for stakeholders
• Hold or be working towards recognised security or privacy certifications such as CISA, CISSP, ISO 27001, CHPS, CHSE, CHPSE, CIPP US or equivalent, or bring the curiosity and drive to develop towards them
You. Unlimited. We believe in creating the greatest good for society. Our Strongest investments are in our people and patients we serve.
Inclusion & Belonging: Committed to Welcoming, Celebrating and Thriving on Inclusion and Belonging, Learn more about our https://www.smith-nephew.com/en/careers/life-at-smith-nephew on our website
Your Future: Generous annual bonus, life insurance, Save As You Earn share options.
Work/Life Balance: Flexible Vacation and Time Off, Paid Holidays and Paid Volunteering Hours, so we can give back to our communities!
Your Wellbeing: Private Health and Dental plans, multisport card/my benefit platform and much more.
Flexibility: Hybrid Working Model (For most professional roles).
Training: Hands-On, Team-Customised, Mentorship, subsidies for language classes, certifications and postgraduate studies
#LI-GG1
#LI-HYBRID
Stay connected by joining our Talent Community.
We're more than just a company - we're a community! Follow us on LinkedIn to see how we support and empower our employees and patients every day.
Check us out on Glassdoor for a glimpse behind the scenes and a sneak peek into You. Unlimited., life, culture, and benefits at S+N.
Explore our website and learn more about our mission, our team, and the opportunities we offer.