Executive Director - Compliance & Privacy

Executive Director - Compliance & Privacy

1.0 FTE Full time Day - 08 Hour R2551078 Onsite 108610021 Admin Compliance Business & Administration PALO ALTO, 180 El Camino Real, California

If you're ready to be part of our legacy of hope and innovation, we encourage you to take the first step and explore our current job openings. Your best is waiting to be discovered.

Day - 08 Hour (United States of America)

This is a Stanford Health Care job.

A Brief Overview

Reporting to the Senior Vice President (SVP) – Chief Compliance and Privacy Officer in the Office of Compliance and Privacy, the Executive Director – Compliance and Privacy is responsible for implementing and managing the Compliance and Privacy Programs for Stanford Health Care (SHC) and Stanford Medicine Children's Health (SMCH), (collectively referred to as the "Stanford Health Entities"). This role is essential for maintaining the integrity and privacy of patient information, supporting compliance with relevant laws, handling privacy complaints, and maintaining and disseminating the notice of privacy practices. Leads and manages the organizational compliance and privacy programs to continuously assess their overall effectiveness.

This role involves addressing the day‑to‑day compliance and privacy issues, responding to inquiries and complaints, conducting internal investigations, and enhancing operational controls to meet state and federal laws, providing early warnings about new laws and regulations or initiatives by external agencies, and coordinating with stakeholders across Stanford Medicine, including Stanford University's Office of the Chief Risk Officer and Stanford University's Chief Privacy Officer. The Executive Director – Compliance and Privacy will supervise a team of compliance and privacy professionals in the SHC / SMCH Office of Compliance and Privacy.

The Executive Director – Compliance and Privacy addresses issues related to electronic health records (EHR) policies and procedures, oversees the proper release of information, and manages electronic media development, among other duties and responsibilities relating to compliance and privacy within the Office of Compliance and Privacy.

Locations

Stanford Health Care

What You Will Do

Develop and implement written policies, procedures, and standards of conduct.

Educate and conduct training that promote a culture of integrity and ethical conduct.

Develop effective lines of communication regarding compliance and privacy; receive complaints and provide information regarding compliance and privacy matters. This includes the management of incident and inquiry intake through various reporting channels, triage, and resolution.

Lead and facilitate internal investigations of compliance and privacy issues, and promote consistency of standards through disciplinary guidelines.

Monitor external industry regulatory and privacy trends to inform and advise the SVP – Chief Compliance and Privacy Officer and other senior leaders.

Identify, assess, and mitigate risks related to fraud, waste, and abuse through proactive monitoring and collaboration with the Office of General Counsel and the Office of the Chief Risk Officer.

Supervise a team of Compliance Program Management and Privacy Compliance professionals.

Recruit, retain, and develop a team of professionals, creating and maintaining a highly engaging work environment.

Prepare and provide periodic reports to the Stanford Health Entities' Compliance Committees, including the Corporate Compliance Committee, the Executive Compliance Committee, the Audit, Compliance, and Enterprise Risk (ACER) Committees of the Boards of Directors, and other organizational committees.

Assist the SVP – Chief Compliance and Privacy Officer with the management of the Stanford Health Entities' committees that address compliance and privacy issues by addressing matters of potential non‑compliance, researching and providing analysis on applicable laws and regulations, and corrective action if necessary.

Communicate effectively to facilitate positive working relationships and achieve desired outcomes; serve as a positive role model and effective liaison for SHC, SMCH, and all relevant covered entities, including faculty physicians and other health entity leadership and staff, to achieve increased satisfaction with and participation in the privacy program components.

Oversee and conduct complex, high‑risk investigations and reviews, prepare formal responses to external federal and state investigations, and advise on corrective action and subsequent monitoring plans, including the mitigation of any known harmful effects to patients.

Develop long‑range and short‑term goals, objectives, and plans to support the development, implementation, maintenance, and improvement of program effectiveness.

Serve as a liaison to the University regarding SHC / SMCH compliance and privacy matters, in collaboration with the SHC / SMCH Chief Compliance Officer and Privacy Officer, and play a collaborative and supportive role when interacting with the University's Chief Privacy Officer and the University Privacy Office on matters requiring joint coordination and collaboration.

Ensure policies, procedures, and processes are created and implemented to support patients' privacy rights, including access to medical records, amendment of medical records, accounting of disclosures of medical information, requests for restrictions of the use and release of medical records, requests for confidential communications, filing of complaints about privacy practices, and maintenance and dissemination of the Notice of Privacy Practices.

