RemoteLeaf Logo
Log in Sign up

Head of Compliance (HIPAA) and Security

1 month, 2 weeks ago
United States
Full-time
Senior
Compliance Manager
Cybersecurity
Cybersecurity HIPAA
Apply Now
Bask Health

Bask Health

Bask Health is the compliant, accessible, and no-code platform for telehealth, providing EMR, payment processing, pharmacy fulfillment, website builder, and patient management system. It's the Shopify for E-Prescribing.

Internet Software & Services
1-10
View All Jobs 21

Description

  • Provide strategic and operational legal support on cybersecurity, data privacy, artificial intelligence, and data governance matters.
  • Develop, implement, and maintain data governance, security, privacy, and compliance frameworks and policies.
  • Serve as the Privacy Officer and primary authority on HIPAA Privacy Rule and Security Rule requirements.
  • Ensure compliance with global, federal, state, and emerging privacy laws, including GDPR and CPRA.
  • Advise executive leadership on cybersecurity risk, mitigation, data governance, and regulatory obligations.
  • Lead internal audits, risk assessments, and incident response planning.
  • Manage relationships with outside counsel, regulators, and third-party vendors on compliance matters.
  • Educate staff on data handling, privacy practices, security threats, and HIPAA obligations.
  • Monitor evolving privacy legislation and assess its impact on the organization.
  • Draft and enforce internal data security policies, procedures, and Business Associate Agreements (BAAs).
  • Represent the organization in regulatory investigations, breach notifications, remediation efforts, and related regulatory proceedings.

Requirements

  • J.D. from an accredited law school.
  • Active bar membership in New York is required.
  • 4 to 6 years of experience in health law, data privacy, or cybersecurity law.
  • Deep expertise in HIPAA/HITECH, state privacy laws, and corporate data security standards.
  • Experience advising on or litigating data breach, privacy, or regulatory enforcement matters.
  • Familiarity with NIST, SOC 2, ISO 27001, or similar security frameworks.
  • Strong understanding of emerging technologies, cloud infrastructure, AI, and their legal implications.
  • IAPP Certified Information Privacy Professional (CIPP) designation or similar is a bonus qualification.
  • Certified HIPAA Professional (CHP) or equivalent is a bonus qualification.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Figma

Corporate Counsel

Figma 1K-5K Internet Software & Services

Figma is hiring a Corporate Counsel to support its corporate, securities, and public-company legal work as the company scales, with a US-hub or remote-in-the-US work arrangement.

United States Full-time Mid Level Legal Counsel
$153k-$296k
7 hours, 1 minute ago
Mozilla

Lead Privacy Counsel, Infrastructure & Data Governance

Mozilla 251-1K Internet Software & Services

Mozilla is hiring a remote Privacy Counsel to build and run global privacy compliance and governance for its internal operations and enterprise data practices.

United States Full-time Lead Legal Counsel
$166k-$260k
7 hours, 16 minutes ago
Mozilla

Lead Privacy Counsel, Infrastructure & Data Governance

Mozilla 251-1K Internet Software & Services

Mozilla is hiring a remote Privacy Counsel to build and run global privacy compliance and governance processes for its internal operations and enterprise data practices.

Anywhere Full-time Lead Legal Counsel
7 hours, 31 minutes ago
PatSnap

AI Solutions Lead – IP Legal

PatSnap 251-1K Internet Software & Services

PatSnap is hiring an AI Solutions Lead for its IP legal and patent drafting product to help shape AI-powered workflows for patent professionals through customer engagement and product collaboration.

United Kingdom Full-time Senior Legal Counsel Product Manager
Generative AI LLM
7 hours, 46 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers