Director, Corporate Counsel And Privacy Officer

Wellpath Nashville , TN 37201

Posted 2 weeks ago

Why Wellpath

Here at Wellpath, everything that we do is about taking care of people - our patients, our staff and our partners. We are committed to making a difference by providing hope and healing to vulnerable patients in challenging clinical environments. Our talented, compassionate team thrives in an autonomous environment, is empowered and supported by education, training and the resources to practice healthcare the way it is meant to be and strives to "Always Do The Right Thing!"

About this role

Director, Corporate Counsel drafts and negotiates complex agreements, provides legal guidance relating to day-to-day contract and corporate governance issues, and advises on material risks and requirements of competitive governmental procurements. Under the direction of the Chief Compliance Officer, the Privacy Officer has proactive operational responsibility of the Company's Privacy Program. The incumbent develops privacy guidelines, best-practice procedures, and supporting documentation to ensure the protection, privacy and confidentiality of all protected patient and employee information.

What you bring to the table


  • Juris Doctorate Degree from an ABA-accredited institution.


  • 6 - 9 years of legal experience relevant to the position duties.

  • Government contracting experience preferred.


  • License to practice law in state of employment.

  • Certified Privacy Professional (CIPP, CHPC or CHC) or similar certification and Certification preferred

What you will do

  • Review competitive governmental solicitations (e.g., RFPs) to identify risks, ensure compliance with material terms, and assist in developing bid strategy to optimize resultant contractual terms.

  • Draft, negotiate, and administer a variety of complex agreements including service contracts with local, state, and federal governmental entities, vendor contracts, physician agreements, employment agreements, leases, and other legal documents.

  • Assess contracts from a legal and risk standpoint to provide counsel to company personnel.

  • Prepare preapproved contract templates for use by field personnel to standardize contracting.

  • Oversee the management of contracts and work closely with various departments to ensure proper maintenance and retention of contracts.

  • Manage minute books, draft operating agreements and bylaws, and prepare resolutions and written consents.

  • Research proposed and existing laws, rules, and regulations regarding contract, corporate law, and employment law issues, then communicate legal opinions on the potential or current impact and assist with determining required operational changes.

  • Provide general legal support and advice for all departments and fully support Wellpath business strategies, goals, and initiatives.

  • Advise the company regarding employment matters such as employment classifications (exempt versus non-exempt; independent contractor versus employee), background checks, termination and severance matters, and accommodations.

  • Make definitive, independent legal decisions in a short timeframe with little supervision.

  • Manage the day to day working of the Privacy Compliance Programs. Monitor and validate controls to ensure that systems, documentation, and processes are compliant with internal privacy standards and privacy regulations.

  • Review with Chief Compliance Officer the status of each investigation case.

  • Proactively manage and monitor Navex Alerts and follow up.

  • Manage Privacy Incident response. Track, analyze, and draft responses to the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule, the Health Information Technology for Economic and Clinical Health Act (HITECH), 42 CFR Part 2, the Payment Card Industry Data Security (PCI DSS), complaints and inquiries.

  • Develop and proactively manage all relevant department policies to ensure timely drafting, review, and renewal.

  • Conduct gap analyses of existing processes to determine the privacy needs of the organization:

  • Identify and assess privacy compliance risks;

  • Develop and implement remediation plans to address the gaps identified as a result of the analyses;

  • Develop and regularly report on the status of the implementation of a privacy program work plan.

  • Administer Privacy Program Activities, including privacy reviews, meetings with department/teams, and developing training and awareness materials;

  • Create and manage privacy and information security awareness and training programs for all employees, contractors, and approved system users; build a culture where privacy and information security awareness is a priority;

  • Collaborate and liaise with the Chief Information Security Officer and Company Technology Management Department to ensure alignment of Corporate-wide privacy, information security and other compliance initiatives;

  • Work directly with the business units and leaders to facilitate privacy and information security risk analysis and risk management processes;

  • Work with Federal and State agencies, including but not limited to: the Office of Civil Rights and Federal Bureau of Investigation,

  • Formulate, maintain and implement the Incident Response Plan when appropriate and to ensure timely and appropriate resolution of the investigation of potential breaches of data;

  • Ensure compliance with privacy compliance practices and consistent application of sanctions for failure to comply with relevant policies for the company's workforce members, extended workforce and all business associates, in cooperation with Human Resources, the Chief Information Security Officer, the Chief Compliance Officer, senior/executive leadership and legal counsel as applicable; and

  • Serves as information privacy consultant to all company departments and affiliated entities and business associates.

