Senior Manager, Healthcare Privacy and Compliance

Minimum of 5 years of experience leading healthcare data compliance initiatives with multiple cross functional stakeholders. Deep understanding of implementing and assessing controls in complex environments. Strong knowledge of HIPAA, HITRUST, SOC2 and other relevant regulatory standards. Strong written and verbal communication skills. Strong analytical, problem-solving, and communication skills. Exceptional attention to detail and a commitment to upholding the highest ethical standards. Ability to collaborate and coordinate effectively with cross-functional teams. Diverse security and IT background with knowledge in multiple areas including policy, IT service management, networking, infrastructure, application development and information security-related standards and initiatives. Self-motivated; able to work with minimal supervision.

Lead the design, implementation, and ongoing enhancement of a comprehensive healthcare privacy and compliance program. Ensure all organizational operations meet and exceed regulatory, governance, and client standards, including HIPAA, HITRUST, SOC2, and Medicare/Medicaid requirements. Proactively identify and mitigate compliance risks across the enterprise. Foster a culture of accountability, data security, and ethical practices. Collaborate with executive leadership, business unit leaders, IT and security teams, internal departments, employees, contractors, and external stakeholders. Develop, update, and enforce policies, procedures, and monitoring activities. Oversee and continuously improve the auditing program. Serve as a trusted advisor to business units on certifications, regulatory requirements, and best practices. Chair and manage the compliance committee for relevant business units. Continuously monitor, assess, and document compliance risks across the organization. Coordinate with internal teams to develop and execute comprehensive risk mitigation plans. Develop, maintain, and execute an incident response plan for compliance breaches. Design and deliver engaging training programs for employees and contractors. Maintain accurate, up-to-date records, reports, and documentation. Establish and track performance measures, goals, and reporting methodologies. Collaborate with business units to ensure business continuity planning aligns with compliance and regulatory requirements. Lead the timely and thorough completion of security risk assessments for clients.