Vice President, Provider Privacy Compliance/Strategy

Summary

The Vice President, Provider Privacy Compliance/Strategy will lead privacy incident investigation and compliance strategy in support of Datavant's Provider division. This role will scale and drive a privacy protection program across Datavant's national healthcare provider network, translating compliance insights, incident analysis, and state and federal regulatory requirements into actionable guidance.

Reporting to the Chief Compliance & Privacy Officer, you will: (1) lead and optimize a team responsible for privacy incident investigation, response, and notification, (2) convert incident data into strategic recommendations for Datavant's Provider product and operations teams, and (3) manage a specialized team executing high-impact compliance projects that impact Provider product, engineering, operations, training, human resources, and quality functions.

You will direct a dedicated privacy team, focused on our Provider division, that serves as the strategic compliance partner to all division functions, handling special projects that advance privacy maturity and operational excellence at a national scale, and across our global partners.

Key Responsibilities

Optimizing Privacy Incident Management

• Lead the development of a compliant, risk-informed framework for incident investigation, root cause analysis, and notification for privacy incidents nationally
• Develop optimized incident triage, investigation protocols, and remediation frameworks
• Translate incident patterns and findings into actionable recommendations for operations and product teams
• Develop and drive enterprise-wide cross-functional strategies to prevent recurrence and systematically reduce incident frequency
• Oversee breach analysis and regulatory reporting requirements for federal and state accountability points

Product & Business Counseling

• Provide regulatory compliance guidance for new Provider division products and features
• Convert privacy incidents and audit findings into product design improvements and business process recommendations
• Deliver impact analysis and risk assessments for product and service launches
• Partner with product and engineering teams to build privacy requirements into development cycles
• Advise senior leadership on Provider-division related privacy risks and mitigation strategies

Strategic Compliance Projects & Cross-Functional Leadership

• Oversee team to translate federal and state law requirements into documentation, workflow changes, and product enhancement recommendations
• Manage team execution of special compliance projects supporting Provider product development, optimization initiatives, operational improvements, training programs, and quality assurance
• Lead cross-functional privacy initiatives spanning multiple Provider division functions
• Monitor evolving privacy, interoperability, and release-of-information-related laws and regulations, and assess operational impact

Team Development & Operations

• Manage and continue to build a high-performing team of privacy analysts, managers, and counsel focused on Provider division support
• Establish project frameworks, reporting systems, and performance metrics
• Oversee Provider customer inquiries, audits, and privacy or compliance assessments
• Develop policies and processes that help integrate Provider privacy workflows into Datavant's enterprise compliance program
• Provide mentorship and foster culture of continuous improvement and innovation

Basic Qualifications

• Bachelor's degree in law, healthcare administration, compliance, or a related field
• 10+ years of experience in privacy, compliance, or regulatory affairs within healthcare or health technology sectors
• Proven leadership experience managing privacy or compliance teams
• Strong understanding of HIPAA, HITECH, and other U.S. state/federal privacy regulations
• Demonstrated success in incident management, breach analysis, and regulatory reporting
• Excellent communication and stakeholder management skills
• Ability to translate regulatory requirements into operational and technical processes

Desired Qualifications

• JD, CIPP/US, CHPC, or equivalent advanced privacy/compliance certification
• Experience building and scaling privacy programs across multi-state or enterprise healthcare organizations
• Strong strategic thinking with the ability to connect incident insights to business and product strategy
• Experience advising product, engineering, and operations teams on privacy-by-design practices
• Familiarity with interoperability standards, data exchange frameworks, and healthcare data ecosystems
• Track record of leading cross-functional compliance or transformation initiative
• Proven ability to mentor and grow high-performing compliance teams
• Experience with automation or technology solutions that enhance compliance operations