RemoteLeaf Logo
Log in Sign up

Head of Compliance (HIPAA) and Security

4 hours, 49 minutes ago
United States
Full-time
Senior
Compliance Manager
Cybersecurity
Cybersecurity HIPAA
Apply Now
Bask Health

Bask Health

Bask Health is the compliant, accessible, and no-code platform for telehealth, providing EMR, payment processing, pharmacy fulfillment, website builder, and patient management system. It's the Shopify for E-Prescribing.

Internet Software & Services
1-10
View All Jobs 23

Description

  • Provide strategic and operational legal support on cybersecurity, data privacy, artificial intelligence, and data governance matters.
  • Develop, implement, and maintain data governance, security, privacy, and compliance frameworks and policies.
  • Serve as the Privacy Officer and primary authority on HIPAA Privacy Rule and Security Rule requirements.
  • Ensure compliance with global, federal, state, and emerging privacy laws, including GDPR and CPRA.
  • Advise executive leadership on cybersecurity risk, mitigation, data governance, and regulatory obligations.
  • Lead internal audits, risk assessments, and incident response planning.
  • Manage relationships with outside counsel, regulators, and third-party vendors on compliance matters.
  • Educate staff on data handling, privacy practices, security threats, and HIPAA obligations.
  • Monitor evolving privacy legislation and assess its impact on the organization.
  • Draft and enforce internal data security policies, procedures, and Business Associate Agreements (BAAs).
  • Represent the organization in regulatory investigations, breach notifications, remediation efforts, and related regulatory proceedings.

Requirements

  • J.D. from an accredited law school.
  • Active bar membership in New York is required.
  • 4 to 6 years of experience in health law, data privacy, or cybersecurity law.
  • Deep expertise in HIPAA/HITECH, state privacy laws, and corporate data security standards.
  • Experience advising on or litigating data breach, privacy, or regulatory enforcement matters.
  • Familiarity with NIST, SOC 2, ISO 27001, or similar security frameworks.
  • Strong understanding of emerging technologies, cloud infrastructure, AI, and their legal implications.
  • IAPP Certified Information Privacy Professional (CIPP) designation or similar is a bonus qualification.
  • Certified HIPAA Professional (CHP) or equivalent is a bonus qualification.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Binance

Compliance Geofencing Team Lead

Binance 5K-10K Capital Markets

Binance is hiring a remote Compliance Geofencing Team Lead to manage geofencing operations within its Global Legal & Compliance function, overseeing team performance, escalation handling, and the ongoing improvement of AML and geofencing controls.

Anywhere Full-time Lead Compliance Manager
2 hours, 41 minutes ago
M

Junior Legal Associate

Marathon Talent 1-10 Human Resources

Junior Legal Associate for a fast-growing fintech in Latin America, providing cross-border legal support across Colombia, Mexico, Chile, Peru, and Brazil during a 3-month fixed-term contract.

Chile Colombia Contract Junior Legal Counsel
4 hours, 4 minutes ago
Bounteous

Senior Legal Counsel

Bounteous 1K-5K Internet Software & Services

Bounteous is hiring a Senior Legal Counsel to support its Americas business with commercial contracting, legal operations, and broader legal matters for a global digital transformation consultancy.

United States Full-time Senior Legal Counsel
$175k-$215k
Salesforce
4 hours, 19 minutes ago
dLocal

Legal Counsel - APAC

dLocal 251-1K Diversified Financial Services

dLocal is hiring a Legal Counsel in Singapore to support its APAC commercial and legal work across payment processing and broader business operations.

Singapore Full-time Senior Legal Counsel
4 hours, 19 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers