Augnito
Website:
augnito.ai
Job details:
About Us
Augnito is the next gen Voice AI powering the healthcare industry. Augnito empowers medical professionals and streamlined clinical workflows with cloud-based, AI speech recognition that offers ergonomic data entry with 99% accuracy, without the need for voice profile training, from any device, anywhere.
From the outset, Augnito was built in close partnership with clinicians, using human-centered design, to create an AI natural language processing engine to fit your needs – not the other way around. As a result, Augnito offers excellent support for a wide variety of clinical vocabulary and workflows and can halve your clinical reporting and admin time, increase revenue, prevent physician burnout, eliminate transcription waiting delays, and enable you to focus your energy on patient care – not documentation. Augnito is currently deployed at 300+ hospitals and health systems and has a growing presence in 20+ countries, including the US, UK and Canada
Role Overview
We are looking for a legal and compliance leader to drive Data Privacy, Protection, and Information Security Governance at Augnito. The role will be responsible for ensuring compliance with global healthcare and privacy regulations, strengthening information security governance, and building scalable compliance frameworks across the organization.
The ideal candidate should have a strong background with hands-on experience in privacy laws, regulatory compliance, audit management, and information security governance within a SaaS or healthtech environment.
Key Responsibilities
Data Privacy & Compliance
- Lead compliance initiatives for GDPR, HIPAA, India DPDP Act, UAE PDPL, KSA PDPL, SOC 2, and
- ADHICS.Maintain RoPA, data retention policies, consent records, and cross-border transfer documentation.
- Drive Privacy by Design and conduct DPIAs/PIAs across systems and processes.
- Manage Data Subject Rights (DSR) requests, privacy incidents, and breach response processes.
- Draft and maintain privacy policies, governance frameworks, and compliance documentation
- Act as the primary SPOC for customer privacy reviews, auditors, and regulatory queries.
Information Security Governance
- Manage and strengthen the organization’s ISMS and security governance framework.
- Ensure compliance readiness for ISO 27001, ISO 42001, SOC 2, and customer security assessments.
- Lead risk assessments, internal audits, compliance reviews, and corrective action tracking.
- Partner with Engineering and IT teams on cloud security, access controls, and security best practices.
- Monitor evolving privacy and cybersecurity regulations and advise leadership on compliance risks.
Legal Operations & Corporate Governance
- Draft, review, and negotiate legal documents including SaaS agreements, licensing, NDAs, term sheets, and investment documentation.
- Maintain and track the IPR repository, IP renewals, and filings.
Collaborate with the Company Secretary for board resolutions, AGMs, and secretarial filings.
Contract Lifecycle Management
- Manage the end-to-end lifecycle of all SaaS-based agreements: SLAs, DPAs, vendor and partner contracts.
Customer Trust & Regulatory Governance
- Act as the central point of contact for customer trust, privacy, and security assurance activities, including responding to security/privacy questionnaires (RSPs), customer audits, and demonstrating compliance with frameworks such as HIPAA, GDPR, ISO 27001, SOC 2, and regional healthcare regulations.
- Serve as the organization’s liaison with regulatory bodies, auditors, and industry forums (including ADHICS), while proactively tracking evolving privacy, cybersecurity, and healthcare compliance trends to strengthen organizational readiness.
Awareness & Training
- Conduct privacy and information security awareness programs across teams.
- Track policy acknowledgements, compliance trainings, and audit readiness.
- Build cross-functional compliance ownership through SPOC- driven governance.
Qualifications
- Bachelor’s/master’s degree in law (LLB/LLM) is mandatory
- 5+ years of experience in data privacy, legal compliance, or information security governance, preferably in healthcare SaaS or technology organizations
- Strong understanding of global privacy laws, healthcare compliance, ISMS frameworks, and security governance
- Experience managing audits, customer compliance reviews, and regulatory assessments
Preferred Certifications
- CIPP
- ISO 27001 Lead Auditor/Implementer
- ISO 42001
- CISM
- GDPR Practitioner Certification
Good to Have Certifications
Click on Apply to know more.