Systems Security and Compliance Officer

About The Position

Requirements

• Bachelor’s degree in business management, systems management, corporate compliance, or public health related field required. Direct experience in assisted living, memory care, long-term care, or senior housing strongly preferred.
• Minimum 5-7 years of progressive leadership experience in health care compliance and/or information systems management required.
• Sound understanding of Federal and State regulatory frameworks, Corporate Compliance and Healthcare Information Systems security.
• Experience with electronic health records and related healthcare documentation systems regulatory compliance.
• Demonstrated experience managing surveys, audits, and regulatory interactions.
• High integrity and sound judgment
• Detail-oriented with a system-thinking mindset
• Calm and effective under regulatory scrutiny or time pressure
• Proactive, solution-focused, and improvement-driven
• Commitment to resident-directed care and ethical operations
• Ability to work independently and motivate others.
• Ability to communicate effectively, both orally and in writing.
• Strong critical thinking and problem-solving skills with the ability to research, organize and prioritize work.
• Ability to manage multiple priorities to ensure goals are met in a timely manner.
• Proficient in the use of all Microsoft applications (Excel, Word, Power Point, and Microsoft Outlook).
• Ability to embrace complexity and develop standards for maintaining legal compliance.
• Ability to utilize electronic software systems for data aggregation, trending, and analysis.

Responsibilities

• Coordinate and oversee the RPH security program and contractual arrangement with CETech, providing IT Business Services and Cybersecurity.
• In collaboration with CETech, identify reasonably foreseeable internal and external risks, assess the sufficiency of safeguards in place to control the identified risks.
• Provide training to all employees in the security program's practices and procedures.
• Participate in selecting service providers capable of maintaining appropriate safeguards and requiring those safeguards by contract.
• Adjust the security program in light of business changes or new circumstances.
• Provides regulatory compliance, and risk management expertise and guidance throughout the organization as may be needed, including, but not limited to incident/complaint resolutions, corrective actions and root cause analysis, and preventive actions.
• Consults with general counsel as needed to resolve difficult legal compliance issues.
• Identifies potential areas of compliance vulnerability and risk, develops, and implements corrective action plans for resolution of problematic issues, and provides general guidance on how to avoid or deal with similar situations in the future.
• Monitors and reports results of compliance and ethics efforts and provides guidance to the leadership on matters relating to reporting and compliance.
• Acts as an independent review and evaluation body to ensure that compliance issues and concerns within the organization are being appropriately evaluated, investigated, and resolved.
• Ensures proper reporting of violations or potential violations to duly authorized enforcement agencies as appropriate or required.
• Under the guidance of the Quality & Compliance Committee, is authorized to implement all necessary actions to ensure achievement of the objectives of an effective compliance program.
• Manages an Audit Program by performing or facilitating internal audits, hosting cross-site audits, reporting the audit results to leadership and stakeholders, and preparing or reviewing responses to audit findings and inspection observations.
• Assure compliance with all environmental safety standards and ensure all work areas are clean, safe, and secure.
• Oversee the integrity, accuracy, and timeliness of resident records and organizational documentation
• Lead governance of electronic health records (EHR), documentation workflows, and data retention practices
• Maintain compliance with privacy and security requirements (e.g., HIPAA and state confidentiality laws)
• Manages and maintains an Electronic Document Control (EDC) system and records management system, providing accurate, approved, version-controlled emergency/ disaster planning and standard operating procedures that effectively govern the information systems for the organization.
• Establishes, implements, and oversees effective systems security and compliance program to prevent illegal, unethical, or improper conduct.
• Develops, implements, and maintain business and health care compliance policies, procedures, and internal controls.
• Institutes and maintains an effective compliance communication program for the organization, including promoting a) use of the compliance hotline, b) heightened awareness of standards of conduct, and c) understanding of new and existing compliance issues and related policies and procedures.
• Establishes and provides direction and management of the compliance hotline.
• Responds to alleged violations of rules, regulations, policies, procedures, and standards of conduct by evaluating or recommending the initiation of investigative procedures.
• Develops and oversees a system for uniform handling of such violations.
• Provides reports on a regular basis and as directed or requested, keeps the Quality & Compliance Committee and senior leadership informed of the operation and progress of compliance efforts.
• Serve as a trusted advisor to executive leadership on compliance and regulatory strategy
• Partners with operations, nursing, social work, IT, legal, and finance teams to align compliance with organizational goals.
• Partner with Administrators and clinical operations teams to standardize documentation practices across communities. Ensure documentation supports regulatory compliance, quality of care, billing integrity, and risk mitigation.
• Participates in leadership meetings and provide regular compliance reporting and trend analysis
• Work with the human resource department and others as appropriate to develop an effective compliance training program, including appropriate introductory training for new employees and ongoing training for all employees and managers.
• Collaborate with leadership (CEO, CFO, VP of HR and Support Services and AL Administrators) to direct compliance issues to appropriate existing channels for investigation and resolution.
• Support leaders in understanding and applying compliance expectations in daily operations.
• Lead staff education and training related to regulatory requirements, data management and electronic systems management standards, and related compliance best practices.
• As a member of the leadership team, be prepared to handle emergencies as they arise, and as assigned.
• Develop and maintain a cooperative, productive working relationship among all employees.
• Provides ongoing reinforcement of safety and compliance culture among all employees.
• Create and maintain an atmosphere of warmth, personal interest, and positive spirit.
• Attend and participate in continuing educational programs designed to keep up to date with changes in healthcare system security and compliance.
• Understand the “business” and embrace the mission to represent RPH capably.
• Understand the Eden Alternative and participate in Eden events.
• Perform other related duties as required.

Benefits

• Competitive Wages
• Health, Vision and Dental Insurance
• Paid time off and holidays
• 403B Retirement Savings Plan with company match
• Long Term Disability Insurance
• Group Life Insurance
• Free Parking
• Environment of mutual respect and acceptance.