Group Manager - Compliance and Security Engineer

About MediBuddy

MediBuddy is India’s largest on-demand, full-stack digital healthcare platform that helps patients access multiple healthcare services. It gives users 24x7 access to high-quality healthcare at their fingertips. MediBuddy helps its users consult specialist doctors, order medicines and book lab tests from the comfort of their homes. It is also a partner to several leading corporate customers in the country and helps their employees access multiple healthcare benefits. MediBuddy users have access to online doctor consultations, wellness, preventive care services, fitness and hospitalization offered by its pan-India network of healthcare providers with its unparalleled reach.

It also provides its customers hassle-free, end-to-end surgery care through a Care Buddy, right from connecting them to the right surgeon to post-operative recovery care. MediBuddy’s surgery care provides specialized treatment in several other departments like Proctology, Ophthalmology, Vascular, ENT, Orthopaedics, Urology, Gynaecology, and more. With full-stack Surgery Care management services, MediBuddy assures customers an array of solutions for every medical, financing, insurance, and recovery need of its customers undergoing surgery. 

The digital healthcare platform has a partner network of 90,000+ doctors, 7,100+ hospitals and clinics, 4,000+ diagnostic centers, 2,500+ pharmacies along with a team size of 2200+ members. It has created an integrated healthcare ecosystem that offers patients seamless access anytime and anywhere. It has created an integrated healthcare ecosystem that offers patients seamless access anytime and anywhere in 10 minutes. With its healthcare services available in 16 Indian languages to enable customer-friendly consultation, MediBuddy is bridging the Urban-Rural quality healthcare divide. MediBuddy offers online and offline doctor consultations, medicine delivery, lab tests at home, mental health consultations, surgery care, among other healthcare services.

MediBuddy has catered to the healthcare needs of 3Cr Indians & attends to the needs of over 35,000 Indians daily across the length and breadth of the country. The app connects patients to experienced and verified doctors for online consultations across 22+ specialities such as Dermatology, Paediatrics, Gynaecology and more, instantly via chat, video, or voice call.  MediBuddy is the pioneer in providing a healthcare subscription plan under the name of MediBuddy Gold, covering unlimited specialist doctor consultations for the user and the family. 

MediBuddy is also the largest provider of employee health and wellness benefit services, catering to 700+ companies across India and in turn helping 50 Lakh employees including their family members with high-quality healthcare services. MediBuddy provides services that cover health expenses across Out-patient services(OPD) and hospitalisation in collaboration with insurance companies. 

MediBuddy is led by co-founders Mr. Satish Kannan & Mr. Enbasekar, as CEO & CTO, respectively.

The platform has so far raised over $170 million from Quadria Capital, Lightrock India, India Life Sciences Fund III LLC, Bessemer Venture Partners, Rebright Partners, TechMatrix Corporation, DeNA networks, Milliways Fund LLC, Mitsui Sumitomo (MSIVC), TEAMFund LP, JAFCO Asia Fund, FinSight Ventures, ALES Global Japan, Beyond Next Ventures, Makita corporation, InnoVen Capital, Stride Ventures and Alteria Capital.

MediBuddy’s pioneering work has been widely recognised by many leading entities:

• MediBuddy - Best Brand 2021 in Healthcare by ET Edge

• MediBuddy - Best Brand 2020 in Healthcare by ET Edge

• MediBuddy - Best Health & Wellness Solution by ET- Intelligent Health & Tech Awards 2020

• MediBuddy also bagged Marketing Campaign of the Year - #AapkaHealthBuddy & Award for Best Marketing Excellence in Health & Wellness Sector at National Awards for Marketing Excellence

• The “Industry Achievement Award 2019” by Hurun Report.

