Compliance Manager

External Description

Job Title: Compliance Manager, Healthcare Contracts

Department: Finance / Accounting – Contract Management

Dual Report To: Senior Vice President, Managing Director dotted line to Chief Financial Officer

Travel: 10%

Location: Austin

About the role:

GSD&M is seeking a Compliance Manager who will partner with local and Corporate stakeholders to perform ongoing complex risk analyses toensure systems and technologies satisfy Information Assurance, Cybersecurity, Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), Health Information Technology For Economic and Clinical Health (“HITECH”) Act and other federal and state regulatory requirements; and ensure compliance with other healthcare client related contractual obligations.

We are looking to hire an experienced professional with a general understanding of Finance, Accounting, Procurement and Advertising Media (digital platforms), to ensure Agency compliance to relevant healthcare Business Associate contractual obligations and respective federal and state regulatory requirements. This role is the main point of contact between internal agency stakeholders, and corporate finance/accounting and legal teams.

This role will support the implementation of localized policies and procedures to ensure compliance with client contractual obligations related to assigned healthcare clients, ensuring that adequate documentation and evidence are maintained to successfully meet external, federal, or state governmental audit needs. This role will ensure that agency employees and subcontractors receive documented ongoing training on the handling and use of Protected Health Information (“PHI”) Electronic Protected Health Information (“ePHI”) as required by federal and state laws.

Job responsibilities include:

• Utilize strong leadership skills to align stakeholders across the various local and corporate departments to ensure compliance with assigned healthcare industry client contract(s), business associate obligations –as applicable, and regulatory compliance.
• Train team members to increase department knowledge and understanding of contractual requirements, PHI awareness.
• Ongoing management of all related client vendor activities, which includes but not limited to vetting, facilitate risk assessment review process with the Corporate IT teams, facilitate master services agreement and scope of work onboarding process with Corporate Legal Teams.
• Conduct internal compliance risk assessments, testing and monitoring in accordance with client contractual and regulatory expectations. Review reports and available risk indications to identify, propose and implement corrective action. Continuous implementation of system improvements.
• Centralize oversight of the agency’s administration, investigation, and enforcement of policy and procedures regarding Privacy and handling of PHI or ePHI data as appropriate. Establish internal reporting process to address security concerns as needed.
• Prepare appropriate documentation and respond to compliance questions internally and externally.
• Continuous update of regulatory requirements and developments on related matters.
• Partnership with the People department, Account Leadership and Project Management teams to ensure compliance regarding staff related contractual requirements.
• Monitor compliance with HUB subcontracting plan requirements.
• Monitor media purchase agreements, estimates of work, third party agreements and related vendor invoices, travel charges, and invoice payment to ensure compliance with contractual requirements.
• Ongoing documentation of processes, workflows, and system diagrams related to delivery of the client scope of services.
• Facilitate ongoing internal, external, and third-party related assessments and/or audit. Work with respective stakeholders to address recommendations or findings.
• Ongoing collaboration with Corporate IT organization to address systems security related contractual requirements.
• Facilitates annual review of the agency’s business continuity plan.
• Provides after hours or weekend support, when needed.
• Ad-hoc related special projects as needed.
  
  

Requirements

Job Requirements:

• 4-year degree from an accredited university in Healthcare Administration, Business Administration, Finance or Accounting.
• 5+ years of professional experience in audit or compliance.
• 3+ years of experience working for a Texas based “Covered Entity” or healthcare related experience in compliance, audit, or procurement related role.
• 2+ years’ experience in advertising and/or strong understanding of advertising media – all domains—experience a plus.
• Experience with auditing and enforcing government or federal requirements.
• Demonstrable experience with HIPAA, HITECH, Business Associate, including managing subcontractors, PHI, ePHI, Privacy Rule. HUB Subcontracting Plan experience a plus.
• Demonstrable experience overseeing internal, external, federal, and state regulatory audits.
• Experience reading and understanding contract documents, scope of work, and interacting with enterprise legal and IT teams.
• Experience in managing new and ongoing vendor onboarding legal documents (MSA and other), cybersecurity and IT risk assessment.
• Experience establishing ongoing staff training and monitoring using the company’s Learning Management System portal.
• Experience interacting with Human Resources to ensure that staff related contractual requirements have been met.
  
  

We look for a candidate that is:

• Has excellent customer skills, willing to work with users on-demand on ad-hoc requests.
• Is highly organized with good follow-up skills.
• Is willing and able to work in a fast-paced environment to achieve results with minimal supervision.
• Is personable and professional. Genuinely enjoys helping others and keeps sensitive information confidential.
• Has excellent time management and detail-oriented organizational skills.
• Can communicate effectively at all levels of the organization, including Sr. Executive team members.