Senior Manager, Healthcare Privacy and Compliance

Company Overview

EPIC Insurance Brokers & Consultants is an innovative retail insurance brokerage firm, founded in San Francisco, California in 2007 with offices and leadership across the country. EPIC Insurance Brokers & Consultants has a depth of industry expertise across key lines of insurance, including risk management, property and casualty, employee benefits, unique specialty program insurance and private client services.

Position Overview

The Senior Manager, Healthcare Privacy and Compliance will have direct responsibility for the continuous improvement, monitoring, and implementation of the EPIC Compliance program as it relates to protected healthcare data, under the direct supervision of the Executive Vice President, Head of Risk & Compliance. This position will play a vital role in ensuring that the Company's internal operations meet and exceed the compliance standards applicable to this information, including HIPAA, HITRUST, and SOC2 certifications.

Key Responsibilities

Develop, implement, and continuously improve a comprehensive compliance program that ensures appropriate divisions within EPIC meet and exceed regulatory and governance standards, including but not limited to HIPAA, HITRUST, SOC2, and Medicare standards.
Assist with the implementation of policies and procedures, monitoring, and other key compliance and privacy elements to ensure they are in compliance with appropriate regulations, standards, and client contractual agreements.
Manage auditing program, including planning, gathering evidence, identifying deficiencies, and implementing corrective actions. Advise business on appropriate certifications (e.g., SOC2, HITRUST).
Manage compliance committee for relevant business units.
Continuously monitor and assess compliance risks, ensuring that internal operations adhere to legal and regulatory requirements. Maintain a risk register, including prioritizing risks and implementing corrective actions.
Identify potential compliance risks and vulnerabilities, conducting regular risk assessments. Work with internal teams to develop and execute risk mitigation plans to address and minimize compliance issues.
Develop and oversee an incident response plan to address any compliance breaches promptly and effectively. Collaborate with relevant teams to investigate and report incidents as required by regulations.
Coordinate training programs to educate employees and contractors about Company compliance programs, best practices, and the importance of data security. Promote a culture of compliance awareness throughout the organization.
Maintain accurate and up-to-date records, reports, and documentation related to compliance activities. Prepare and submit compliance reports to senior management and regulatory authorities as necessary.

Work to establish performance measures, goals, and reporting methodologies to measure and improve effectiveness and productivity.

Coordinate with the business units to validate that appropriate business continuity planning is in alignment with compliance and regulatory requirements.

Ensure the timely and accurate completion of security risk assessments for current and prospective clients.

Qualifications

Bachelor's degree in Computer Science or related field or equivalent experience.
Relevant IAPP or HCCA credentials preferred: Certified in Healthcare Compliance (CHC), and Certified in Healthcare Privacy Compliance (CHPC), Certified information privacy professional (CIPP)
Strong knowledge of HIPAA, HITRUST, SOC2, Medicare Compliance and other relevant regulatory standards.
Strong written and verbal communication skills.
Strong analytical, problem-solving, and communication skills.
Exceptional attention to detail and a commitment to upholding the highest ethical standards.
Ability to collaborate effectively with cross-functional teams and communicate compliance requirements clearly.
Diverse security and IT background with knowledge in multiple areas including policy, IT service management, networking, infrastructure, application development and information security-related standards and initiatives.
Self-motivated; able to work with minimal supervision.

WHY JOIN US?

15th Largest Broker in US
Voted " Best Place to Work" in the Insurance Industry
Awesome Benefits: 401K matching, Generous Time Off Policy, Flexible Work Options, Medical, Dental, Vision, Pet Insurance, Cancer Insurance, Wellness Programs, Employee Award Programs (Trips!).

EPIC embraces diversity in all its various forms—whether it be diversity of thought, background, race, religion, gender, skills or experience. We are committed to fostering a work community where every colleague feels welcomed, valued, respected and heard. It is our belief that diversity drives innovation and that creating an environment where every employee feels included and empowered, helps us to deliver the best outcome to our clients. An Equal Opportunity/Affirmative Action Employer.

Tags