Emory Healthcare

Description

Overview

The Chief Compliance and Privacy Officer will lead and manage the Emory Healthcare Office of Compliance Programs (OCP) for all campuses and will report to the Chief Executive Officer of Emory Healthcare. OCP is designed to promote a culture that fosters ethical and compliant behavior in accordance with applicable laws and regulations.

Key Responsibilities

• Monitor external industry regulatory and privacy trends.
• Report results of the ongoing compliance and regulatory efforts of EHC.
• Provide guidance to senior management team and the Board of Directors on matters relating to privacy and regulatory compliance.
• Lead a robust and forward-thinking organization-wide compliance risk management strategy, including a comprehensive risk assessment and risk reduction initiatives.
• Provide periodic reports to the Management Compliance Committee, the Audit & Compliance Committee of the Board of Directors, and other organizational committees.
• Promote a culture of ethics and compliance with applicable laws and regulations.
• Stay apprised of emerging trends in industry standards including best practices in healthcare policy, compliance and privacy issues, organizational effectiveness, legal/government regulatory landscape.

Compliance Responsibilities

• Oversee the compliance program staff and operations, including the recruitment and training of professional staff and external consultants.
• Oversee and monitor the delivery of system-wide compliance education and training programs.
• Oversee and manage the Policy Manager.
• Monitor the implementation and periodic review of organizational policies, procedures, and practice.
• Oversee internal reporting mechanisms, including the Trust Line.
• Lead development of a risk-based auditing and monitoring annual work plan.
• Ensure the timely and effective conduct of investigations of reported compliance violations and suspected violations.
• Oversee procedures to ensure that Emory Healthcare does not contract with or employ individuals or entities who have been placed on the Office of the Inspector General (OIG) Excluded Provider List or sanctioned by payors including Medicare and Medicaid, licensing bodies or other similar agencies.

Privacy Responsibilities

• Lead response to OCR audits, as necessary.
• Maintain appropriate policies and procedures, privacy and confidentiality consent forms, authorizations, notices, etc. required to meet HIPAA and any other privacy requirements.
• Oversee periodic information privacy risk assessments and ongoing privacy monitoring.
• Provide oversight and advise stakeholders throughout the organization on privacy and security issues, regulations, and best practices.

Minimum Qualifications

• Master's or higher-level degree required.
• Minimum of 10 year's experience in healthcare privacy and compliance or demonstrated success in relevant complex multi-organizational administration.
• Minimum of 5 years of supervisory experience required.
• Experience interpreting and managing compliance with relevant regulatory requirements.
• Experience in investigating internal and external regulatory audit requests and responding accordingly, including responses to third party payors.

Prefered Skills

• Ability to interpret regulatory standards into organizational policy.
• Knowledge of fraud and abuse regulations, healthcare reimbursement, third party payer guidelines, general coding practices and other regulations.
• Knowledge and experience in information privacy laws, access, release of information, and release control technologies.
• Knowledge of human resource management functions.
• Ability and skill to influence personnel through a matrix organization as opposed to line management authority.

PHYSICAL REQUIREMENTS (MediumMax 25lbs): up to 25 lbs, 0-33% of the work day (occasionally); 11-25 lbs, 34-66% of the workday (frequently); 01-10 lbs, 67-100% of the workday (constantly); Lifting 25 lbs max; Carrying of objects up to 25 lbs; Occasional to frequent standing & walking, Occasional sitting, Close eye work (computers, typing, reading, writing), Physical demands may vary depending on assigned work area and work tasks.

ENVIRONMENTAL FACTORS: Factors affecting environment conditions may vary depending on the assigned work area and tasks. Environmental exposures include, but are not limited to: Blood-borne pathogen exposure Bio-hazardous waste Chemicals/gases/fumes/vapors Communicable diseases Electrical shock, Floor Surfaces, Hot/Cold Temperatures, Indoor/Outdoor conditions, Latex, Lighting, Patient care/handling injuries, Radiation, Shift work, Travel may be required. Use of personal protective equipment, including respirators, environmental conditions may vary depending on assigned work area and work tasks.