Director of Compliance
About The Position
Cubby Beds operates within a complex regulatory environment including FDA, HIPAA, CMS/Medicare/Medicaid regulations, Anti-Kickback and Stark laws, False Claims Act, state regulations, and evolving data privacy standards. We are seeking a senior Compliance leader to design, implement, and continuously improve Cubby’s enterprise compliance infrastructure, with full ownership across HIPAA/data privacy and related compliance areas. This is a strategic, governance, and operational role - setting strategy, building systems, and managing day-to-day compliance operations. This individual must combine legal sophistication with business pragmatism - translating regulatory requirements into operational systems, policies, and risk mitigation frameworks that scale with the company.
Requirements
- Bachelor’s degree
- Significant (7-10 years) progressive experience in healthcare compliance, healthcare law, and/or regulatory governance
- Strong working knowledge of HIPAA and HITECH, CMS/Medicare/Medicaid regulations, Anti-Kickback Statute, Stark Law, False Claims Act, and state healthcare regulations
- Experience managing or mentoring compliance, regulatory, or legal professionals
- Extremely organized with strong attention to detail
- Excellent communication skills, both written and oral
- Builds collaborative relationships while modeling Cubby Values
- Maintains confidentiality and exercises sound discretion in all situations
- Trustworthiness as demonstrated by being honest and credible and able to communicate unvarnished truth in an appropriate and helpful manner
- Demonstrates humility and accurately represents their own knowledge and limitations
Nice To Haves
- Advanced law degree (J.D. or similar) or advanced business degree (MBA or similar) strongly preferred
- Experience building or maturing compliance programs in growth-stage companies preferred
- Experience in medical device, healthcare services, or reimbursement-heavy environments strongly preferred
Responsibilities
- Serve as Cubby’s HIPAA Compliance Officer
- Oversee HIPAA compliance including administrative, physical, and technical safeguards
- Establish a formal compliance governance structure and centralized compliance knowledge repository
- Conduct PHI risk assessments and develop mitigation plans
- Develop & enforce data privacy policies, procedures, and reporting
- Ensure IT-related security controls are implemented and documented, leveraging our IT support team
- Ensure appropriate training programs are implemented for workforce members handling PHI
- Monitor evolving state data privacy laws (e.g., CCPA, state biometric and health data laws) and assess applicability to Cubby’s operations
- Manage data subject rights requests, breach notification obligations, and privacy incident response
- Advise on Anti-Kickback Statute, Stark Law, and False Claims Act risk exposure
- Provide feedback, liaise with external legal counsel, and drive to execution documents including but not limited to: DME contracts, vendor contracts, business associate agreements (BAAs), sales contracts, and compliant incentive agreements.
Benefits
- Base Salary: $150,000 – $175,000
- Performance Bonus: Up to 20% of your base salary if targets are hit
- Stock Options - Equity Ownership
- Health, Dental, and Vision Insurance
- Unlimited PTO & Sick/Wellness Hours
- 12 paid holidays, a paid Volunteer Day and a Powder Day
- 401k with a company match
- Hybrid Work Model: Monday-Wednesday in the office, optional work from home Thursday-Friday
- Mac, standing desk, and high-end accessories at the office + a work-from-home stipend to purchase equipment needed for home offices
- Paid parking
- Annual staff retreat
- Stocked kitchen and bimonthly team lunches in our beautiful Denver HQ
- Growth opportunities at a start-up with a life-changing mission
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
