Director of Compliance and Risk Management

About The Position

Requirements

• Comprehensive knowledge of healthcare compliance regulations, standards, and industry best practices.
• Thorough understanding of HIPAA, HITECH, CMS regulations, Stark Law, Anti-Kickback Statutes, OSHA requirements, and healthcare privacy laws.
• Knowledge of enterprise risk management principles and methodologies.
• Understanding of employment-related compliance and workplace risk considerations.
• Familiarity with healthcare operations, organizational governance, and business practices.
• Knowledge of contract administration, vendor management, and business associate agreements (BAAs).
• Understanding of cybersecurity principles, privacy safeguards, and data protection best practices.
• Knowledge of auditing, monitoring, corrective action planning, and regulatory readiness processes.
• Understanding of policy governance and organizational compliance frameworks.
• Exceptional leadership and relationship-building skills.
• Strong analytical, critical-thinking, and problem-solving abilities.
• Excellent verbal, written, and presentation communication skills.
• Advanced investigation and root-cause analysis skills.
• Strong strategic planning and organizational skills.
• Strong conflict resolution and employee relations skills.
• Strong policy development, documentation, and process improvement skills.
• Ability to exercise independent judgment, discretion, and sound decision-making.
• Ability to maintain confidentiality while handling sensitive information and investigations.
• Ability to evaluate complex organizational risks and recommend practical business solutions.
• Ability to interpret regulations and apply them effectively within healthcare operations.
• Ability to lead enterprise-wide compliance, privacy, and risk initiatives.
• Ability to conduct audits, investigations, risk assessments, and corrective action planning.
• Ability to establish priorities and coordinate cross-functional initiatives.
• Ability to manage multiple competing priorities and deadlines.
• Ability to build productive working relationships across all levels of the organization.
• Ability to influence organizational culture and promote ethical decision-making.
• Ability to effectively communicate with executive leadership, providers, managers, staff, regulators, and external stakeholders.
• Ability to serve as a trusted advisor to executive leadership on compliance and risk-related matters.
• Bachelor degree required.
• 4+ years healthcare compliance/risk experience required.
• Ability to work effectively in a fast-paced environment.
• Physical ability to sit, perform data entry and view computer screen for long periods at a time.
• Daily standing, walking, bending, and maneuvering.
• May require lifting up to 50 pounds or more to transfer and/or turn patient with and without assistive devices.

Nice To Haves

• Master or Doctorate degree in Compliance or Healthcare related field preferred.
• CHC, CHPC, CHRC, SHRM-SCP certifications preferred.
• Experience advising executive leadership and leading enterprise-wide compliance programs strongly preferred.

Responsibilities

• Develop and oversee the organization's Compliance Program.
• Serve as the primary compliance resource for executive leadership.
• Monitor healthcare regulatory compliance.
• Develop and oversee the enterprise risk management framework.
• Identify, assess, and mitigate operational, regulatory, financial, employment, privacy, cybersecurity, and reputational risks.
• Serve as Privacy Officer.
• Oversee HIPAA/HITECH compliance and privacy investigations.
• Lead investigations involving compliance concerns and policy violations.
• Partner with HR and coordinate with outside counsel as needed.
• Review contracts, BAAs, NDAs, and employment-related agreements for operational and compliance risks.
• Coordinate audits and corrective action plans.
• Develop compliance training programs and provide regular reports to leadership.
• Oversee policy development, review, implementation, and retention.