Compliance Program Manager

Human Longevity, Inc

(San Diego, California)

Full Time

Job Posting Details

About Human Longevity, Inc

Human Longevity, Inc. (HLI) is a genomics and cell therapy company focused on extending the healthy, high performance human lifespan.

Summary

Human Longevity, Inc. is looking for a Compliance Program Manager responsible for executing the corporate compliance program. Responsibilities include managing information security policy adoption and compliance including: HIPAA, policies and processes, identifying potential areas of information security compliance risk and exposure and developing corrective action plans. The essential functions of this position include administering an information security compliance program; developing and implementing policies, standards, procedures and processes for the organization; and promoting a culture committed to the protection of HLI information assets.

Responsibilities

- Assist with development, maintenance and revision of policies and procedures designed to mitigate information security risk related to federal and state privacy and security laws, regulations, and standards, particularly for ISO 27001, the Health Insurance Portability and Accountability Act (HIPAA), including the Health Information Technology for Economic and Clinical Health Act (HITECH) and Genetic Information Nondiscrimination Act (GINA).

- Monitor, and as necessary, coordinate information security compliance activities of other departments to remain abreast of the status of all compliance activities and to identify trends.

- Identify potential areas of information security compliance vulnerability and risk; develop/implement corrective action plans for resolution of problematic issues and provide guidance on how to avoid or deal with similar situations in the future.

- Collaborate with other departments to direct information security compliance issues to appropriate existing channels for investigation and resolution.

Assist with development, maintenance and revision of policies and procedures designed to mitigate information security risk related to federal and state privacy and security laws, regulations, and standards, particularly for ISO 27001, the Health Insurance Portability and Accountability Act (HIPAA), including the Health Information Technology for Economic and Clinical Health Act (HITECH) and Genetic Information Nondiscrimination Act (GINA).
Monitor, and as necessary, coordinate information security compliance activities of other departments to remain abreast of the status of all compliance activities and to identify trends.
Identify potential areas of information security compliance vulnerability and risk; develop/implement corrective action plans for resolution of problematic issues and provide guidance on how to avoid or deal with similar situations in the future.
Collaborate with other departments to direct information security compliance issues to appropriate existing channels for investigation and resolution.

Ideal Candidate

**Minimum Qualifications**

- Must have a thorough knowledge of ISO27001 and HIPAA federal and state regulations, sound knowledge of what they mean and practical strategies on how they could be implemented in a hospital and in physician clinics.

- Working knowledge of the Office of Inspector General (OIG) seven elements of an effective compliance program

- Ability to read and understand regulatory publications.

- Experience in health insurance, health care operations or legal with at least 4 of those years in a compliance and regulatory role.

- Detailed knowledge of state and federal insurance law, especially health insurance and managed care.

- Proven success in the development of policies and implementation of new work processes or process improvements.

- Experience managing remediation of complex compliance issues and legislative implementations.

**Preferred Qualifications**

- Bachelor’s Degree in technology or other related field from an accredited university or college; or equivalent work experience in Information Security and Business/Risk Management

- Certified Information Systems Security Professional (CISSP)

- Certified Information Systems Auditor (CISA)

- Certified Information Privacy Professional (CIPP)

Minimum Qualifications

Must have a thorough knowledge of ISO27001 and HIPAA federal and state regulations, sound knowledge of what they mean and practical strategies on how they could be implemented in a hospital and in physician clinics.
Working knowledge of the Office of Inspector General (OIG) seven elements of an effective compliance program
Ability to read and understand regulatory publications.
Experience in health insurance, health care operations or legal with at least 4 of those years in a compliance and regulatory role.
Detailed knowledge of state and federal insurance law, especially health insurance and managed care.
Proven success in the development of policies and implementation of new work processes or process improvements.
Experience managing remediation of complex compliance issues and legislative implementations.

Preferred Qualifications

Bachelor’s Degree in technology or other related field from an accredited university or college; or equivalent work experience in Information Security and Business/Risk Management
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Certified Information Privacy Professional (CIPP)