EverHealth - Senior Director of Compliance (Remote, US)

EverCommerce [Nasdaq: EVCM] is a leading service commerce platform, providing vertically tailored, integrated SaaS solutions that help more than 600,000 global service-based businesses accelerate growth, streamline operations, and increase retention. Our modern digital and mobile applications create predictable, informed, and convenient experiences between customers and their service professionals. Specializing in Home & Field Services, Health Services, and Fitness & Wellness industries, EverCommerce solutions include end-to-end business management software, embedded payment acceptance, marketing technology, and customer engagement applications.

We are building an extraordinary company and looking for talented, energetic, and motivated people to join our team. You can learn more about our Company, Culture and Values here: https://www.evercommerce.com/about-us/careers/

We are looking for a Sr. Director of Compliance to focus on our EverHealth division. EverHealth consists of SaaS products, including: DrChrono, Updox, EMHware, Good Therapy, AllMeds, iSalus, CollaborateMD, EverHealth, Therapy Partner and MDTech. EverHealth provides modern end-to-end solutions for healthcare providers. Our open, connected ecosystem of solutions and services helps providers engage patients, increase revenue, improve business efficiency, and remain market competitive. We serve 72,000 healthcare practices and counting.

As the Head of Compliance, you are highly analytical, with a strong background in healthcare compliance as it relates to the healthcare technology industry. You love looking for potential problems, and building processes and plans to ensure that no issues are found in the audit process. In this role, you will own the strategy and execution all EverHealth compliance and certification requirements.

Key Responsibilities:

• Develop and oversee the execution of the strategy, implementation and optimization of compliance and regulatory standards.
• Plays a key role in setting the direction for the EverHealth’s compliance posture, managing major initiatives, and working with executive leadership to ensure that system solutions are aligned with the company’s strategic goals.
• Manage the day-to-day compliance program for EverHealth’s electronic health record, practice management, revenue cycle management, unified communications, and document management solutions and care management service offerings to mitigate risk under the AKS, FCA, Cures Act, HIPAA, ONC + Direct Trust certification requirements, and information blocking rules. 
• Own and advance the delivery of the EverHealth compliance and accreditation programs and roadmap.
• Develops and implements, in partnership with operational leadership and legal counsel, practical compliance education for employees, written operational compliance manuals and standard operating procedures, and monitoring/auditing activities.
• Serve as primary point-of-contact with accrediting bodies.
• Own internal reporting as it relates to compliance and certification, including presenting to senior executives.
• Educate stakeholders about compliance and certification-related business changes.
• Proactively identify and quickly analyze / communicate risks or regulatory changes to leadership and to the broader organization.
• Maintain and utilize deep industry knowledge to drive decision-making to safeguard EverHealth and protect revenue.
• Serve as central driver / owner for incident management requests related to regulatory, compliance, legal or other compliance-related concerns.
• Coach, mentor, and drive decision making for the compliance team.

Additional Compliance Responsibilities Include:

• Monitor and analyze regulations/standards that apply to EverHealth.
• Define and coordinate compliance related development projects and procedural changes. 
• Coordinate privacy & security incident management in partnership with the Legal department and Security Operations. 
• Conduct annual ONC Real World Testing with customers (submit plan, test, submit results). 
• Prepare executive reports for internal risk assessments. 
• Maintain library of compliance related implementation guides, specifications, & regulations.
• Conduct security assessments with sub-contractors. 
• Subject matter expert on compliance requirements in partnership with the Legal department. 

Additional Certification Responsibilities Include:

• Own and manage relevant privacy & security accreditations. 
• Own and manage the registration authority accreditations. 
• Own and manage the certificate authority accreditations. 
• Own and manage the health information service provider (HISP) accreditations. 
• Monitor federal regulations issued by ONC and CMS related to health IT products. 
• Manage the ONC Health IT certifications. 
• Manage EverHealth participation in the Trusted Exchange Framework (TEFCA). 
• Participate in DirectTrust workgroups on certificate policy, security & trust, and directory. 
• Maintain key policies in compliance with DirectTrust. 
• Manage development projects related to DirectTrust compliance (identity verification, certificate management, HISP operations).
• Conduct testing sessions with DirectTrust and member HISPs. 
• Track various activities for accreditation/audit purposes. 

Skills and Experience needed for success in this role:

• Bachelor’s degree in business administration, healthcare administration, healthcare information management or related field required, master’s degree preferred.
• 7+ years of experience in Healthcare Compliance, Management, or Operations.
• Extensive experience and knowledge in healthcare compliance and certification, including HIPAA, 42 CFR Part 2, CMS, CCM, ONC, MIPS, TEFCA, Anti-kickback/FCA, EHNAC, DirectTrust, State privacy and fraud and abuse laws, Canada PIPEDA, etc.
• Expertise, strategic vision, and exceptional leadership skills to ensure that compliance and regulatory requirements are effectively integrated into the organization’s products and operations.
• In-depth research skills and the ability to lead multiple projects and workstreams simultaneously.
• Experience initiating, managing, and leading multiple concurrent cross-functional compliance initiatives and the ability to drive cross-functional decision-making and coordinated action.
• Self-starter with the ability to analyze and interpret financial and operational data, identify gaps or opportunities, prepare business reports, projections, and present solutions or recommendations.
• Strong communication and influencing skills and the ability to interface effectively with multiple levels of company employees, ranging from senior executives to other functional employees.
• Intellectually robust and agile with the ability to make quick decisions and delivery quick results.
• Able to adapt to rapid changes in the work environment, manage competing demands and able to deal with frequent change, delays or unexpected events.
• Excellent attention to detail and willingness to pitch in, when necessary.
• CHC, CHPC, CHC-F or similar healthcare compliance certifications, a plus.

Where: Remote, US
The EverCommerce team is distributed globally, with teams in the U.S., Canada, the U.K., Jordan, New Zealand, and Australia. With a widely distributed team, we are used to working remotely across different time zones. This role can be based anywhere in the United States – if you’re close to one of our offices, we can set you up in-office or you can work 100% remotely. Please note that you must be eligible to work without sponsorship to qualify for this position, and this role may require travel to our Corporate Headquarters in Denver, Colorado, or to other office locations around North America.

Benefits and Perks:

• Flexibility to work where/how you want within your country of employment – in-office, remote, or hybrid
• Continued investment in your professional development
• Robust health and wellness benefits, including an annual wellness stipend
• 401k with up to a 4% match and immediate vesting
• Flexible and generous (FTO) time-off
• Employee Stock Purchase Program

Compensation: The target base compensation for this position is $150,000 to $175,000 USD per year in most US locations. Final offer amounts are determined by multiple factors including location, local market variances, and candidate experience and expertise, and may vary from the amounts listed above.