Our Mission: Hospital-Quality Care, Everywhere.

The healthcare industry still relies on faxes and phone tag to coordinate critical care for patients at home. We think patients and the clinicians who serve them deserve better than a system stuck in 1995.

Verse Medical is building the modern software infrastructure to make it happen. We're a well-funded Series C company (backed by General Catalyst, SignalFire, and Sapphire Ventures) on a mission to heal a fragmented system. Our platform connects the dots between providers, payors, and patients, ensuring people get the high-quality care they need, reliably and right where they live. We’re growing fast and looking for people who are driven by this mission to join us!

Our Values: The Principles That Guide Us

Our values are the operating system for how we work together and with our partners. They aren't just words on a wall; they are the principles we bring to every decision, every day.

• We are transparent, upfront and direct. We operate with honesty and clarity. We share information openly, the good and the bad, and believe that direct, respectful feedback is the foundation of trust and progress.

• We value speed of iteration. We are building something new, which means we learn by doing. We prioritize rapid iteration and getting solutions into the hands of users, believing that progress is more valuable than perfection.

• We give 110% effort, 30% of the time. We are passionate about our mission, and there are moments that require us to go the extra mile. We believe in focused intensity when it counts, balanced by a sustainable pace that keeps our team energized for the long run.

• We empathize with customers to a fault. When our users face a problem, we own it. Instead of asking them to change, we ask ourselves, "How can we make this better?" We believe true innovation comes from deep empathy and a relentless focus on solving the real-world challenges of healthcare.

Job Title: Director of Security & Compliance

We're hiring a Director of Security & Compliance to own and build our security program. This is a high-impact role where you'll define our security architecture, lead our HITRUST certification effort as technical owner, and protect the patient data at the heart of our platform. You'll work as a hands-on player-coach, partnering closely with engineering and compliance to keep us secure without slowing us down. If you enjoy high ownership, building programs rather than inheriting them, and being the senior-most security voice in a fast-growing company, this role is for you.

What You'll Achieve: A Glimpse into Your Contributions

• Own and drive the company-wide security strategy and roadmap, balancing risk reduction with the speed of a Series C product organization

• Serve as the owner for HIPAA compliance and our ongoing HITRUST certification effort, implementing and operating the underlying controls

• Serve as the senior-most security voice in the company, advising executive leadership on risk posture, security investments, and tradeoffs

• Implement and operate technical security controls: vulnerability management, endpoint protection, logging and monitoring, detection and response

• Lead incident response, including playbook development, on-call structure, tabletop exercises, and post-incident reviews

• Build the security team over time, starting as a hands-on player-coach and hiring once the program scales

What You'll Bring: The Skills and Experience You’ll Leverage

We believe that diverse experiences and backgrounds lead to better solutions. While we have an idea of what will help someone succeed in this role, we are open to being convinced by your unique story and skills. If you believe you can achieve the outcomes above, we encourage you to apply.

Core Skills & Experience:

• 8+ years in security, compliance, or information security, with at least 2–3 years as a senior leader or subject matter expert at a startup or growth-stage company

• Direct experience owning HIPAA, HITRUST, and/or SOC 2 compliance end to end — designing, implementing, operating, and auditing the relevant security controls and policies

• Experience leading incident response, from detection through remediation and postmortem

• Experience designing and implementing both technical and non-technical security controls: MDM, IAM, endpoint protection, access policies, vulnerability management

• Strong cross-functional communication: able to explain risk and compliance requirements to executives, work credibly alongside engineers, and represent our posture to enterprise customers and auditors

• Comfort operating as a player-coach — willing to be hands-on-keyboard while building the function

• Preferred: Track record of building security programs from early maturity: you've written the first policies, stood up the first tooling, and made pragmatic risk tradeoffs rather than inheriting a mature program

Benefits:

• Competitive compensation.

• Opportunities for rapid career advancement in a growing company.

• 100% premium coverage for health insurance.

• 401(k) with no matching at this time.

This is a hybrid role based in our New York office and will require you to be in the office 4x in a week.

Our Pledge for an Equitable Future

At Verse Medical, our mission is to deliver equitable, hospital-quality care to everyone, regardless of their background or where they live. We can only achieve this if our own team reflects the diversity of the patients we serve. We are committed to building a workplace where everyone feels a sense of belonging, where their contributions are valued, and where they can do their best work. We embrace diversity of all kinds: race, gender, age, religion, identity, experience. We are actively working to build a more inclusive and equitable world, starting from within our own walls. We are an equal opportunity employer.

We are also committed to providing a positive and accessible interview experience. If you require any accommodations to participate in our process, please contact us at recruiting@versemedical.com.