Head of Compliance

Who We Are and Why Join Us
At OnMed our purpose is simple but powerful...to improve the quality of life and sense of well-being in our communities by bringing access to healthcare to everyone, everywhere. Our path to everywhere has already begun, with our innovative CareStation, a small but mighty, Clinic-in-a-Box, bringing #healthcareaccess anywhere with an outlet to plug it in. Poised to become a key component in America’s public health infrastructure, the OnMed CareStation™ is the only tech-enabled, human-led, hybrid care solution that combines the comprehensive experience, trust and outcomes of a clinic, with the rapid scalability of virtual care.

At OnMed, every role, every day, is directly impacting the communities we serve. You’ll join a high-performing purpose-driven team, innovating to break down the barriers that keep people from the care they need.

This is not just a job...it's a movement to bring access to healthcare where and when people need it most. It’s healthcare that shows up.

Who You Are

You’re a compliance leader who moves fast without cutting corners. You thrive at the intersection of healthcare regulation and business growth, translating complex federal and state requirements into scalable programs that protect the organization and enable it to expand. You’ve built and run compliance functions before, and you know that the work spans far more than policy writing: it means owning credentialing, enrollment, privacy, incident response, marketing review, entity governance, and critically, contracts. You’re comfortable drafting and reviewing agreements, working alongside legal counsel, and flagging risk before it becomes a problem.

OnMed is at an inflection point: scaling CareStation deployments, expanding state by state, and building the infrastructure that public health will depend on. This role is for someone energized by that complexity, not intimidated by it.

Role’s Responsibilities 

•       Develop and maintain compliance program, including: annual review cycles, workforce privacy training, compliance dashboard reporting, written policies and procedures specific to direct care and telemedicine in the healthcare industry (e.g. including around privacy and security), incident management (from intake through risk assessment, mitigation,

•       Stay up-to-date with changes in healthcare regulations and industry standards and ensure that the Company’s strategies and operations remain compliant, including via research on State, Federal and local level.

•       Provide guidance and training to internal teams on compliance requirements and best practices.

•       Work in partnership with Marketing to review and approve all marketing materials, ensuring compliance with regulatory requirements and alignment with industry standards

•       Conduct regular audits to identify and address any compliance gaps and track and share related metrics, including via dashboards.

•       Serve as a subject matter expert on healthcare compliance issues, providing guidance and support to internal and external stakeholders.

•       Lead incident response efforts in the event of compliance breaches, including investigating incidents and implementing corrective actions.

•       Monitor and analyze emerging trends and issues in healthcare compliance and recommend proactive measures to address potential risks.

•       Manage state business registration and foreign entity filing activity, including new filings, amendments, and annual report updates for both the operating company and managed professional corporation entities.

•       Manage credentialing operations across all active states, overseeing facility and hospital credentialing applications, serving as primary liaison between the Company and credentialing vendors and bodies.

•       Manage Medicare and Medicaid enrollment across active and expansion states including state-specific enrollment portals.

•       Support ongoing governance of the managed professional corporation entities, including coordination of governance meetings, and maintenance of state-specific collaborative practice requirements.

•       Manage language access compliance obligations, communicable disease reporting documentation, corrective action processes, and internal monitoring and auditing functions, including LEIE/OIG exclusion screening and first- and second-line controls documentation.

•       Coordinate with the Security Officer on Security Rule compliance and related technical controls.

•       Draft, review, and negotiate vendor contracts, business associate agreements (BAAs), provider agreements, and other legal instruments in coordination with General Counsel.

•       Serve as primary operational liaison to General Counsel on regulatory and transactional legal matters, including new market entry requirements, CPOM analysis, and state-level operating structure questions.

•       Perform other related roles and responsibilities as assigned by the General Counsel, including other transactional or regulatory matters, as business needs arise.

Knowledge, Skills & Abilities

•       Working knowledge of healthcare Federal and State Laws.

•       Familiarity with industry regulations, standards, and laws related to information security and data privacy, including HIPAA.

•       Competent in using the Microsoft Office suite.

•       Ability to follow company procedures, work instructions, and policies.

•       Strong ability to research, process, synthesize, and summarize complex issues.

•       Excellent judgment, analytical thinking, and problem-solving skills.

•       High attention to detail and strong organizational capabilities.

•       Ability to multi-task and prioritize work with minimal supervision.

•       Exceptional interpersonal, verbal, and written communication skills.

•       Adaptability to a fast-paced and dynamic work environment with frequently changing priorities.

•       Experience with GRC or compliance management platforms and regulatory monitoring tools; proficiency in maintaining compliance dashboards and metrics reporting.

•       Working knowledge of state business registration and entity compliance filing processes; experience managing multi-state regulatory obligations across a professional corporation or PC/MSO structure preferred.

•       Familiarity with healthcare provider credentialing, Medicare/Medicaid enrollment, and PECOS; experience coordinating with credentialing vendors and maintaining enrollment records across multiple states preferred.

Education & Experience

•       Bachelor’s degree (BS or BA) required; Juris Doctor (JD) strongly preferred given the scope of contract and regulatory legal work in this role.

•       Minimum of 10+ years of progressive healthcare compliance experience, including direct experience building or leading a compliance function.

•       Demonstrated experience in contract drafting and review, including vendor agreements, BAAs, and provider contracts; familiarity with contract lifecycle management strongly preferred.

•       In-depth knowledge of HIPAA, federal and multi-state healthcare regulations, telemedicine-specific requirements, and privacy/security frameworks.

•       Experience managing multi-state compliance operations including credentialing, Medicare/Medicaid enrollment, state business registration, and entity governance (PC/MSO structure preferred).

Benefits

OnMed provides a competitive salary and benefits package, including unlimited PTO and paid holidays.

The base salary for this role is $160,000 - $175,000 commensurate with the candidate's experience.

OnMed is a proud equal opportunity employer. All qualified applicants will be considered without regard to race, color, creed, religion, gender, sexual orientation, national origin, genetic information, disability, age, marital status, veteran status, or any other category protected by law.
#LI-HYBRID