VCN Healthcare Jobs

Virtual Career Network Healthcare mobile logo

Job Information

Curative Inc. Head of Privacy and Healthcare Compliance in San Dimas, California

In this new and high-visibility position, you will work closely with Curative’s General Counsel to evolve a comprehensive privacy and healthcare/corporate compliance program that is strategically aligned with our business objectives and Curative’s focus on conducting business with the highest legal and ethical standards. As a key member of a growing in-house legal and corporate compliance department, you will also help the function to identify, develop, and implement opportunities to optimize its organization, including its interaction with other Curative departments. You will need to adapt to and proactively support ongoing enhancements to our legal operations, which are integral to the success of our agile, fast-changing organization.

This position will report directly to the General Counsel.


You must be a self-starter who can identify and tackle priority tasks, actively identify opportunities for process improvement, and instill urgency in others. You will work in a fast-paced environment that challenges conventional wisdom while maintaining the highest standards for legal and ethical compliance. You must be comfortable bringing order to a rapidly changing environment.

You must also have a demonstrated history of identifying compliance and privacy-related risks and solutions aligned with achieving innovative business objectives that seek to disrupt industry expectations of what is possible in health care delivery. You must be able to build and manage a team of internal and outside experts to help you carry out the tasks for this critical role.

Experience working with healthcare insurance plans is a strong plus.

Candidates who are especially strong in either privacy or compliance with a desire and ability to learn the other competency will be considered, but great weight will be given to those with in-depth experience doing both.

Key Responsibilities Include But Not Limited To


  • Evolve and manage a strategic and comprehensive US privacy program, including appropriate policies and procedures, to enable consistent, effective data privacy practices, and to minimize privacy risk and ensure the confidentiality of protected health information (PHI).

  • Works with organization senior management and information security to develop approaches to complex privacy matters involving laboratory testing, systems, other data handling activities, and to establish governance for the privacy program.

  • Work with the information security team and customer service call center to establish an ongoing process to track, investigate, and report inappropriate access and disclosure of protected health information. Monitor patterns of inappropriate access and/or disclosure of protected health information.

  • Perform periodic information privacy risk assessment/analysis, mitigation and remediation.

  • Conduct related ongoing compliance monitoring activities in coordination with the company’s other compliance and operational assessment functions.

  • Take a lead role to ensure the organization has and maintains appropriate privacy and confidentiality consents, authorization forms, and information notices and materials reflecting current organizational and legal practices and requirements.

  • Oversee, develop and deliver initial and ongoing privacy training to the workforce.

  • Participates in the development, implementation, and ongoing compliance monitoring of all business associates and business associate agreements, to ensure all privacy concerns, requirements, and responsibilities are addressed.

  • Works cooperatively with relevant company teams to oversee patient rights to inspect, amend, and restrict access to protected health information when appropriate.

  • Manage all required breach determination and notification processes under HIPAA and applicable State breach rules and requirements.

  • Administer a process for investigating and acting on privacy and security complaints.

  • Initiate, facilitate and promote activities to foster information privacy awareness within the organization.

  • Maintain current knowledge of applicable federal and state privacy laws and accreditation standards.


  • Enhance the corporate and healthcare compliance program and day-to-day operations for running a program designed to prevent illegal, unethical or improper conduct consistent with current guidance and HHS/OIG Compliance Program for Clinical Laboratories.

  • Demonstrate the company’s commitment to ethical business practices, set the tone with division leadership to facilitate consistent messaging throughout the laboratories.

  • Provide or facilitate resolution of complex business issues that may interface with multiple federal or state laws or agencies.

  • Design, Develop, Update and Implement policies and procedures to meet the compliance requirements of the company, federal healthcare programs or other applicable fraud and abuse agencies.

  • Respond to alleged violations of company rules, policies, procedures, state or federal business laws rules or regulations by conducting investigation proceedings when appropriate ensuring the implementation of corrective actions.

  • Develop and implement an effective auditing and monitoring program.

  • Maintain compliance reporting, hotline, documentations systems and reporting to the General Counsel.

  • Implement national compliance awareness programs, materials, training modules and develop local material for new or changing policies, regulations, etc.

  • Remain current and interpret rules, regulations, and policies affecting laboratories and/or locate source material such as Centers for Medicare and Medicaid Services and affiliated Medicare Administrative Contractors (MACs), HHS Office of Inspector General, and state regulators, etc.

  • Perform other tasks and duties as needed or assigned by the General Counsel,


  • Law degree, Master’s degree, or other advanced degrees from an accredited institution in a related field (e.g., regulatory/healthcare compliance) preferred.

  • Privacy professional certification preferred (CHPS, CIPP/US, CIPP/M, etc.).

  • Knowledge and experience in state and federal information privacy laws, including but not limited to HIPAA.

  • At least 7 years of experience in the privacy or compliance profession, including time in or advising healthcare companies and healthcare insurers on privacy and compliance related activities.

  • Depth of privacy and compliance subject matter knowledge needed in order to successfully measure, navigate and support business needs across all departments and businesses.

  • Experience with managing a privacy program for a healthcare provider/lab.

  • Demonstrated organization, facilitation, written and oral communication, and presentation skills.

  • Excellent interpersonal skills–you must know how to build and maintain positive working relationships within the legal and compliance team and across the organization, and you must have proven ability to engage, influence, and align stakeholders across the Company.

  • Excellent written and verbal communication skills

  • Highly organized –you need to be great at multitasking and keeping projects on track.

  • Detail-oriented with a penchant for accuracy.

Notice to Third Party Agencies: Please note that Curative Inc. does not accept unsolicited resumes from recruiters or employment agencies.

About us

Curative is a leader in on-demand public health service programs and healthcare delivery infrastructure. From rapid, mass COVID-19 testing sites to mobile vaccination sites, Curative partners with communities to strengthen public health services with turn-key programs, easy-to-access experiences, and scalable infrastructure, keeping people everywhere safe, healthy, and informed.

Co-founded by CEO Fred Turner and powered by a team of world-leading doctors, scientists, engineers, and health industry experts, Curative began focusing on COVID-19 testing in early March 2020 upon realizing the urgent need to scale COVID-19 test production in the United States. With a network of over 15,000 sites across over 20 states and three CLIA-certified, high-complexity laboratories, Curative and its managed medical entities have provided millions of COVID-19 tests and COVID-19 vaccines.

Beyond COVID-19, Curative is using its unique healthcare delivery expertise to reimagine the way we deliver and experience healthcare in America. We're working on creating an entirely new, vertically integrated healthcare offering that will improve individual and community health while utilizing society's limited healthcare resources more effectively and efficiently. For more details on Curative, please visit and follow on Facebook ( , Instagram ( , and Twitter ( .


At Curative, your safety is our priority. Our working environments comply with current CDC recommendations. Curative provides personal protective equipment (PPE), including breathable medical coveralls, face shields, N95 masks, and gloves. You will never touch anyone coming for a test but you may be interacting with them.

As a company that focuses on ending the COVID-19 pandemic, we have a responsibility to ensure the safety of our staff and communities. We require that all Curative employees and third-party contractors show proof of vaccination against COVID-19 within two weeks of their start date.

Curative Inc. is an Equal Employment Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. Please contact us with any questions or comments about your personal information, our third-party disclosure practices, or your consent choices at: or by writing us at:

Curative attn Privacy officer

430 S Cataract Ave

San Dimas, CA 91773