Senior Director Compliance and Privacy
About The Position
Reporting to the Chief Compliance Officer, the Senior Director of Compliance and Privacy is responsible for the end-to-end management of the compliance and privacy program across all Stellar Health entities, including our SaaS business and our two ACOs. This is a senior leadership role with direct oversight of the compliance function's daily operations, regulatory strategy, and external-facing interactions with health plan compliance teams, outside counsel, and government regulators. The Senior Director serves as the CCO's operational counterpart and backup, with sufficient authority and judgment to run the compliance program independently. This person will manage a compliance and privacy analyst, chair internal compliance governance bodies, and own the pre-contract compliance review process that supports Stellar's new business pipeline. This role is critical given the current federal enforcement environment around risk adjustment, managed care, and Medicare Advantage, and requires someone who can operate with minimal oversight across multiple entities with distinct payor relationships and regulatory obligations.
Requirements
- 10+ years of experience in healthcare compliance and privacy, with progressive responsibility
- At least 3 years of people management experience
- Direct, hands-on experience with Anti-Kickback Statute safe harbor analysis, Stark Law, and HIPAA
- Experience managing compliance across multiple legal entities or business lines simultaneously
- Direct experience working with or for Medicare Advantage health plans, ACOs, or value-based care organizations
- Experience responding to government inquiries or investigations (DOJ, OIG, state AG, or OCR)
- Experience with payor or health plan compliance audit processes, either conducting them or responding to them as a vendor or delegated entity
- Familiarity with risk adjustment programs, HCC coding compliance, and the current CMS enforcement environment
- Experience conducting or supporting pre-contract compliance reviews for health plan or provider agreements
- Proven ability to calibrate compliance controls to actual risk, avoiding overengineered processes while maintaining regulatory defensibility
- Ability to represent the organization independently in interactions with health plan compliance officers, outside counsel, and government regulators
- Excellent interpersonal, communication, and presentation skills that adjust to the audience
- Bachelor's degree or equivalent demonstrated work experience in business, healthcare, or a related field
Responsibilities
- Implement, maintain, and monitor all requirements established in the Stellar Health compliance plan, applicable laws and regulations, and customer contracts across all four entities
- Lead pre-contract compliance reviews for new payor and provider agreements, enabling Stellar's revenue growth without creating regulatory or process bottlenecks
- Own the compliance response process for payor compliance audits, HIPAA OCR inquiries, state AG investigations, and any DOJ/OIG enforcement activity, including early-stage triage, document production, and government interface
- Execute the annual CRISP risk assessment process and develop annual work plans and program evaluations, calibrating the depth of compliance controls to the actual risk profile rather than overengineering processes that create unnecessary friction
- Maintain an inventory of all applicable regulations and contractual compliance obligations across AKS, Stark Law, HIPAA, CMPL, and CMS program requirements, in partnership with other CRISP team members
- Establish and monitor effective communication channels that promote a speak-up culture, including disseminating information and training, and receiving and responding to questions and concerns through anonymous reporting channels
- Oversee thorough investigations and mitigation activities, including practices to prevent and detect retaliation
- Manage compliance and privacy documentation including policies, procedures, plans, and standards across all four entities, ensuring consistency where appropriate and entity-specific customization where required
- Build and maintain compliance monitoring strategies to detect anomalous user activity in the Stellar platform, including dashboards and reporting
- Chair the Customer Compliance Council and the Compliance and Privacy Committee, and support the CCO with the Compliance, Security, and Risk Committee
- Manage relationships with external stakeholders including outside counsel, customer compliance representatives, and regulatory bodies
- Coordinate responses to serious compliance or privacy incidents including triage, mitigation, root cause analysis, and communication with all impacted parties
- Oversee business courtesies and conflicts of interest processes
- Support compliance and privacy aspects of customer and sales-related matters including pre- and post-contracting questionnaires
Benefits
- Medical, Dental and Vision Benefits
- Flexible PTO
- Universal Paid Family and Caregiver Leave
- Wellhub+ Gym Memberships
- Pre-tax commuter benefits, HA, FSA plans
- Company sponsored One Medical memberships and Citibike memberships
- Medical Travel Benefits
- JOON, a flexible lifestyle spending account that gives our team a monthly stipend to spend on what matters most to them
- Stock Options & a 401k matching program
- A broad calendar of company sponsored social events that for our in-office and remote employees
- Company sponsored lunch for all NY HQ employees
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