Wellpath is an EOE/Minorities/Females/Vet/Disability Employer

Our investment in you

  • Medical, Dental and Vision Insurance plan options

  • Time off & leave benefits

  • 401K

  • Tuition Reimbursement

  • Parental benefits

  • Perks and discounts

  • And more available here

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Director & Senior Counsel Privacy And Compliance

Iron Mountain

Posted 3 months ago

VIEW JOBS 7/30/2021 12:00:00 AM 2021-10-28T00:00 At Iron Mountain we protect what our customers value most, from the everyday to the extraordinary, while helping them bridge the physical and digital world. Our people have the opportunity to bring their creativity to a workplace that thrives on change. Here, you will be part of a team that doesn't just embrace what's exceptional. It creates exceptional. We have a new role for a Director of Privacy, Data Protection & Compliance to lead as an independent and objective legal advisor to business partners that identifies and evaluates data privacy compliance issues. Provides subject matter expertise and designs corporate privacy trainings; monitors legal and regulatory trends. Enables business and helps to protect the privacy of all stakeholders, including employees, customers, suppliers, and members of the public. What you will do * Design global data privacy strategies and lead efforts to comply with relevant privacy and data protection laws in various jurisdictions - including Asia. * Provide legal expertise on interpretation and application of data protection law. * Design and implement strategies to enable intra-company and cross-border data transfers. * Understanding of data privacy issues relating to data storage and IT infrastructure. * Draft, review, and implement company-wide privacy related policies, procedures and controls; adjust policies and procedures to reflect latest developments in privacy globally. * Scope and perform periodic data privacy risk assessments, mitigation and remediation, including data control design and monitoring, as well as the mitigation of privacy and security risks. * Strategically advise on the development of new services or enhancements to existing services to ensure "privacy by design" and "privacy by default" principles. * Support HIPAA risk assessment and company's compliance obligations as a HIPAA Business Associate. * Provide support and guidance to investigations and security teams to enable compliance with privacy laws when transferring or analysing data. * Provide privacy and data protection issue spotting and advice for ethics hotline reports. * Support contract negotiation and drafting for complex privacy and data protection issues. * Design training courses for privacy and data protection, including annual company-wide Privacy and Data Protection training. * Provide support to M&A team for privacy and data protection topics. Work with country management, functional leaders and business leaders to formalize, implement and maintain privacy compliance policies and procedures and to ensure compliance training is completed. * Coordinate with Internal Audit to conduct periodic assessments of the effectiveness and performance of company's privacy compliance program. What you will bring * Significant global privacy legal experience advising on data privacy laws compliance and regulatory risks management, including experience managing a global privacy compliance program * Significant experience managing privacy and data protection requirements for a diverse array of physical and digital data with broad global reach. * High-level proficiency in data protection laws and regulations globally. * Experience designing and managing privacy risk assessments. * Outstanding written communication and proofreading skills, particularly with executive-level communications. * Ability to work independently and lead experienced attorneys and multiple diverse projects. * Ability to plan, organize and prioritize a varied, heavy, and continually expanding workload. * Ability to communicate effectively and professionally both verbally and in writing, with all levels of management up to and including the General Counsel and CEO. * Ability to maintain confidentiality of customers, employees and proprietary information. What we offer Highly competitive remuneration including bonus and benefits with the opportunity to influence global strategy with the leader in information management. #LI-Remote Category: Legal (LG) Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law. To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement, CLICK HERE Requisition: J0028623 Iron Mountain Nashville TN

Director, Corporate Counsel And Privacy Officer