Working for Metrocare isn’t just a job. It’s a career whereyour skills and passion for delivering quality care makea positive difference to the individuals that we serve.
Metrocare is the largest provider of mental health services in Dallas County, serving more than 57,000 adults and children annually. For more than fifty (50) years, Metrocare has provided an array of services available to people with mental and developmental disabilities. In addition to behavioral health services, Metrocare provides primary care centers for adults and children, accessible pharmacies, housing and supportive social services. Through the Altshuler Center for Education & Research we are advancing mental health beyond Dallas County.
The Chief Compliance Officer oversees the Corporate Compliance, Information Privacy and Security Programs at Metrocare Services, functioning as an independent and objective body that reviews and evaluates compliance issues/concerns within the organization. The position ensures the Board of Trustees, management and employees, are in compliance with the rules and regulations of regulatory agencies, that company policies and procedures are being followed, and that behavior in the organization meets the company’s Standards of Conduct.
The Chief Compliance Officer acts as staff to the COO, CEO and Board of Trustees by monitoring and reporting results of the compliance/ethics efforts of the company and in providing guidance for the Board and executive/senior management team on matters relating to compliance. The Chief Compliance Officer is authorized to implement all necessary actions to ensure achievement of the objectives of an effective compliance program.
The Chief Compliance Officer (CCO) will work closely with all members of the Metrocare’s Executive Management and Senior Management. For compliance department budget and personnel management, the CCO reports to the COO. The CCO also reports quarterly to the Quality Council and Board of Trustees.
The Chief Compliance Officer also serves as the Center’s Information Privacy and Security Officer
This position has been designated to function as the Acting Chief Operating Officer in the absence of the Chief Operating Officer.
Compliance Officer Responsibilities:
- Ensure that all departments are in compliance with HIPAA, HITRUST and other accreditation standards that apply to Metrocare Services. Monitors compliance with federal, state, and local regulatory requirements. Stays abreast of laws and regulations that might affect the organization's policies and procedures.
- Develops, initiates, maintains, and revises policies and procedures for the general operation of the compliance program and its related activities to prevent illegal, unethical, or improper conduct.
- Manages day-to-day operation of the compliance program.
- Develops and periodically reviews and updates Standards of Conduct to ensure continuing currency and relevance in providing guidance to management and employees.
- Collaborates with other departments to direct compliance issues to appropriate existing channels for investigation and resolution.
- Consults with General Counsel as needed to resolve difficult legal compliance issues.
- Responds to alleged violations of rules, regulations, policies, procedures, and Standards of Conduct by evaluating or recommending the initiation of investigative procedures.
- Develops and oversees a system for uniform handling of such violations.
- Monitors, and as necessary, coordinates compliance activities of other departments to remain abreast of the status of all compliance activities and to identify trends.
- Identifies potential areas of compliance vulnerability and risk, develops and implements corrective action plans for resolution of problematic issues, and provides general guidance on how to avoid or deal with similar situations in the future.
- Provides reports on a regular basis, and as directed or requested, keeps the Corporate Compliance Committee and senior management informed of the operation and progress of compliance efforts.
- Ensures proper reporting of violations or potential violations to duly authorized enforcement agencies as appropriate or required.
- Establishes and provides direction and management of the compliance hotline.
- Institutes and maintains an effective compliance communication program for the organization, including promoting: (a) use of the compliance hotline; (b) heightened awareness of Standards of Conduct, and (c) understanding of new and existing compliance issues and related policies and procedures.
- Works with the Human Resources Department and others as appropriate to develop an effective compliance training program, including appropriate introductory training for new employees and ongoing training for all employees and managers.
- Monitor the performance of the Compliance Program and relates activities on a continuing basis, taking appropriate steps to improve its effectiveness.
- Ensures through purchasing that independent contractors and agents who furnish medical services to the health system are aware of the requirements of the compliance program with respect to coding, coverage, billing, and marketing, among other things.
