Regulatory and Legal Compliance Counsel

ABOUT THIS POSITION

WHAT YOU'LL DO

• Manage enterprise-wide privacy and compliance strategies, frameworks, and policies.
• Ensure timely updates to policies and training programs in accordance with changes in laws.
• Monitor federal and state regulatory changes, industry trends and best practices.
• Conduct risk assessments and audits to identify and mitigate compliance and privacy-related risks.
• Organize and develop data governance and privacy impact assessments (DPIAs).
• Advise senior leadership and business units on regulatory and compliance matters.
• Coordinate responses to regulatory inquiries, investigations, and audits.
• Manage third-party compliance and privacy risk, including vendor assessments and contracts.
• Develop and deliver training programs on compliance, privacy, and ethical practices.
• Serve as a point of contact for data subjects, regulatory bodies, and internal stakeholders.
• Assist with internal investigations related to privacy breaches or regulatory violations.
• Collaborate cross-functionally with Legal, IT, HR, Marketing, Accounting, Security, and Operations.

WHAT YOU'LL NEED

Experience:

• 5-7 years of legal practice in role focused on regulatory compliance, privacy, or risk management
• Solid understanding of privacy laws (e.g. HIPAA, HITECH, CCPA, GDPR, etc.)

Must-have Skills:

• Strong analytical, communication, problem-solving and presentation skills.
• Experience interacting with regulators and handling investigations or audits.
• Research capabilities utilizing LexisNexis and various project management tools.
• Ability to influence across all levels of the organization and work cross-functionally.
• Strong project/time management skills and a pragmatic approach to compliance.

Preferred Skills:

• Experience in healthcare, technology, SaaS, finance, or other highly regulated industries.
• Familiarity with Wage and Employment Law obligations for corporations and state specifics
• Law practice within a corporate environment involving regular interaction with business personnel.
• Litigation experience including responding to subpoenas, civil investigative demands, FOIA requests, etc.

Bonus Skills:

• Familiarity with frameworks/standards such as ISO 27001, SOC 2, NIST, HITRUST, FedRamp, etc.
• Certifications such as CIPP, CIPM, or CRCM
• Interaction with and oversight of outside counsel; managing various matters simultaneously
• Interaction with business leaders on Intellectual Property preparation/discussions/filings 

WAYSTAR PERKS

• Competitive total rewards (base salary + bonus, if applicable)
• Customizable benefits package (3 medical plans with Health Saving Account company match)
• We offer generous paid time off for our non-exempt team members, starting with 3 weeks + 13 paid holidays, including 2 personal floating holidays. We also offer flexible time off for our exempt team members + 13 paid holidays
• Paid parental leave (including maternity + paternity leave)
• Education assistance opportunities and free LinkedIn Learning access
• Free mental health and family planning programs, including adoption assistance and fertility support
• 401(K) program with company match
• Pet insurance
• Employee resource groups

Waystar is proud to be an equal opportunity workplace. We celebrate, value, and support diversity and inclusion. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, marital status, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

This applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.