Director Compliance - St Vincent Regional Medical Center

DescriptionSummary: The Compliance and Risk Director is responsible for managing all requirements related to Information Management Regulatory/Compliance. This position manages all activities related to the development, communication and management of policies, controls and practices supporting IT compliance, regulatory and risk objectives. Tracks, tests, and reports on audit and assurance practices for Information Management to identify points of vulnerabilities and recommend quality measurement and improvement strategies to meet regulatory requirements. Responsibilities: Audit management and facilitation – Facilitate internal and external IT audits and certifying agency activities, insuring timely response. This includes supporting discovery and testing phases, creating compliance maps of current practices/policies to standards, and coordinating responsibility of follow through for remediation activities. Maintains monthly management level status reporting of progress. Maintain a schedule of testing for critical risk areas. Compliance/Risk management- Develop and maintain necessary guidelines, standards and procedures in support of the information security and regulatory compliance such as HIPAA, E-Discovery, Security Assurance, and JCAHO. Provide oversight and expert consultation to Associates seeking guidance on application of compliance and information security standards. Maintain a risk register with up to date research on changing regulatory requirements and insures information distributed with IM management with relevant areas of impact identified. Disaster Recovery / Business Continuity – Manages the execution of the Disaster Recovery program insuring program goals are met within approved parameters. Insures appropriate documentation is maintained and retained for appropriate time periods. Compliance and Security Controls – Manages the quality assurance processes and audits to insure appropriate access controls are in place, providing recommendations and feedback to the Security team. Vision and Strategy – Provide input into the Quality and Risk Program vision and strategy of the organization, supporting the IM strategic plan and continuous improvement plan.Program Leadership - Develops and initiates specialized education and development of materials to support Regional HIPAA Security Officers.Budget & Financial Administration - Develop and manage detailed budgets, tracking all capital and operational expenditures and regularly reporting the budgetary status of all assigned project budgets including hardware, software and support components. Project Management - Plans, prioritizes, manages and schedules multiple large, complex projects, often overseeing multiple efforts and coordinating activities of other project managers. Assigns technical, supervisory, administrative and financial resources to meet approved corporate and regional project schedules and goals. Communication – Provide effective oral and written communications to staff to facilitate understanding, ownership and accomplishment of project goals and objectives. Demonstrate strong interpersonal skills, possess good negotiating skills and promote teamwork among subordinates. Standards –Provide expert consultations and lead in the development and documentation of procedures and standards that ensure accurate evaluation of the IM Audit and Risk standards required for support of clinical, business and technical processes.Contract Negotiations – Assist in the negotiation of contracts for the acquisition of relevant program related services, including software, hardware and support services, following established processes.Reporting –Prepares quarterly risk reports with appropriate risk register, risk awareness alerts, audit indices and trends for IM Leadership review. Support - Interface with IM management to understand their business and service needs and develop processes for IM implementation to accommodate them. Teamwork – Maintain and demonstrate good teamwork on assigned projects through actions and job performance.Other – Perform other duties and special projects as assigned by the Director. Requirements: Bachelor's Degree Work Type: Full Time EEO is the law - click below for more information:  https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at (844) 257-6925. Additional Information: - Specialty: Information Technology - Location: 455 St Michaels DriveSanta Fe, New Mexico 87505 - Contact: About the Company: CHRISTUS Health is an international Catholic, faith-based, not-for-profit health system comprised of more than 600 services and facilities, including more than 60 hospitals and long-term care facilities, 350 clinics and outpatient centers, and dozens of other health ministries and ventures. Sponsored by the Sisters of Charity of the Incarnate Word in Houston and San Antonio and the Sisters of the Holy Family of Nazareth, the mission of CHRISTUS Health is to extend the healing ministry of Jesus Christ. To support our healthcare ministry, CHRISTUS Health employs approximately 45,000 Associates and has more than 15,000 physicians on staff who provide care and support for patients. CHRISTUS Health is listed among the top ten largest Catholic health systems in the United States. EXTENDING THE HEALING MINISTRY OF JESUS CHRIST We are inspired by our mission, vision and core values to deliver compassionate, high quality health care, improving the health of the communities we serve. Above all, we are committed to providing our customers and their family members with a truly unique healing experience, one that embodies our values and respects the dignity and worth of each person. Creating a health care system that is truly excellent in all areas is an ongoing effort.