- Responds to government investigations and queries as the principal point of contact.
- Independently investigates and acts on matters related to compliance, including the flexibility to design and coordinate internal investigations (e.g., responding to reports of problems, 'hot-line' calls, or suspected violations) and any resulting corrective actions with all health system departments, providers and sub-providers, agents and, if appropriate, independent contractors.
- Develops policies and programs that encourage managers and employees to report suspected fraud and other improprieties withoutfear of retaliation
Privacy Officer Role:
The privacy officer oversees all ongoing activities related to development, implementation, maintenance of, and adherence to Metrocare policies and procedures covering privacy of and access to protected health information (PHI) in compliance to federal and state laws and health system privacy practices.
The privacy officer ensures that periodic risk assessments and ongoing monitoring of key elements of the privacy program are monitored; including privacy notice, consent, authorization, business partner agreements/practices, minimum necessary information, disclosure, etc.
Privacy Officer Responsibilities:
- Provides development guidance and assists in the identification, implementation, and maintenance of organization information privacy policies and procedures in coordination with executive/senior management the Quality Council and the COO.
- Serves in a leadership role for the compliance committee's activities.
- Performs initial and periodic information privacy risk assessments and conducts related ongoing compliance monitoring activities in coordination with Metrocare's other compliance and operational assessment functions.
- Works with management, key departments, and committees to ensure the organization has and maintains appropriate privacy and confidentiality consent, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.
- Oversees, directs, delivers, or ensures delivery of initial privacy training and orientation to all employees, volunteers, medical and professional staff, contractors, alliances, business associates, and other appropriate third parties.
- Participates in the development, implementation, and ongoing compliance monitoring of all trading partner and business associate agreements, to ensure all privacy concerns, requirements, and responsibilities are addressed.
- Establishes with management and operations a mechanism to track access to protected health information, within the purview of the organization and as required by law and to allow qualified individuals to review or receive a report on such activity.
- Works cooperatively with all departments in overseeing patient rights to inspect, amend, and restrict access to protected health information when appropriate.
- Establishes and administers a process for receiving, documenting, tracking, investigating, and taking action on all complaints concerning the organization's privacy policies and procedures in coordination and collaboration with other similar functions and, when necessary, legal counsel.
- Ensures compliance with privacy practices and consistent application of sanctions for failure to comply with privacy policies for all individuals in the organization's workforce, extended workforce, and for all business associates, in cooperation with Human Resources, administration, and legal counsel as applicable.
- Initiates, facilitates and promotes activities to foster information privacy awareness within the organization and related entities.
- Reviews all system-related information security plans throughout the organization's network to ensure alignment between security and privacy practices, and acts as a liaison to the information systems department.
- Maintains current knowledge of applicable federal and state privacy laws and accreditation standards, and monitors advancements in information privacy technologies to ensure organizational adaptation and compliance.
- Serves as information privacy consultant to the organization for all departments and appropriate entities.
- Cooperates with the governmental auditors, other legal entities, and organization officers in any compliance reviews or investigations.
- Works with administration, legal counsel, and other related parties to represent the organization's information privacy interests with external parties (state or local government bodies) who undertake to adopt or amend privacy legislation, regulation, or standard.
- Represents Metrocare with the Metrocare COO, CEO, and general counsel.
- Coordinates with appropriate Metrocare departments and units to ensure timely development and implementation of corrective action plans in response to monitoring deficiencies and complaints.
Information Security Officer Role:
The information security officer oversees all ongoing activities related to development, implementation, maintenance of, and adherence to Metrocare policies and procedures covering security of and access to protected health information (PHI) in compliance to federal and state laws and health system security practices.
Information Security Officer Responsibilities:
The information security officer ensures the periodic risk assessment and ongoing monitoring and reporting of key elements of the security program.
- Leads in the development and enforcement of information security policies and procedures, measures and mechanisms to ensure the prevention, detection, containment, and correction of security incidents.
