Skip to main content

Chief Compliance, Ethics & Privacy Officer

Job Details

0 Headquarters - New York, NY
Full Time
$228,000.00 - $270,000.00 Salary/year


Who We Are

With a mission to provide world-class healthcare to the underserved Asian community, Rendr is the leading primary care focused, multi-specialty physician group dedicated to serving the Asian population in New York City. Our over 200 providers take care of the health of approximately 200,000 patients at more than 100 clinical offices throughout Brooklyn, Manhattan, Queens, Staten Island and Nassau County.


Department: Compliance

Location: New York, NY (Hybrid)


Position Summary

As a member of the Company’s senior management team, the CCEPO is a catalyst for this mission.  They are responsible for the ongoing development and periodic assessment of the Company’s Compliance & Ethics Program (the Program) and management of the Privacy Program (i.e., privacy policies and procedures to protect employee data and protected health information (PHI) from unauthorized access).  The Programs must fulfill the expectations of key stakeholders, including patients, their families, regulators, and enforcement agencies. 

The CCEPO is expected to promote an appropriate “Tone at the Top” that is consistent with the Company’s culture and core values. This is a senior leadership role that requires seasoned, sound, and risk-aware judgment, productive collaboration across the Company and greater healthcare ecosphere, and demonstrated success in leading a team of in-house compliance or legal professionals. 


Essential Duties and Responsibilities

The following description provides an overview of primary responsibilities for this executive position; it should not be interpreted as all-encompassing.

General Responsibilities

  • Ensures that the Board Committee, the CEO, and the Executive Leadership Team (ELT) are timely informed of all significant compliance and privacy developments, including those involving internal and external allegations and reports of compliance and ethics concerns; privacy breaches; regulatory and enforcement inquiries; and key findings of internal compliance and privacy tests and assessments, audits, and monitoring initiatives.
  • Works closely with the chairperson of the Board Committee to facilitate fulfillment of the Board Committee’s oversight responsibilities.
  • Undertakes to remain informed of the latest developments and trends in healthcare compliance, ethics, and privacy by, among other things, attending seminars, reviewing professional journals, and actively participating in professional organizations. Leverages that insight and knowledge to strengthen the effectiveness of the Compliance and Ethics (C&E) Program and Privacy Program initiatives.

Compliance-Specific Responsibilities

  • Leads the development of the C&E Program; responsible for ensuring that it is properly structured and has sufficient resources with the requisite expertise and experience.
  • Ensures that the C&E Program develops and maintains the key controls, elements, and functions set forth in applicable regulatory and enforcement agency guidance, including the standards enunciated by U.S. Department of Justice (DOJ); Centers for Medicare and Medicaid Services (CMS); and the New York State Office of Medicaid Inspector General (OMIG).
  • Quickly establishes a collaborative relationship with the General Counsel and Chief People Officer (CPO), as well as physician practice leadership.
  • Prepares and presents periodic reports to the Board Committee, the Chief Executive Officer (CEO), and the ELT.
  • With the General Counsel, leads the annual review of the Code of Ethics and Conduct and, as warranted, develops proposed revisions. 
  • Directly, or through a designee, leads the performance of an annual assessment of compliance risks and the development and implementation of an Annual Compliance Work Plan.  Reviews the Annual Work Plan with the Board Committee, the CEO, and the ELT and provides those internal stakeholders with periodic updates as it is executed. 
  • Chairs the Company’s Executive Compliance Committee (ECC) and is responsible for ensuring that it fulfills the mission and duties set forth in its charter.
  • Periodically directs an assessment of the C&E Program’s design, staffing, and operational effectiveness and reports the observations and findings to the Board Committee, the CEO, and the ELT.

Privacy-Specific Responsibilities

  • Leads the development of the Privacy Program; responsible for ensuring that it is properly structured and has sufficient resources with the requisite expertise and experience.
  • Promotes HIPAA awareness amongst Board, CEO, ELT, vendors, Company employees, and trainees through personal conduct and leadership over privacy initiatives such as policies, procedures and training.
  • Ensures that the Privacy Program develops and maintains the key controls, elements, and functions set forth in applicable regulatory and enforcement agency guidance, including the standards enunciated by U.S. Department of Health and Human Services.
  • Intentionally establishes a collaborative relationship with the key personnel, including General Counsel, Chief Information Officer (CIO), Medical Operations/Medical Records leadership, and IT personnel.
  • Identifies areas of privacy vulnerabilities and risk areas and develops both preventive and corrective action plans and provides general guidance for how to avoid or handle similar situations in the future.
  • Performs or oversees required routine breach assessments, documentation, and mitigation and reports observations and findings to the Board Committee, the CEO, and the ELT.




  • Ten to fifteen years of relevant professional experience in healthcare with at least five years of experience in a leadership role. Experience in medical practice management and/or relevant federal or state agency is preferred.
  • An undergraduate degree; strong preference for a Juris Doctor degree from an accredited law school, with a strong academic record and a state bar admission.
  • Recommended high-caliber healthcare compliance certification, such as Certified in Healthcare Compliance (CHC) Certificate from the Health Care Compliance Association (HCCA) along with a fundamental understanding of regulatory framework and coding practices.
  • Recommended privacy certification such as Certified in Healthcare Privacy and Security (CHPS) from the American Health Information Management Association (AHIMA); other AHIMA certifications (e.g., Registered Health Information Administrator (RHIA) or Registered Health Information Technician (RHIT)) will also be considered.
  • Robust working knowledge of managed government healthcare programs (i.e., Medicare and Medicaid).
  • Rigorous professional training in a law firm, a corporate legal or compliance department, and/or a relevant government agency.
  • Demonstrated ability to work effectively with key internal and external stakeholders. Prior experience working with management committees, boards, and governing bodies is preferred.


Key Leadership and Management Skills

  • A strategic mindset with a focus on creating value by exceeding stakeholder expectations.
  • A demonstrated ability to cultivate highly productive working relationships with senior leaders, peers, and government agencies.
  • An ability to operate successfully in a flat culture, with the courage and competence to engage on multiple fronts and tackle challenges head-on.
  • An ability to build and inspire a team while effectuating organizational change.
  • An ability to prioritize effectively, and exercise sound judgment, in a fast-paced, physician-driven environment.
  • A successful track record of advocating for a position while remaining receptive to the views of others, with the intellectual flexibility to craft alternate paths and solutions.

Personal Characteristics

  • Exemplary integrity with courage and an unwavering ethical compass.
  • Seasoned and pragmatic, risk-aware professional judgment.
  • An ability to analyze complex matters and situations three-dimensionally, while distilling relevant information and identifying viable paths forward.
  • An executive presence with the knowledge and stature to convey advice in a manner that is valued and respected by senior leadership and external stakeholders.
  • Demonstrated tact, trustworthiness, and diplomacy skills needed to manage sensitive and confidential information such as PHI.
  • An adept listener with a sense of humility.
  • An approachable, empathetic professional with capability of understanding different values across a wide range of perspectives.



  • Competitive pay
  • A friendly and fast-paced environment working with passionate people
  • Medical, vision, dental and life insurance
  • Short and long-term disability
  • PTO and paid holidays
  • Comprehensive benefits package
  • 401k plan with match