Vice President of Risk & Compliance

Summary

Join Circle Medical, a rapidly growing telemedicine company, as their VP, Legal, Risk & Compliance. This key executive team member will build and maintain a robust risk and compliance infrastructure for this virtual healthcare company. The role ensures adherence to all relevant regulations, including telehealth, privacy, and reimbursement policies. The VP will lead enterprise risk, legal compliance, privacy, and security efforts, fostering a culture of ethical decision-making. This position requires a graduate degree and extensive experience in healthcare compliance and risk management, particularly within digital health. Circle Medical offers a competitive salary, generous benefits, and a chance to make a significant impact in the healthcare industry.

Requirements

• Graduate degree in Law (JD), Healthcare Administration (MHA), Public Health, or a related field required
• Minimum of 10 years of progressive experience in healthcare compliance or enterprise risk, with at least 3 to 5 years in digital health or virtual care
• Strong understanding of U.S. telehealth regulations, payer billing rules, data privacy laws, and clinical operations
• Demonstrated leadership in a dynamic, fast-paced, and compliance-sensitive environment
• Experience working in a public or venture/private equity-backed company

Responsibilities

• Lead the development and integration of a comprehensive enterprise risk and compliance strategy aligned with the organization's mission, legal obligations, and industry best practices
• Advise executive leadership and board committees on emerging risks, legal requirements, and ethical considerations
• Build and lead high-performing teams responsible for legal, compliance, audit, privacy, ethics, and enterprise risk
• Ensure compliance with federal and state laws governing telehealth delivery, including
• State-by-state telemedicine licensure requirementsRemote prescribing regulations (Ryan Haight Act, DEA guidelines)
• CMS telehealth billing and reimbursement rules
• Office of Civil Rights (OCR) guidance for virtual care under HIPAA
• Maintain policies and procedures aligned with the rapidly evolving virtual care regulatory landscape
• Partner with legal and clinical leadership to ensure virtual clinical workflows meet standard-of-care requirements
• Oversee compliance with HIPAA, HITECH, and state-specific privacy laws such as the California Consumer Privacy Act (CCPA)
• Lead incident response planning for privacy breaches, including patient notification and regulatory reporting
• Collaborate with IT and cybersecurity teams to ensure secure data storage, access controls, encryption, and third-party vendor compliance
• Monitor risks associated with cloud-based platforms, mobile apps, wearables, and remote patient monitoring technologies
• Identify and assess clinical, reputational, legal, and technological risks unique to virtual care delivery
• Implement risk mitigation strategies across the organization, including provider performance, data integrity, platform reliability, and patient safety
• Ensure scalable risk practices across all service lines, geographic locations, and vendor networks
• Establish audit procedures for virtual care delivery, clinical documentation, billing accuracy, and digital prescribing
• Ensure compliance with payer and CMS standards to minimize denial and audit risk
• Report key risks and compliance trends to executive leadership and board committees
• Promote an ethical, inclusive, and compliant culture across a remote and geographically dispersed workforce
• Maintain a confidential reporting mechanism for compliance concerns
• Lead ongoing education and training programs around ethics, virtual care regulations, and patient safety
• Develop business continuity and cyber incident response plans tailored to digital operations
• Ensure continuity of care and secure communications in the event of platform downtime or security breach
• Review third-party vendor and software risks related to video, chat, and remote care platforms

Preferred Qualifications

• Certified in Healthcare Compliance (CHC)
• Certified Information Privacy Professional – United States (CIPP/US)
• Certified Professional in Healthcare Risk Management (CPHRM)
• Certified Information Systems Auditor (CISA)
• Telehealth Certification or relevant continuing education in digital health law
• Familiarity with technology and cloud-based systems used in virtual care, including EHR integration and digital prescribing platforms

Benefits

• Flexible vacation, eligibility after 90-days
• 10 annual paid Holidays and 9 paid sick days
• $500 annual education and development reimbursement
• Medical, Dental, Vision benefits, Life & additional supplemental coverage options
• Wellness perks, including discounts for mental health programs and online wellness courses
• 401K + Company Matching Program