| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
EMAIL AVAILABLE Street Address PHONE NUMBER AVAILABLECOMPLIANCE MANAGER AND PRIVACY OFFICER EXECUTIVE SUMMARY14 years in healthcare management with Compliance, Ethics, Privacy, and Quality Management in a highly regulated industry. Skilled in maintaining the integrity of Enterprise and Business Unit Compliance and Privacy operations and ensuring regulatory compliance with technology and system applications.Developed sustainable compliance and privacy frameworks in accordance with Federal Regulations with proven success to evolve with rapid expansion and growth.Designed and managed the Compliance and Ethics Program and the HIPAA Privacy Program with documented policies, procedures, training and education, and internal audit plans.Established Risk Assessment frameworks to identify areas of high-risk and executed the internal audit calendar focusing on high-risk areas.Established anonymous reporting avenue for compliance, ethics, and privacy concerns. Managed investigation process from intake of reports through findings and resolutions. Developed Preventive and Corrective Action Plans to address potential non-compliant activity.Built a culture of compliance and initiated a strong compliance presence throughout the organization, focusing on areas of high-risk.Cross collaboration across all areas of the organization to provide compliance guidance and interpret recent updates to laws, rules, and regulations.EMPLOYMENT & EXPERIENCESenior Privacy Specialist June 2022 August 2024McKesson Las Colinas, TXAs the Senior Privacy Specialist, responsibilities included development and implementation of privacy policies and procedures, conducting privacy impact assessments and business process assessments, and ensuring compliance with relevant laws and regulations. I also provided guidance on data protection and privacy best practices to ensure the organizations practices aligned with legal requirements.Serve as a point of contact for Business Units on behalf of McKesson Enterprise to ensure compliance with company privacy policies and local, state and federal HIPAA privacy laws, rules and regulations.Distribute Business Process Assessments (OneTrust) to appropriate Business Units for documentation of current processes which include utilization of new and revised technology systems or applications.Distribute, Review and Approve Privacy Impact Assessments and assess exposed risks.Collaborate with Business Unit Privacy and Security Officers to support privacy functions as they relate to Rules and Regulations.Project Management: manage projects to ensure compliance with new laws or regulations and monitor progress, document milestones and challenges, and develop timelines for completion.Compliance & Privacy Officer May 2021 June 2022Greystone Laboratories Irving, TXCompliance and Privacy Officer for start-up laboratory. Responsibilities included ensuring the organizations policies and procedures complied with legal and ethical standards. Oversaw compliance and privacy measures and data protection initiatives to ensure the organization maintained confidentiality and integrity of sensitive information. Member of the Executive Leadership Committee to ensure compliance was integrated into all aspects of the organization and business strategies.Designed a risk-based compliance framework around OIGs Guidelines for the elements of an effective Compliance Program.Developed frameworks & managed the Compliance & HIPAA Privacy Programs including the Corporate Code of Conduct to ensure business is conducted in accordance with Federal, state, & local laws, rules, and regulations.Established the Executive Compliance Committee to report compliance updates, concerns, new developments, and solicit feedback regarding the Compliance, Ethics and HIPAA Privacy Programs.Investigated reports or suspicions of non-compliance & maintained documentation from intake of report through findings & resolutions.Maintained documentation of compliance activities, such as complaints or concerns, investigation outcomes, and risk analysis.Liaised with third party vendors, clients/representatives, regulatory authorities, accreditation organizations, and third-party audits.Remained informed of industry changes, trends, and best practices to assess potential impact on organizational processes.Executed the duties of the Privacy Officer including risk assessments for compliance with HIPAAs Privacy and Security Rules.Coordinated annual third-party compliance program audits & report findings to the Board of Directors Compliance Oversight Committee.Developed and distributed Compliance & HIPAA Privacy Training and Education.Reported violations of compliance or regulatory standards to duly authorized enforcement agencies as appropriate or required.Managed the internal reporting systems such as corporate hotlines and incident management reporting.Reviewed Marketing content and provided approval/guidance prior to publishing and distribution.Compliance, Ethics and Privacy Officer, Clinical Quality Director December 2011 April 2021HealthTrackRx Denton, TXCompliance, Ethics and Privacy Officer and Quality Management Director for startup laboratory in 2011 which experienced fast growth to employing over 2k employees. As the Compliance, Ethics and Privacy Officer and Quality Management Director, I was responsible for ensuring that the organizations policies and procedures aligned with legal and ethical standards. Developed frameworks for Compliance, Privacy and Quality Management Programs to support sustainability through rapid expansion and growth. Oversaw the implementation of privacy protection measures, compliance audits, and developed training for employees on regulations with high-risk areas. Additionally, I managed a team of Compliance, Privacy, and Credentialing professionals and encouraged professional development and supporting a culture of compliance throughout the organization.Compliance and Ethics Framework: Developed, implemented and managed a risk-based compliance framework in accordance with OIGs Elements of an Effective Compliance ProgramServant leadership and management of compliance and privacy professionalsHotline, Reporting, Investigations, Non-Retaliation, and Corrective Actions: Established anonymous reporting channel for compliance and privacy concerns. Managed the investigations process from intake of reports through findings and resolutions. Implemented and monitored corrective action plans.Culture of Compliance: Established and promoted a culture of compliance through a strong compliance presence and buy-in from leadership.Internal Audit and Monitoring: Established annual work plans and internal audit calendars for areas of high-risk. Conducted internal audits in areas of high-risk. Worked with external auditors to ensure timely and accurate responses.Risk Assessment and Risk Mitigation: Established the Risk Assessment framework to identify high-risk areas and implemented internal controls for mitigation.Documentation: Draft, review and amend Business Associate Agreements and other contracts/legal documentation in conjunction with general counsel. Managed the document control system for internal policies and procedures. Developed and managed the Medical Records Request process to mitigate risk of failure to comply and reviewed complex requests.Training and Education: Developed and distributed Compliance, Ethics, & HIPAA Privacy Training and Education.Quality Management: Developed framework for the Clinical Quality Management Program and managed tracking of metrics according to the College of American Pathologists (CAP), COLA, and CMS requirements. Initiated and monitored correction action plans and resolution of findings from external audits/inspections. Conducted internal inspections, managed discrepancies, and worked with external project managers to mitigate further discrepancies and streamlined an efficient workflow with minimal error rates.Established the Executive Compliance Committee to report compliance updates, concerns, new developments, and solicit feedback regarding the Compliance, Ethics and HIPAA Privacy Programs.Remained informed of industry changes, trends, and best practices to assess potential impact on organizational processes.Coordinated annual third-party compliance program audits & report findings to the Board of Directors Compliance Oversight Committee.Reported violations of compliance or regulatory standards to duly authorized enforcement agencies as appropriate or required.EDUCATION & CERTIFICATIONSPrivacy and Security: Updates from OCR, Risk Assessments, and Internal Controls 2019Internal Auditing and Monitoring Fundamentals 2019Healthcare Compliance Academy (HCCA) 2016Texas Womans University Denton, TXBachelor of Science in Biology 2009 |
