Compliance Officer

About Nayya

At Nayya, we believe there’s a better way to choose benefits. A more transparent, less confusing way for employees to control their health and financial potential. Powered by billions of data points and machine learning, our benefits experience platform delivers personalized decision support and guidance during open enrollment, new employee onboarding, qualifying life events, and in the moments that matter all year round. This is one of the most stressful and challenging situations consumers face – and we see that as an opportunity to build an innovative response that can help millions of Americans possess the control and understanding they deserve.

Position Overview: As a Compliance Officer, you will play a crucial role in ensuring that Nayya builds products and conducts business in a way that complies with relevant regulations and guidelines. You will support our growth by developing and managing compliance programs at the cross-section of insurance, healthcare, and technology industries. A deep understanding of HIPAA and privacy regulations is required. An understanding of insurance licensing regulations is desired. The Compliance Officer work report directly to the VP of Legal, and will work closely with the Head of Data Security, reporting directly to the VP of Legal. The ideal candidate will blend compliance expertise with some law firm or in-house legal experience.

Key Responsibilities

• Develop and Implement Compliance Programs: Design, implement, and manage compliance programs specifically tailored to the healthcare and insurance industries. Stay abreast of evolving regulatory requirements and industry best practices to ensure our compliance efforts remain current and effective.
• Policy Development and Review: Draft, review, and update policies and procedures related to health tech compliance, including but not limited to data privacy, security, and regulatory requirements. Ensure that policies align with industry standards and regulatory expectations.
• Risk Assessment and Mitigation: Conduct risk assessments to identify potential compliance risks and vulnerabilities. Develop strategies and controls to mitigate risks effectively, working collaboratively with internal stakeholders to implement risk management solutions.
• Training and Education: Develop training materials and conduct training sessions for employees on health tech compliance topics. Foster a culture of compliance awareness and accountability across the organization, ensuring that all employees understand their roles and responsibilities in maintaining compliance.
• Monitoring and Auditing: Establish monitoring and auditing processes to assess compliance with relevant regulations and standards. Conduct regular audits and reviews to identify areas for improvement and ensure adherence to compliance requirements.
• Regulatory Reporting: Prepare and submit regulatory reports as required by insurance and privacy regulations and authorities. Ensure timely and accurate reporting of compliance-related information, working closely with internal teams to gather and analyze relevant data.
• Incident Response: Develop and implement procedures for responding to compliance incidents, breaches, or violations. Coordinate with relevant stakeholders to investigate incidents, implement corrective actions, and mitigate any adverse impacts.
• Compliance Oversight: Provide guidance and support to internal departments on compliance matters, including in connection with product development. Serve as a subject matter expert on compliance issues, offering expertise and advice to help teams navigate complex regulatory requirements.
• Risk Assessment: Assist teams in replying to VRA (Vendor Risk Assessments) from direct customers and channel partners.
• Vendor Management: Evaluate third-party vendors for compliance with contractual and regulatory requirements and oversee ongoing vendor relationships.
  
  

Qualifications

• Bachelor's degree required; advanced degree in law, healthcare administration, or related field required. Master's degree or professional certification (e.g., Certified in Healthcare Compliance - CHC) preferred.
• 5+ years of experience in healthcare or insurance compliance or related fields.
• Deep understanding of HIPAA, HITECH and privacy laws (e.g. CCPA, GDPR) and regulations and PHI protection best practices.
• Proven ability to translate complex regulations into actionable business strategies and a track record of complementing compliance programs and initiatives.
• Some legal (law firm or in-house) experience is desirable.
• Familiarity with technology and software development processes.
• Excellent communication and interpersonal skills.
• Experience implementing compliance programs in a fast-paced, growth-stage environment.
  
  

Skills

• Detail-oriented and organized, with a commitment to accuracy and compliance.
• Strong analytical skills with the ability to assess complex situations, identify risks, and propose effective solutions.
• Ability to work independently, prioritize tasks, and manage multiple projects simultaneously.
• Strong attention to detail and organizational skills.
• Ability to thrive in a fast-paced startup environment.
• Proficiency with compliance management tools and software.
  
  

Join Our Team: If you are passionate about ensuring regulatory compliance, managing risks, and upholding ethical standards in healthcare, we invite you to join Nayya's dynamic team. Be part of our mission to transform the healthcare landscape and make a positive impact on the lives of patients and communities. Apply now to embark on an exciting journey with Nayya in the vibrant city of New York City.

The salary range for New York based candidates for this role is $140,000 - $160,000. We use a location factor to adjust this range for candidates that are located outside of geographic region of our New York office. Placement within the salary band is determined based on experience.

Why Join Nayya?

• Be an early employee of a quickly growing, VC-backed start-up - grow with us!
• Have a meaningful impact on a platform that is scaling very rapidly
• Contribute to a values-based culture with an emphasis on empowerment and autonomy
• Work in a highly collaborative, cross-functional environment
• Benefits include: Competitive pay, employer-paid healthcare, stock options
  
  

Nayya is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics