Compliance

• Develop and direct a best-in-class, enterprise-wide GRC program, ensuring it directly supports the company's growth, customer commitments, and security posture.
• Lead, mentor, and manage a team of 8 GRC Analysts, fostering a high-performance, growth-oriented culture centered on continuous improvement and skill development.
• Direct the Compliance Engineering function to maximize efficiency through tooling, automation, and system integrations (e.g., GRC platforms, workflow engines, identity systems).
• Identify and execute optimization opportunities to significantly reduce audit time, effort, and cost by leveraging technology to automate evidence collection and control monitoring.
• Oversee and direct the organization’s risk management strategy, proactively securing sensitive data and information systems against evolving threats.
• Serve as the security subject matter expert for internal stakeholders, supporting customer inquiries, RFI/RFP responses, and contract reviews.
• Collaborate strategically with IT, Product Security, Engineering and Legal/Privacy to embed controls early and ensure security is a competitive differentiator.
• Define and manage all external and internal audit engagements, ensuring organizational readiness and successful, timely outcomes across all regulatory mandates.
• Direct the TPRM program, overseeing vendor, supply chain, and fourth-party risk assessments and due diligence efforts.
• Drive policy creation, expansion, and adoption, establishing clear, actionable standards and controls across the organization.

Director of Governance, Risk, and Compliance – GRC

Regional Compliance Officer

Senior Manager, Clinical Services – Regulatory

Senior Director, Compliance & Ethics – PRISM, Multi-Specialty MSOs

Executive Director, Regulatory Affairs

Director, Regulatory Reporting