openashbyhqnotation
Senior Director Compliance and Privacy
Stellar Health
LocationRemote
WorkplaceRemote
EmploymentFullTime
Posted2026-05-27T19:55:04.922+00:00
Last observed2026-06-13 05:23:47.166566
Job idnotation-stellar-health:ashbyhq:2e6284f0-03f9-4498-b88e-5ccabcea2cbb
About Stellar Health: Historically, US Healthcare has relied on a fee-for-service reimbursement system where providers are paid based on the quantity of patient visits and procedures, rather than the quality of health outcomes. At Stellar Health, we help primary care providers put patient health first. Our platform - a mix of technology, people, and analytics - supports providers at the point of care, delivering real-time patient information, activating practice staff, and empowering providers and care teams with incentives that reward the work they are already doing to keep patients healthy. Using the Stellar App, our web-based, point-of-care tool; practices receive a simple checklist of recommended actions that support the best quality care. Providers and care teams are then paid monthly for each action they complete, and Payors save money in reduced healthcare costs along the way. Stellar is a US-based Health-tech backed by Top VCs (General Atlantic, Point72, & Primary Venture Partners) with an established product & proven operating model. We’ve shown that we make a real difference for physician practices and their patients. About the position: Reporting to the Chief Compliance Officer, the Senior Director of Compliance and Privacy is responsible for the end-to-end management of the compliance and privacy program across all Stellar Health entities, including our SaaS business and our two ACOs. This is a senior leadership role with direct oversight of the compliance function's daily operations, regulatory strategy, and external-facing interactions with health plan compliance teams, outside counsel, and government regulators. The Senior Director serves as the CCO's operational counterpart and backup, with sufficient authority and judgment to run the compliance program independently. This person will manage a compliance and privacy analyst, chair internal compliance governance bodies, and own the pre-contract compliance review process that supports Stellar's new business pipeline. This role is critical given the current federal enforcement environment around risk adjustment, managed care, and Medicare Advantage, and requires someone who can operate with minimal oversight across multiple entities with distinct payor relationships and regulatory obligations. How you'll make an impact: - Implement, maintain, and monitor all requirements established in the Stellar Health compliance plan, applicable laws and regulations, and customer contracts across all four entities - Lead pre-contract compliance reviews for new payor and provider agreements, enabling Stellar's revenue growth without creating regulatory or process bottlenecks - Own the compliance response process for payor compliance audits, HIPAA OCR inquiries, state AG investigations, and any DOJ/OIG enforcement activity, including early-stage triage, document production, and government interface - Execute the annual CRISP risk assessment process and develop annual work plans and program evaluations, calibrating the depth of compliance controls to the actual risk profile rather than overengineering processes that create unnecessary friction - Maintain an inventory of all applicable regulations and contractual compliance obligations across AKS, Stark Law, HIPAA, CMPL, and CMS program requirements, in partnership with other CRISP team members - Establish and monitor effective communication channels that promote a speak-up culture, including disseminating information and training, and receiving and responding to questions and concerns through anonymous reporting channels - Oversee thorough investigations and mitigation activities, including practices to prevent and detect retaliation - Manage compliance and privacy documentation including policies, procedures, plans, and standards across all four entities, ensuring consistency where appropriate and entity-specific customization where required - Build and maintain compliance monitoring strategies to detect anomalous user activity i
This page is generated from the committed OpenOpps static snapshot. Use the source posting or apply link for the employer's current canonical posting state.