Director, Compliance

Columbus, OH

Full Time

Manager/Supervisor

Director, Compliance
Full Time
Columbus, OH

AndHealth is on a mission to radically improve access and outcomes for the most challenging chronic health conditions with the goal of making world-class specialty care accessible and affordable to all. We partner with health systems, community health centers, plans, and employers to remove barriers to care to ensure all people have access to the care they deserve.

As a Director of Compliance, you will play a key role in supporting our compliance and privacy efforts across AndHealth. This position will ensure AndHealth operates in alignment with all applicable laws, regulations, and internal policies. This role will work closely with senior leadership and other departments to foster a culture of integrity and compliance throughout the organization.

What you'll do in the role:

Compliance:

Manage a comprehensive corporate compliance program, including policies, training, auditing, monitoring, investigations, and reporting functions.
Support the company in maintaining compliance with applicable local, state and federal regulatory requirements relevant to healthcare by collaborating with Legal and internal stakeholders.
Monitor regulatory and policy changes and assess their impact on the business. When applicable, work with leadership and Legal to enhance policies, standard operating procedures, and systems to align with changes.

Create, review, and update internal compliance policies and procedures.
Conduct periodic internal audits and compliance risk assessments to identify and mitigate potential risks. Work with departments to implement, when necessary, corrective actions and monitor effectiveness to prevent future occurrences.
In collaboration with Legal, conduct annual reviews and updates of business terms, including terms of use, privacy policies, and other published terms for accuracy and compliance.
Collaborate with Information Technology to support periodic security risk assessments and to maintain company’s incident response process, including investigations, final reporting, and leadership readouts.
Oversee training and education programs related to compliance and ethics for all employees and contractors.
Participate in the Specialty Pharmacy Services Quality Management Committee.
Act as the designated compliance officer exclusively for the Specialty Pharmacy Services team.
Act as primary liaison with community health center partners for compliance.
Develop and maintain the compliance document infrastructure, ensuring accessibility and annual updates relevant to policies and standard operating procedures.
Build and nurture positive relationships with other employees across the company and with outside regulators and serve as the compliance and privacy ambassador for the company.

Privacy Oversight

Serve as the primary in-house HIPAA privacy expert, ensuring safety and integrity of protected health information (PHI) across all platforms, services, and operations.
Develop, implement, and manage privacy-related policies, training programs, and HIPAA awareness initiatives, including company-wide annual training and attestation processes.
Lead and document privacy incident and breach investigations, including coordinating with Legal, regulatory reporting, executive communication, and oversight of incident response efforts.
Oversee periodic internal and vendor privacy audits, ensuring optimal privacy practices and industry best practices.
Collaborate cross-functionally with Legal, Product, Clinical, and other teams to perform privacy risk assessments, review and maintain consent forms (including patient testimonials), and address privacy risks in business processes and technology
Contribute to updates and notices of privacy practices and review use of patient testimonials and patient data for compliance with consent and privacy expectations.
Align privacy policies and risk management processes with broader security frameworks (e.g., SOC 2), in partnership with the Director of Information Technology.
Contribute to the vendor procurement process by reviewing vendor documentation and checklist from a privacy and compliance perspective.

Education & Licensure Requirements:

Bachelor’s degree in law, Business Administration, Finance, or a related field.
A master’s degree or professional certification (e.g., Certified Compliance & Ethics Professional – CCEP) is a plus.

Other Skills or Qualifications:

5+ years of experience in compliance, legal, or regulatory roles (healthcare, provider practices, or healthcare technology environments are a plus).
Familiarity with HIPAA, HITECH, Anti-Kickback Statutes, and other relevant healthcare regulations.
Excellent communication and interpersonal skills, with the ability to interact with all levels of staff and management.
Strong analytical and problem-solving abilities.
Strong attention to detail, organizational skills, and the ability to manage multiple tasks in a fast-paced environment.
Proficiency in compliance-related software and tools.

Here’s what we’d like to offer you:

Equal investment and support for our people and patients.
A fun and ambitious start-up environment with a culture that takes on important things, takes risks, and learns quickly.
The ability to demonstrate creativity, innovation, and conscientiousness, and find joy in working together.
A team of highly skilled, incredibly kind, and welcoming employees, every one of whom has something unique to offer.
We know that the overall success of our business is a collaborative effort, and we strive to provide ongoing opportunities for our employees to learn and grow, both personally and professionally.
Full-time employees are eligible to participate in our benefits package which includes Medical, Dental, Vision Insurance, Paid time off, Short- and Long-Term Disability, and more.

Work Environment:
The work environment characteristics described here are representative of those encountered while performing the essential function of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

The noise level in the work environment is usually quiet.

Physical Demands:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to person the essential functions.

While performing the duties of this job, the employee is regularly required to sit, stand, talk, visualize, or hear.

We are an equal opportunity and affirmative action employer. We embrace diversity and are committed to creating an inclusive environment for all employees. Applicants will be considered for employment without regard to race, religion, gender, gender identity, sexual orientation, national origin, age, disability, or veteran status.

Apply for this position

Required*

First Name*

Last Name*

Email Address*

Phone*

Address

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

How did you hear about AndHealth?*

If you were referred by someone in your network, please provide the first and last name of the person that referred you. If you were not referred, you may skip or type 'N/A'.

Why AndHealth?

Are you at least 18 years of age?*

Are you able to provide proof of your legal eligibility to work in the USA for any employer?*

Will you now or at any point in the future require sponsorship (e.g. H-1B, F1 visa status, etc.) in order for AndHealth to employ you directly?*

Are you subject to any non-compete/non-solicit agreements with your current or previous employer(s) that may prevent or restrict your employment with AndHealth?*

Are you comfortable working primarily on-site (if required for this role)?*

If this role is listed as onsite, are you willing to relocate to the location of the worksite?

How long is your required notice period with your current employer?*

Are you willing to undergo a pre-employment screening which may include: background check, drug screening, employment verification, education verification, reference checks, occupational health screenings, etc. based on the role(s) applied to, if/when a contingent offer is extended?*

BY CLICKING 'SUBMIT APPLICATION' BELOW, YOU UNDERSTAND AND AGREE TO THE FOLLOWING:

+ I certify that all the information I have provided in support of my application for employment with AndHealth is accurate and truthful, to my knowledge.
+ I authorize the investigation of all statements contained in this application for employment as may be necessary in arriving at an employment decision.
+ I consent to AndHealth recording interviews and sharing those recordings with limited internal and third-party stakeholders involved in the hiring decision.
+ In the event of employment, I understand that false or misleading information given in my application or interview(s) may result in discharge, for which AndHealth will not be held responsible.
+ After thorough review of the job description(s) for the position(s) to which I am applying, I certify that I am able to satisfactorily perform the essential duties of the position(s) with or without reasonable accommodation(s).
+ I agree to AndHealth's website privacy policy as it relates to the use of data in support of an application for employment.* I understand and agree

Human Check*

Submit Application

We’re Hiring

Find your next role at AndHealth.

Director, Compliance

Apply for this position