Position Details

Salary $131K – $219K USD / year

Type Full-Time

Experience executive

Exp. Years 10+ years

Education Bachelor's degree in Information Technology, Cybersecurity, Business, or related field, or equivalent experience.

Category Legal & Compliance

About this role

Senior IT compliance leader responsible for enforcement of regulatory, cybersecurity, and contractual requirements across oncology practices, managing CAPs, audits, and governance programs with risk-based remediation.

Key Responsibilities

Enforce compliance governance & risk management
CAPA ownership & RCA management
Audit readiness management
Stakeholder partnership & operational execution
Documentation & governance

Technical Overview

Focus on IT compliance activities, audits, CAPA, evidence collection, and governance across healthcare settings; familiarity with HIPAA, NIST, HITRUST frameworks; interface with internal/external auditors and stakeholders.

Ideal Candidate

The ideal candidate is an executive-level IT compliance leader with 10+ years of experience in regulatory, cybersecurity governance, and audit readiness within healthcare or regulated industries. They possess strong certifications (CISA/CRISC/CISSP/HCISPP), hands-on CAPA management, and a proven ability to lead complex audit programs with cross-functional stakeholders.

Must-Have Skills

10+ years in IT compliancerisk managementcybersecurity governanceor auditBachelor's degree ( Information TechnologyCybersecurityBusinessor related field )Lead complex compliance initiatives

Nice-to-Have Skills

Healthcare or regulated-industry experienceAI-related compliance knowledgeExperience with AI security assessments

Tools & Platforms

CAPA trackingAudit management toolsDocumentation platforms

Required Skills

IT compliancerisk managementcybersecurity governanceaudit readinessCAPACAPHIPAASOXNISTHITRUSTHCISPPCISACRISCCISSPHCISPPregulatory compliancedocumentationgovernancestakeholder partnership

Hard Skills

IT complianceRisk managementCybersecurity governanceAudit readinessCAPACorrective Action PlansCAPEvidence collectionInternal auditsExternal auditsDocumentationGovernanceStakeholder partnershipOperational executionHIPAASOXNISTHITRUSTHCISPPCISACRISCCISSP

Soft Skills

Strategic thinkingCommunicationCollaborative problem solvingLeadershipStakeholder managementAnalytical thinking

Certifications

Required

CISACRISCCISSPHCISPP

Industry & Role

Industry Healthcare & Medical

Job Function Lead IT compliance programs and audit readiness across McKesson's oncology practice technology environments.

Role Subtype Director - IT Compliance

Keywords for Your Resume

technology governancecomplianceregulatory requirementsHIPAASOXNISTHITRUSTHCISPPCAPAaudit readinessCAPevidence collectioninternal auditsexternal auditsrisk managementgovernancedocumentationstakeholder partnershipoperational executionCISACRISCCISSPIT complianceaudit

Deal Breakers

Less than 10 years in IT compliance or audit, No healthcare/regulatory experience, Lack of relevant certifications (CISA/CRISC/CISSP/HCISPP)

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Technology Governance & Compliance Director

Get matched to jobs like this