Director of Compliance

About The Position

Requirements

• Bachelor's degree required in Healthcare Administration, Public Health, Legal Studies, Social Work, or related field
• Minimum five (5) years of progressive experience in healthcare compliance, regulatory affairs, or related field
• Minimum two (2) years of supervisory or management experience
• Demonstrated experience in healthcare compliance program administration, including HIPAA and/or 42 CFR Part 2
• Working knowledge of HIPAA Privacy and Security Rules, 42 CFR Part 2 (Final Rule effective February 2026), OMIG regulations, Corporate Compliance regulations and applicable state/local requirements
• Strong supervisory and staff development skills
• Excellent written and verbal communication skills, including the ability to draft regulatory correspondence, policies, and reports
• Proficient in Microsoft Office Suite (Word, Excel, Outlook, PowerPoint)
• Strong organizational skills and ability to manage multiple competing priorities
• Sound judgment, analytical thinking, and discretion in handling sensitive and confidential matters
• Ability to work collaboratively across departments and levels of the organization

Nice To Haves

• Master's degree preferred (MPA, MHA, MPH, JD, or related)
• Experience in supported housing, behavioral health, or social services settings strongly preferred
• Certified in Healthcare Compliance (CHC) preferred, or willingness to obtain within 18 months of hire
• Certified in Healthcare Privacy Compliance (CHPC) a plus

Responsibilities

• Manage the day-to-day operations of the compliance department, ensuring timely completion of investigations, audits, and regulatory submissions
• Manage the compliance incident tracking system, ensuring all incidents are triaged, tracked and reviewed in the agency incident review committee meeting.
• Monitor investigation backlogs and implement corrective workflows to maintain operational efficiency
• Coordinate compliance activity across multiple supported housing facilities and homeless shelter programs
• Serve as acting compliance authority in the absence of the CCO
• Directly supervise compliance staff, providing day-to-day guidance, performance management, and professional development
• Conduct performance evaluations, set measurable goals, and provide ongoing coaching and mentorship
• Coordinate coverage plans and staffing schedules to maintain compliance operations during planned and unplanned absences
• Assist in recruiting, onboarding, and training new compliance staff
• Lead and coordinate compliance investigations across all facility programs, including alleged regulatory violations, abuse/neglect reports, and HIPAA incidents
• Ensure investigations are conducted in accordance with agency policy, regulatory requirements, and established timelines
• Prepare investigation findings, corrective action plans, and summary reports for CCO review
• Liaise with program directors and facility staff to implement corrective actions and preventive measures
• Support implementation of agency policies and procedures consistent with HIPAA Privacy Rule, 42 CFR Part 2 (Final Rule), OMIG requirements, and other applicable regulations
• Monitor regulatory updates, guidance, and enforcement trends and communicate relevant changes to the CCO
• Assist in the preparation of regulatory responses, self-disclosures, and corrective action plans
• Coordinate documentation and evidence gathering in response to external audits, surveys, and regulatory inquiries
• Assist with the development of compliance training programs for staff across all facilities, including annual HIPAA training, incident reporting, and 42 CFR Part 2 awareness
• Track training completion using the compliance training matrix and follow up on outstanding completions
• Facilitate facility-level compliance orientations for new hires in coordination with Human Resources
• Prepare compliance reports, dashboards, and KPI summaries for CCO review and presentation to senior leadership and the Corporate Compliance Committee
• Maintain accurate and organized compliance records, investigation files, and audit documentation
• Assist in compiling data for annual compliance risk assessments and reporting required by regulatory bodies
• Serve as a compliance resource and point of contact for program and facility managers, Human Resources, Legal, and IT
• Partner with IT on HIPAA Security Rule compliance matters and AI/technology implementation reviews
• Coordinate with General Counsel and external legal counsel on regulatory matters as directed by the CC