• The digital healthcare platform also bagged 3 coveted awards- Best Healthcare Entrepreneur of the Year, Best Marketing Campaign, Best healthcare start-up of the year at Healthcare Leadership Awards presented by ABP News in the year 2019

• Best healthcare startup company of the year, Best use of social media & Digital marketing in Healthcare, Best Marketing Campaign - #BaatTohKaro (DocsApp) & Best Healthcare Entrepreneur of the year- Satish Kannan at National Healthcare Leadership Congress Awards presented by Zee Business in the year 2019. 

• The ‘App of the Year 2017’ in the medical category by Amazon in association with Facebook.

Position Overview:

 

As the Group Manager for Compliance and Security, you will play a pivotal role in ensuring that our organization adheres to industry regulations, standards, and best practices related to security and compliance. You will lead a team responsible for developing, implementing, and maintaining comprehensive compliance and security programs across all aspects of our business operations. Your expertise will be critical in safeguarding our data, systems, and processes, thereby fostering trust among our stakeholders.

 

Key Responsibilities:

Leadership and Team Management:

 

1. Lead and manage a team of compliance and security professionals, fostering a collaborative and high-performance culture.

2. Provide guidance, mentorship, and professional development opportunities for team members.

Compliance Strategy and Governance:

 

1. Develop and oversee the implementation of compliance strategies, policies, and procedures to ensure adherence to relevant industry regulations and standards (e.g., GDPR, HIPAA, ISO 27001). 

2. Should be able to lead the company towards documenting, maintaining and implementing necessary controls related to ISO 27001 and other laws of land in relevance with our Corporate Clients. 

3. Stay updated on changes in regulations and assess their potential impact on the organization's compliance posture.

Security Measures and Protocols:

 

1. Define and implement security measures, protocols, and controls to protect the organization's information assets, networks, and systems from threats and vulnerabilities.

2. Collaborate with the IT and security teams to ensure the implementation of best practices in cybersecurity.

Risk Assessment and Mitigation:

 

1. Conduct regular risk assessments and vulnerability assessments to identify potential security risks and compliance gaps.

2. Develop and execute risk mitigation strategies and action plans.

Incident Response and Management:

 

1. Design and lead the organization's incident response plan, ensuring quick and effective responses to security incidents and breaches.

2. Coordinate with cross-functional teams during incident response activities, including containment, investigation, and resolution.

Training and Awareness:

 

1. Develop and deliver training programs to educate employees about compliance requirements, security best practices, and data protection.

2. Foster a culture of security awareness throughout the organization.

Audits and Assessments:

 

1. Coordinate and manage internal and external compliance audits and assessments. Should be able to manage parallelly audits and assessments in coordination with multiple internal teams. 

2. Ensure timely remediation of any identified issues and follow up on audit recommendations.

Reporting and Documentation:

 

1. Prepare regular compliance and security reports for executive management, highlighting key metrics, risks, and progress.

2. Maintain accurate documentation of compliance and security measures, processes, and incident response activities.

Qualifications and Requirements:

 

1. Bachelor's degree in a relevant field; Master's degree or professional certifications (e.g., CISA, CISSP, CISM) are a plus.

2. Lead Auditor Certification is a plus

3. Proven experience (10+ years) in compliance and security roles, including leadership and team management responsibilities.

4. In-depth knowledge of industry regulations, standards, and frameworks related to compliance and security.

5. Strong understanding of cybersecurity principles, risk assessment methodologies, and incident response protocols.

6. Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex topics to non-technical stakeholders.

7. Analytical mindset and problem-solving skills to identify and address compliance and security issues.

8. Experience with compliance audit processes, risk assessments, and security toolsets.

9. Ability to adapt to a dynamic and evolving regulatory environment and implement necessary changes.

10. High ethical standards and a commitment to maintaining confidentiality and integrity.

11. Demonstrated leadership capabilities and the ability to mentor and develop team members.

 

Join our team as the Group Manager for Compliance and Security, and contribute to our commitment to maintaining the highest standards of compliance and security across our organization. Your expertise will be crucial in upholding our reputation and ensuring the protection of our valuable assets.

•

Last updated on Aug 25, 2023