About Us

Galileo is a team-based medical practice working to improve the quality and affordability of health care for all. Operating across 50 states, Galileo offers high-touch, data-driven, multi-specialty, longitudinal care to diverse and complex patients—on the phone, in the home, and everywhere in between. Regional and national health plans, employers, and Fortune 500 organizations trust Galileo as the leading solution to improve population health. Founded by Dr. Tom X. Lee, the healthcare pioneer behind One Medical and Epocrates, Galileo is a team of leading innovators from healthcare, technology, and human-centered design. Our mission is to apply that talent and scientific thinking to transform society by solving our largest, toughest healthcare problems, while at the same time bringing patient and provider closer.

ABOUT THE ROLE

Galileo is looking for a Compliance expert to lead the company’s Compliance function, including health care, privacy and information governance. This role will work closely with Legal and the Chief Information Security Officer in the design, development, implementation, and management of health care compliance, privacy, and information governance programs. 

HERE’S WHAT YOU’LL DO 

In coordination with legal, provide leadership and guidance on compliance and privacy across all business functions. Includes training; risk assessments/analysis, mitigation, and remediation; ongoing compliance monitoring; investigations and complaints management. Provide expertise regarding healthcare and privacy issues, including regulations and practices related to healthcare regulatory and legal requirements and HIPAA and other relevant privacy laws and regulations. Collaborate with the information security team to ensure alignment between security and privacy compliance programs including policies, practices, risk assessments, investigations, and coordinate with the product and information technology teams to implement compliance programs.  Support the development, operations and maintenance of a comprehensive Information Policy and Governance Program, including classifying records and establishing guidelines to maintain business continuity after a disruption or disaster. Advise the company’s Leadership Team on strategic compliance matters and interface with external regulators as necessary.  Manage and drive compliance projects and initiatives, including audits and inquiries, accreditations, risk assessments and audit readiness. Conduct investigations and create and enforce corrective action plans. Lead compliance monitoring to proactively identify process gaps, validate compliance levels, map processes, and prepare reports or presentations for leadership. Implement and ensure adherence to Corporate Ethics, Privacy, Information Management and Compliance standards, which may include drafting, and adopting policies and procedures and training programs to support the business. Monitor legal, regulatory, and business developments and industry privacy best practices as well as company strategies related to compliance to assess impact, and consult with stakeholders as a subject matter expert.

ABOUT YOU

We'd love to hear from you if you have the following:

5+ years of proven successful work experience with at least 2+ years of privacy, healthcare, or digital health experience leading and building relevant legal and regulatory frameworks. Knowledge of compliance and privacy standards, including HIPAA, data privacy, or data security processes, as well as the TCPA and acceptable forms and means of communications governed by it. Knowledge of and ability to build robust InfoSec and Privacy programs and controls in partnership with Product, Engineering, and IT teams. Experience leading and driving successful SOC 2 audits. Ability to build with flexibility to support growth and scale. Highly effective written & verbal communication skills Excellent judgment and a principled, practical, collaborative and solutions-oriented approach to problem-solving Ability to multitask, work under tight time pressures, prioritize work, and react quickly to changing business needs and demands all in a fast-paced, high-growth business environment High level of integrity and trust, and ability to maintain confidentiality Ability to work effectively with others at all levels across the organization Familiarity or ability to become familiar with state-specific laws and regulations around telemedicine and tele-health

COMPENSATION $120,000-150,000 dependent on experience, performance and market dynamics.

How We Hire

Galileo Health is an equal-opportunity employer and welcomes applicants from all backgrounds.

We have recently become aware of the fraudulent use of our name on job postings and via recruiting emails that are illegitimate and not in any way associated with us. We will never ask you to provide sensitive personal information as part of the recruiting process, such as your social security number; send you any unsolicited job offers or employment contracts; require any fees, payments or access to any financial accounts; and/or conduct text-only interviews. If you suspect you are being scammed or have been scammed online, you may report the crime to the Federal Bureau of Investigation and obtain more information regarding online scams at the Federal Trade Commission.