Director, Compliance - Remote
Sharecare · United States · 1 mo ago
RemoteRemoteLegalFull-time
Job Summary
This position supports the Chief Privacy Officer in setting privacy strategy and enterprise risk posture, including monitoring emerging state and federal regulations that directly affect the organization.
Essential Functions
- Owns operational execution of privacy and ROI compliance across assigned portfolios, regions, or client segments.
- Serves as a senior escalation point and participates in escalated compliance discussions with clients, including sensitive disclosures and multi-state compliance scenarios.
- Maintains strong relationships with HIM leaders and enterprise stakeholders; supports client trust, renewal outcomes, and long-term business performance through consistent compliance execution.
- Manages experienced professionals and/or subordinate analysts and is accountable for compliance outcomes across assigned client portfolios.
Qualifications
- Bachelor’s degree required; Master’s degree preferred; or equivalent experience.
- Typically requires 8–10+ years of ROI operations, privacy, compliance, and/or client success experience, including leadership responsibility.
- Privacy credentials such as RHIA, CHPS, CHPC or equivalent preferred.
- Experience with or expertise in the following:
- HIPAA / HITECH / Omnibus Final Rule.
- Office for Civil Rights guidance and processes; regulatory inquiry and audit response.
- Federal ROI requirements and state medical record/privacy laws and fee rules, including multi-state operational implications.
- Operationalizing privacy requirements into policies, SOPs, training, and quality controls at scale.
- Leading internal/client audits, root-cause analysis, corrective action planning, and sustainable remediation.
- Incident investigation, documentation, and cross-functional breach/incident response partnership with Security and Legal.
- Cross-functional leadership with Product, Operations, Legal, Security, Sales, and Client Success; ability to embed compliance into implementations, product adoption, renewals, and expansions.
- Strong executive presence and client-facing capability, including participation in escalated discussions with clients and (as needed) regulators.
- Excellent written and verbal communication skills.
- Ability to prepare, submit, and conduct presentations for employees and/or clients.
- Well-versed in current EHR technology usage with hands-on experience with systems such as Epic, Allscripts, Cerner, NextGen or similar (preferred).
- Proven ability to write comprehensive policy and procedure documents.
- Capacity to interact successfully with all levels of the organization.
- Excellent Microsoft Office skills.
HIPPA/ Compliance
- Maintain privacy of all patient, employee and volunteer information and access such information only on a need-to-know basis for business purposes.
- Comply with all regulations regarding corporate integrity and security obligations.
- Report unethical, fraudulent, or unlawful behavior or activity.
- Maintain current and yearly HIPAA certification.