• Manage SOC 2 Type II audit cycles from scoping through evidence collection to final report, serving as the primary point of contact for auditors and collaborators. • Coordinate HIPAA compliance assessments, including risk analyses, policy reviews, and Business Associate Agreement (BAA) management. • Conduct structured gap analyses against applicable frameworks (SOC 2, HIPAA, ISO 42001, NIST CSF) to identify control deficiencies and develop prioritized remediation roadmaps. • Track risk mitigation and remediation plans, ensuring accountability and measurable progress against accepted risk thresholds. • Serve as the primary responder to enterprise customer security questionnaires, and engage directly with customers and prospects. • Demonstrate a solid understanding of system and data architecture, including cloud infrastructure, data flows, and access controls, in order to answer technical assessment questions accurately and confidently. • Develop and maintain a reusable security response library (trust portal, standard questionnaire answers, and diagrams) to accelerate future engagements. • Act as a security partner to Engineering, Product, Legal, Sales, and Customer Success, translating security requirements into actionable guidance for non-security audiences. • Participate in architecture and design reviews, ensuring new systems and features meet security and compliance requirements before deployment. • Maintain fluency in artificial intelligence and automation technologies, understanding their security and compliance implications within Rad AI’s platforms. • Leverage AI-assisted tools to improve security operations efficiency, including threat analysis, automated evidence collection, and other cybersecurity workflows.