- Ensures that security standards comply with statutory and regulatory requirements regarding health information.
- Ensures that security policies are maintained that include: administrative security, personnel security, physical safeguards, technical security, and transmission security.
- Assures that appropriate documentation exists of response of the institution to the addressable portions of the security rule.
- Ensures that security procedures are maintained that include: evaluation of compliance with security measures; contingency plans for emergencies and disaster recovery; security incident response process and protocols; testing of security procedures, measures and mechanisms, and continuous improvement; and security incident reporting mechanisms and sanction policy.
- Ensures that appropriate security measures and mechanisms are in place to guard against unauthorized access to electronically stored and/or transmitted patient data and protect against reasonably anticipated threats and hazards, including, when appropriate: integrity controls, authentication controls, access controls, encryption, and abnormal condition alarms, audit trails, entity authentication, and event reporting.
- Oversees on-going security monitoring of Metrocare information systems, including: periodic information security risk assessments; functionality and gap analyses to determine the extent to which key business areas and infrastructure comply with statutory and regulatory requirements; and review of new information security technologies and counter-measures against threats to information or privacy.
- Oversees training programs, periodic security awareness reminders, and periodic security audits.
- Serves as an institutional resource regarding matters of informational security.
- Cooperates with governmental auditors, other legal entities, and organization officers in any compliance reviews or investigations.
- Works with administration, legal counsel, and other related parties to represent the organization's information security interests with external parties (state or local government bodies) who undertake to adopt or amend security legislation, regulation, or standard.
- Coordinates with appropriate Metrocare departments and units to ensure timely development and implementation of corrective action plans in response to monitoring deficiencies and complaints
SPECIFIC JOB TASKS:
(Included but not limited to)
Bachelor’s degree required; master’s preferred
EXPERIENCE & SKILLS:
A minimum of 5 years’ experience in a health care organization.
Demonstrated leadership ability and ability to communicate effectively orally and in writing
Familiarity with healthcare laws, regulations, and standards
Understanding of coding and reimbursement systems, risk management, and performance improvement
Knowledge of Technology and Application Systems in a Healthcare environment.
PHYSICAL DEMANDS & WORK ENVIRONMENT
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations can be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the incumbent is regularly required to talk and hear, use hands and fingers to operate a computer and telephone. Due to the multi-site responsibilities of this position the incumbent must be able to carry equipment and supplies (up to 15 pounds).
Must be willing to travel as deemed necessary by the CEO.
**NOTICE ON POSITIONS THAT REQUIRE TRAVEL TO/FROM VARIOUS WORKSITES**
Positions that are “community-based,” in whole or part, require the incumbent to travel between various worksites within his/her workday/workweek. The incumbent is required to have reliable transportation that can facilitate this requirement. The incumbent is further required to meet the criteria for insurability by the Center’s risk management facilitator; and produce proof of minimal auto liability coverage when applicable. Failure to meet these terms may result in disciplinary action up to and including termination of employment, contract or other status with Metrocare.
The work environment describe here is representative of that which an employee encounters while performing the essential functions of this job. Reasonable accommodation can be made to enable individuals with disabilities to perform the essential functions.
- The noise level may vary between low and mild.
- The work environment should not be unusually hot or cold.
Metrocare couldn’t have a great employee-first culture without great benefits. That’s why we offer a competitive salary, exceptional training and an outstanding benefits package:
- Paid Leave
- Paid Holidays
- Employee Assistance Program
- Retirement Plan, including employer matching
- Health Savings Account, including employer matching
- Professional Development Allowance
- Bilingual Stipend – up to 6% of the base salary
- Many other benefitsEqual Employment Opportunity/Affirmative Action EmployerTobacco Free Facilities - Metrocare is committed to promoting the health, well-being and safety of Metrocare team members, guests, and individuals and families we serves while on the facility campuses. Therefore, Metrocare facilities and grounds are tobacco-free.
No calls from staffing agencies or independent recruiters