Obtain sufficient, competent, and relevant regulatory documentation to afford a reasonable basis for analysis, judgment, and conclusions; stay current with applicable government rules and regulations and maintain current privacy information.

Provide leadership skills to accomplish Stanford Health Care Entities' mission, goals, and strategic plan.

Respond to and oversee the process of compliance and privacy intake through all sources including the Compliance Program's various hotlines of all inquiries, issues, concerns, and complaints from employees, providers, patients, and external parties; conduct investigations and interviews as necessary; oversee the intake, tracking, corrective action, and documenting through resolution.

Education Qualifications

Bachelor's degree in a work‑related discipline / field from an accredited college or university (Required).

Advanced degree in healthcare, healthcare administration, or law (Preferred).

Experience Qualifications

Ten to fifteen (10-15) years of compliance and privacy program management responsibility in a complex, multi‑organizational healthcare environment.

At least seven to ten (7-10) years of supervisory responsibility.

At least four to seven (4-7) years of experience working in the State of California and strong working knowledge of California law and regulations.

Required Knowledge, Skills And Abilities

Experience in operationalizing a successful compliance and privacy program, particularly within a large academic medical center or health care setting of similar size and complexity, including the development of risk assessments and workplans.

Ability to effectively prioritize work, communicate progress, and meet deadlines by producing accurate work products in a fast‑paced environment.

Ability to maintain competence in and up‑to‑date knowledge of healthcare compliance requirements, practices, and trends.

Ability to maintain confidentiality of all information, particularly sensitive information.

Ability to model and demonstrate consistently high standards of professional ethics, integrity, and trust.

A proven track record of strong teamwork and leadership skills within and across other organizational departments.

Ability to perform research and analysis of health care laws, regulations, and policies, as well as compliance issues.

Ability to effectively communicate with all levels of the organization.

Ability to chair relevant committees and engage in productive, focused, and meaningful discussion.

Demonstrated and proven maturity and highly professional skills to instill the trust and confidence of key stakeholders.

Ability to demonstrate meaningful leadership and management attributes.

Ability to manage, direct, and evaluate the work of others, as well as develop and retain talent.

Ability to identify problems and provide timely, relevant solutions.

Ability to understand, interpret, and apply complex federal and state hospital compliance laws, rules, regulations, and guidelines.

Proven ability to use sound judgment and make sound decisions.

Knowledge of and practical experience in working with global, federal, and state privacy and compliance laws and regulations, OIG, DOJ, and U.S. Department of Health and Human Services Office of Civil Rights enforcement methods, and other applicable federal and state compliance and privacy guidance and industry best practices.

Knowledge of the organization and functioning of hospitals, emergency departments, and ambulatory care clinics.

Knowledge of principles and practices of organization, administration, fiscal, and personnel management.

Knowledge of theories, principles, and practices of strategic planning, program evaluation and improvement, and budget development and analysis.

Proven track record of successfully conducting complex compliance and privacy internal investigations into multiple areas.

These Principles Apply To ALL Employees

Stanford Health Care sets a high standard for delivering value and an exceptional experience for our patients and families. Candidates for employment and existing employees must adopt and execute C‑I‑CARE standards for all patients, families and towards each other. C‑I‑CARE is the foundation of Stanford's patient‑experience and represents a framework for patient‑centered interactions. Simply put, we do what it takes to enable and empower patients and families to focus on health, healing and recovery.

You will do this by executing against our three experience pillars, from the patient and family's perspective :

Know Me : Anticipate my needs and status to deliver effective care.

Show Me the Way : Guide and prompt my actions to arrive at better outcomes and better health.

Coordinate for Me : Own the complexity of my care through coordination.

Equal Opportunity Employer

Stanford Health Care (SHC) strongly values diversity and is committed to equal opportunity and non‑discrimination in all of its policies and practices, including the area of employment. Accordingly, SHC does not discriminate against any person on the basis of race, color, sex, sexual orientation or gender identity and / or expression, religion, age, national or ethnic origin, political beliefs, marital status, medical condition, genetic information, veteran status, or disability, or the perception of any of the above. People of all genders, members of all racial and ethnic groups, people with disabilities, and veterans are encouraged to apply. Qualified applicants with criminal convictions will be considered after an individualized assessment of the conviction and the job requirements.

Base Pay Scale : Generally starting at $133.84 - $177.35 per hour

Referrals increase your chances of interviewing at Stanford Health Care by 2x.

Sign in to set job alerts for “Director of Compliance” roles.

#J-18808-Ljbffr