Director of Compliance

Posted on 8/24/2023

INACTIVE

51-200 employees

Fosters STEM entrepreneurship through training, funding, and networking.

Company Overview

VentureWell stands out as a nurturing hub for STEM innovators and entrepreneurs, providing comprehensive support through funding, training, and mentorship to transform ideas into impactful solutions. Their commitment to fostering collaboration and promoting institutional change is evident in their extensive network-building efforts and programs that empower faculty and students alike. This focus on holistic development, coupled with their mission to solve the world's most pressing challenges, makes VentureWell a dynamic and purposeful place to work.

Venture Capital

Company Stage

N/A

Total Funding

$280K

Founded

1995

Headquarters

Hadley, Massachusetts

Growth & Insights

Headcount

6 month growth

↑ 9%

1 year growth

↑ 23%

2 year growth

↑ 88%

Locations

Remote in USA

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

Customer Service

Communications

Mergers & Acquisitions (M&A)

CategoriesNew

Legal & Compliance

Requirements

Bachelor's degree in law, business, or a related field. A master's degree or JD would be a plus
Minimum of 7 years' experience in a privacy and compliance role
Experience in the non-profit sector, particularly with federal grants and contracts, is a strong advantage including knowledge of 2 CFR 200 (Uniform Guidance), Federal Acquisition Regulation (FAR). Experience with Other Transaction Authority (OTA) a plus
Excellent communication and presentation skills, with the ability to explain complex legal and regulatory issues in a clear and concise manner
Proven ability to influence and drive organizational culture towards privacy and compliance; must have experience leading change management with a strong preference for it to be with a unit or organization of at least 100 employees
Demonstrated commitment to continuous learning, staying abreast of the latest advancements and trends in privacy law, regulation, and technology
Are able to succeed and thrive in an environment with competing and changing priorities and tight deadlines
Have track records of and ability to build solid collaborative working relationships, and are proven team players who enjoy a “customer service” orientation to collaboration
Are committed to embedding equity in our internal practices and culture and in our programs in order to live and achieve our mission
Bring openness and engagement to personal, professional, and organization-wide learning on race, class, gender, justice, and equity
Are curious and committed to issues of environmental sustainability
Are self-starters with excellent attention to detail and a commitment to delivering high-quality work
Are active learners who independently learn new tools and work processes quickly
Have excellent written and oral communication skills
It's our aim for our employees in this position to not work more than a 40-hour workweek during non urgent times
20 paid vacation days PLUS the week off between Christmas and New Years
12 paid wellness days

Responsibilities

Develop, implement, and oversee the organization's programs for ensuring data protection and compliance, and adherence to legal standards, industry regulations, and internal policies, with particular emphasis on privacy-related laws and regulations such as HIPAA, GDPR, and CCPA
Drive the transformation towards better data protection and compliance, advocating a culture of transparency and accountability throughout the organization, especially regarding data protection and privacy rights
Oversee and conduct regular internal audits of company programs to ensure compliance with regulatory standards, contractual agreements, and privacy obligations
Educate and train employees on regulations, industry practices, and the importance of privacy and compliance in their respective roles and duties
Create strategies to manage compliance and privacy risk, including privacy impact assessments, data breach response protocols, and privacy-by-design principles in product and process development
Manage organization's insurance policies and monitor coverage to account for growth and changing risk profile
Work closely with the Director of Contracts to develop and maintain contract and subcontract/subaward templates library, ensuring alignment with the terms of the organization's prime agreements
Advise internal stakeholders during contract negotiations on contract terms and conditions
Develop and implement internal and external conflict of interest (COI) policies and procedures, including managing risk mitigation plans with consultants and subcontractors
Liaise with external regulators and advisors as needed

About The Role:

The Director of Compliance is responsible for developing and overseeing the organization’s risk mitigation and compliance programs in alignment with legal standards, industry regulations, and internal policies. They will conduct regular audits, develop risk management strategies, and foster a culture of privacy awareness and compliance throughout the organization. Additionally, they will manage a Manager of Compliance and Internal Audit, collaborate with internal functions on Information & Security Systems, Finance & Administration, and other VentureWell business units, and liaise with external regulators in a manner that meets VentureWell’s requirements. This position will report directly to the Vice President, Finance and Administration and will work across a broad range of business lines, regions, and stakeholders to implement practices that meet VentureWell’s defined policies and standards.

Responsibilities:

Develop, implement, and oversee the organization’s programs for ensuring data protection and compliance, and adherence to legal standards, industry regulations, and internal policies, with particular emphasis on privacy-related laws and regulations such as HIPAA, GDPR, and CCPA.
Drive the transformation towards better data protection and compliance, advocating a culture of transparency and accountability throughout the organization, especially regarding data protection and privacy rights.
Oversee and conduct regular internal audits of company programs to ensure compliance with regulatory standards, contractual agreements, and privacy obligations.
Educate and train employees on regulations, industry practices, and the importance of privacy and compliance in their respective roles and duties.
Create strategies to manage compliance and privacy risk, including privacy impact assessments, data breach response protocols, and privacy-by-design principles in product and process development.
Manage organization’s insurance policies and monitor coverage to account for growth and changing risk profile.
Work closely with the Director of Contracts to develop and maintain contract and subcontract/subaward templates library, ensuring alignment with the terms of the organization’s prime agreements.
Advise internal stakeholders during contract negotiations on contract terms and conditions.
Develop and implement internal and external conflict of interest (COI) policies and procedures, including managing risk mitigation plans with consultants and subcontractors.
Liaise with external regulators and advisors as needed.

What You Bring:

Bachelor’s degree in law, business, or a related field. A master’s degree or JD would be a plus.
Minimum of 7 years’ experience in a privacy and compliance role
Experience in the non-profit sector, particularly with federal grants and contracts, is a strong advantage including knowledge of 2 CFR 200 (Uniform Guidance), Federal Acquisition Regulation (FAR). Experience with Other Transaction Authority (OTA) a plus.
Excellent communication and presentation skills, with the ability to explain complex legal and regulatory issues in a clear and concise manner.
Proven ability to influence and drive organizational culture towards privacy and compliance; must have experience leading change management with a strong preference for it to be with a unit or organization of at least 100 employees.
Demonstrated commitment to continuous learning, staying abreast of the latest advancements and trends in privacy law, regulation, and technology.

Across the Board, VentureWell Staff:

Are able to succeed and thrive in an environment with competing and changing priorities and tight deadlines
Have track records of and ability to build solid collaborative working relationships, and are proven team players who enjoy a “customer service” orientation to collaboration
Are committed to embedding equity in our internal practices and culture and in our programs in order to live and achieve our mission
Bring openness and engagement to personal, professional, and organization-wide learning on race, class, gender, justice, and equity
Are curious and committed to issues of environmental sustainability
Are self-starters with excellent attention to detail and a commitment to delivering high-quality work
Are active learners who independently learn new tools and work processes quickly
Have excellent written and oral communication skills

Our Benefits:

An attractive and equitable compensation package, including:

a salary range of $130k-$160k commensurate with experience and internal equity
403 (b) with 200% match up to a maximum contribution from VentureWell of 10% when the employee puts it 5% (eligible after one year of service for the match)
Medical, Dental, and Vision insurance
$1,000 home office stipend upon hire

A true focus on work-life balance with work weeks that reflect that

It’s our aim for our employees in this position to not work more than a 40-hour workweek during non urgent times
20 paid vacation days PLUS the week off between Christmas and New Years
12 paid wellness days

What We Offer:

A culture where people work intentionally and collaboratively in pursuit of our mission
Values we believe in
A commitment to Diversity, Equity, and Inclusion