Head of Compliance

OnMed•White Plains, NY

6d•Hybrid

About The Position

At OnMed, our purpose is to improve the quality of life and sense of well-being in our communities by bringing access to healthcare to everyone, everywhere. Our innovative CareStation, a small but mighty, Clinic-in-a-Box, brings #healthcareaccess anywhere with an outlet to plug it in. Poised to become a key component in America’s public health infrastructure, the OnMed CareStation™ is the only tech-enabled, human-led, hybrid care solution that combines the comprehensive experience, trust and outcomes of a clinic, with the rapid scalability of virtual care. At OnMed, every role, every day, is directly impacting the communities we serve. You’ll join a high-performing purpose-driven team, innovating to break down the barriers that keep people from the care they need. This is not just a job...it's a movement to bring access to healthcare where and when people need it most. It’s healthcare that shows up.

Requirements

Working knowledge of healthcare Federal and State Laws.
Familiarity with industry regulations, standards, and laws related to information security and data privacy, including HIPAA.
Competent in using the Microsoft Office suite.
Ability to follow company procedures, work instructions, and policies.
Strong ability to research, process, synthesize, and summarize complex issues.
Excellent judgment, analytical thinking, and problem-solving skills.
High attention to detail and strong organizational capabilities.
Ability to multi-task and prioritize work with minimal supervision.
Exceptional interpersonal, verbal, and written communication skills.
Adaptability to a fast-paced and dynamic work environment with frequently changing priorities.
Experience with GRC or compliance management platforms and regulatory monitoring tools; proficiency in maintaining compliance dashboards and metrics reporting.
Working knowledge of state business registration and entity compliance filing processes; experience managing multi-state regulatory obligations across a professional corporation or PC/MSO structure preferred.
Familiarity with healthcare provider credentialing, Medicare/Medicaid enrollment, and PECOS; experience coordinating with credentialing vendors and maintaining enrollment records across multiple states preferred.

Nice To Haves

Juris Doctor (JD) strongly preferred given the scope of contract and regulatory legal work in this role.
Demonstrated experience in contract drafting and review, including vendor agreements, BAAs, and provider contracts; familiarity with contract lifecycle management strongly preferred.
Experience managing multi-state compliance operations including credentialing, Medicare/Medicaid enrollment, state business registration, and entity governance (PC/MSO structure preferred).

Responsibilities

Develop and maintain compliance program, including: annual review cycles, workforce privacy training, compliance dashboard reporting, written policies and procedures specific to direct care and telemedicine in the healthcare industry (e.g. including around privacy and security), incident management (from intake through risk assessment, mitigation)
Stay up-to-date with changes in healthcare regulations and industry standards and ensure that the Company’s strategies and operations remain compliant, including via research on State, Federal and local level.
Provide guidance and training to internal teams on compliance requirements and best practices.
Work in partnership with Marketing to review and approve all marketing materials, ensuring compliance with regulatory requirements and alignment with industry standards
Conduct regular audits to identify and address any compliance gaps and track and share related metrics, including via dashboards.
Serve as a subject matter expert on healthcare compliance issues, providing guidance and support to internal and external stakeholders.
Lead incident response efforts in the event of compliance breaches, including investigating incidents and implementing corrective actions.
Monitor and analyze emerging trends and issues in healthcare compliance and recommend proactive measures to address potential risks.
Manage state business registration and foreign entity filing activity, including new filings, amendments, and annual report updates for both the operating company and managed professional corporation entities.
Manage credentialing operations across all active states, overseeing facility and hospital credentialing applications, serving as primary liaison between the Company and credentialing vendors and bodies.
Manage Medicare and Medicaid enrollment across active and expansion states including state-specific enrollment portals.
Support ongoing governance of the managed professional corporation entities, including coordination of governance meetings, and maintenance of state-specific collaborative practice requirements.
Manage language access compliance obligations, communicable disease reporting documentation, corrective action processes, and internal monitoring and auditing functions, including LEIE/OIG exclusion screening and first- and second-line controls documentation.
Coordinate with the Security Officer on Security Rule compliance and related technical controls.
Draft, review, and negotiate vendor contracts, business associate agreements (BAAs), provider agreements, and other legal instruments in coordination with General Counsel.
Serve as primary operational liaison to General Counsel on regulatory and transactional legal matters, including new market entry requirements, CPOM analysis, and state-level operating structure questions.
Perform other related roles and responsibilities as assigned by the General Counsel, including other transactional or regulatory matters, as business needs arise.