Director, Corporate Compliance & Privacy/Ethics

Hi, we're Oscar. We're hiring a Director, Corporate Compliance & Privacy/Ethics to join our Corporate Compliance team.

Oscar is the first health insurance company built around a full stack technology platform and a focus on serving our members. We started Oscar in 2012 to create the kind of health insurance company we would want for ourselves—one that behaves like a doctor in the family.

About the role

The Director, Corporate Compliance & Privacy/Ethics designs and implements a compliance program that focuses on governance, ethics, compliance, and HIPAA. You will lead all compliance efforts for Oscar’s licensed entities delivering Qualified Health Plans (QHPs) in the individual and small group markets. You will use as a foundation for a best in class compliance program the seven elements of a compliance program as published by the Office of the Inspector General (OIG). You will oversee Oscar’s privacy program and lead the privacy team (including the privacy officer) and the implementation and maintenance of the privacy program. The Director also oversees the compliance governance processes ensuring appropriate board and management reporting, including compliance metrics development and monitoring. You will develop, implements, and maintain Oscar’s records management program. You will lead, develops and implement the compliance training and education program.

You will report to the VP of Compliance.

Work Location:

Oscar is a blended work culture where everyone, regardless of work type or location, feels connected to their teammates, our culture and our mission.

If you live within commutable distance to our New York City office (in Hudson Square), our Tempe office (off the 101 at University Dr), or our Los Angeles office (in Marina Del Rey), you will be expected to come into the office at least two days each week. Otherwise, this is a remote / work-from-home role.

You must reside in one of the following states: Alabama, Arizona, California, Colorado, Connecticut, Florida, Georgia, Illinois, Iowa, Kansas, Kentucky, Maine, Maryland, Massachusetts, Michigan, Minnesota, Missouri, Nevada, New Hampshire, New Jersey, New Mexico, New York, North Carolina, Ohio, Oregon, Pennsylvania, Rhode Island, South Carolina, Tennessee, Texas, Utah, Vermont, Virginia, Washington, or Washington, D.C. Note, this list of states is subject to change. #LI-Remote

Pay Transparency:

The base pay for this role in the states of California, Connecticut, New Jersey, New York, and Washington is: $158,400 - $207,900 per year.  The base pay for this role in all other locations is: $142,560 - 187,110 per year. You are also eligible for employee benefits, participation in Oscar's unlimited vacation program, company equity grants and annual performance bonuses.

Responsibilities

• Lead a Compliance team in performing (and evaluating and redesigning and setting a goal and vision for) Compliance functions – including HIPAA, governance, ethics, training & education. Deploy these tasks to support Oscar’s technology as it services our clients and strategic partners.
• Provide advisory, investigatory, and remedial support services – partnering with the Legal Department – to Oscar’s teams.
• Work with others in the Compliance Department, and with the other parts of Oscar’s Risk and Controls function, to manage regulatory risk sustainably but with a focus on growth and progress.
• Structure and implement compliance analytics processes, helping Oscar’s corporate boards fulfill their commercial-side compliance and delegate oversight responsibilities.
• Create productive, longer-term changes that lead Oscar’s compliance activities to exceed industry standards for insurers, tech innovators, and public companies.
• Grow strategy to exceed industry standards for insurers, tech innovators and public companies 
• Lead the Corporate Compliance and Privacy teams including performance management and career development. 
• Compliance with all applicable laws and regulations
• Other duties as assigned

Qualifications

• 10+ years’ experience in a healthcare compliance setting, including managerial experience
• 10+ years’ experience with HIPAA Privacy and OCR expectations for Privacy Programs
• 5+ Experience applying state and federal health insurance statutes, regulations, marketplace, and MA requirements to meet reporting and audit obligations
• 5+ Experience preparing and delivering reports to boards of directors
• 5+ Experience with OIG expectations for compliance programs

Bonus Points

• California DMHC experience
• Development, understanding and interpretation of compliance metrics/analytics
• HIPAA Security experience
• Experience in a start-up and/or health tech environment
• Experience preparing and delivering reports destined for a public company board

This is an authentic Oscar Health job opportunity. Learn more about how you can safeguard yourself from recruitment fraud here. 

At Oscar, being an Equal Opportunity Employer means more than upholding discrimination-free hiring practices. It means that we cultivate an environment where people can be their most authentic selves and find both belonging and support. We're on a mission to change health care -- an experience made whole by our unique backgrounds and perspectives.

Pay Transparency:  Final offer amounts, within the base pay set forth above, are determined by factors including your relevant skills, education, and experience. Full-time employees are eligible for benefits including: medical, dental, and vision benefits, 11 paid holidays, paid sick time, paid parental leave, 401(k) plan participation, life and disability insurance, and paid wellness time and reimbursements.

Reasonable Accommodation: Oscar applicants are considered solely based on their qualifications, without regard to applicant’s disability or need for accommodation. Any Oscar applicant who requires reasonable accommodations during the application process should contact the Oscar Benefits Team (accommodations@hioscar.com) to make the need for an accommodation known.

California Residents: For information about our collection, use, and disclosure of applicants’ personal information as well as applicants’ rights over their personal information, please see our Notice to Job Applicants.