Job Description
Director of Legal & Compliance Job DescriptionLeads Privacy and Compliance functions within the Organization.
Functions as an independent and objective legal advisor to business partners that identifies and evaluates data privacy compliance issues.
Provides subject matter expertise and designs corporate privacy trainings; monitors legal and regulatory trends.
Enables business and helps to protect the privacy of all stakeholders, including employees, customers, suppliers, and members of the public.
Key Responsibilities: Develop, implement, and maintain Privacy policies and procedures, working collaboratively with stakeholders across the companyProvide legal expertise on interpretation and application of data protection laws.
Partner with the IT Department to ensure the organization maintains appropriate IT Security, administrative, technical, and physical safeguards to protect personal and health informationMonitor changes in Privacy laws and regulations; assess the impact to the organization and its strategic goals, and revise policies & procedures as appropriateScope and perform periodic privacy risk assessments, mitigation, and remediation, including data control design and monitoring, as well as the mitigation of privacy and security risks.
Strategically advise on the development of new services or enhancements to existing services to ensure “privacy by design” and “privacy by default” principles.
Support HIPAA risk assessment and company’s compliance obligations as a HIPAA Business Associate.
Provide support and guidance as needed when it comes to compliance with privacy laws.
Support contract negotiation and drafting for complex privacy and compliance issues.
Conduct employee training in the areas of Privacy and other compliance, and develop compliance champions throughout the organizationCoordinate with Internal Audit to conduct periodic assessments of the effectiveness and performance of company’s privacy compliance program.
Functional Knowledge, Skills, and Competencies: Experience working in or with the healthcare industry or healthcare-related products that require compliance with HIPAA; strong technical knowledge of all aspects of the HIPAA regulationExperience designing and managing privacy risk assessments.
Outstanding written communication and proofreading skills, particularly with executive-level communications.
Ability to work independently and lead experienced attorneys and multiple diverse projects.
Ability to plan, organize and prioritize a varied, heavy, and continually expanding workload.
Ability to maintain confidentiality of customers, employees and proprietary information.
Experience working with CCPA/CPRA; strong technical knowledge of all aspects of CCPA/CPRA regulationExperience supporting an organization becoming compliant with HIPAA & CCPA/CPRA and maintaining ongoing operational complianceExperience training workforces in Privacy and other compliance areasOther duties as assignedBusiness Expertise: Outstanding written and oral skills.
Superior report writing and presentation skills.
Unquestionable ethics and integrity.
Strong interpersonal skills: team player with ability to deal effectively with individuals at all levels.
Demonstrated ability to produce high-quality work in a timely fashion and provide effective guidance on legal issues to business clients.
Job Type: Full-timeBenefits:401(k)401(k) matchingDental insuranceDisability insuranceEmployee assistance programHealth insuranceHealth savings accountLife insurancePaid time offRetirement planVision insuranceSchedule:Monday to FridaySupplemental Pay:Bonus payExperience:Compliance management: 1 year (Preferred)License/Certification:Legal Certification (Preferred)Work Location:Fully RemoteWork Remotely:Yes