Healthcare Compliance Program Manager

The Microsoft Health Solution Group (HSG) designs, develops and produces next-generation software for hospitals and consumers around the world. Our flagship enterprise product aggregates data from hundreds of clinical and administrative systems, delivering information that provides healthcare professionals the tools they need to provide better patient care as a result of having past and present medical information in real time. Our flagship consumer product enables consumers to manage the health and fitness of their family in a trusted environment. The Policy Compliance Manager at Microsoft plays a significant role in ensuring compliance with statutory, regulatory and standards requirements across the Health Solutions Group.  The resource in this role will drive the development and implementation of a Quality Management System to establish required policies using disciplined project management processes and documenting accordingly.  Through collaboration with development team, key quality metrics will be tracked. The Policy Compliance Manager will be expected to develop and maintain highly collaborative and ongoing working relationships among all levels of product engineering, marketing, service and other HSG and corporate groups as appropriate.  

Responsibilities:

Ensure overall compliance  with required policies appropriate to the business model.Required policies include privacy, accessibility, geopolitical intelligence, online safety, intellectual property, interoperability standards and medical device safety.Maintain and evolve quality system specifications and manage the process.Develop and maintain strategic planning documents for policy compliance for international deployments.Trend and report progress to plan on a periodic basis.Integrate best demonstrated practices for documentation of current technical processes, working with the engineering and service teams to capture connections between current practice and regulatory requirements.Utilize good principles of Organizational Change to find points of commonality to ensure smoother transitions. Conduct and document training in accordance with quality system requirements.Act as interface with regulatory agencies for matters directly related to policy compliance. When no Policy Champ or Lead exists, perform responsibilities of both roles in addition to the following: Address all escalations from Champs and Leads and oversee Champ/Lead community.Ensure implementation of policies, standards, & procedures defined by Corporate Trustworthy Computing and other applicable teams; Escalate to Trustworthy Computing team when gaps are not addressed by our policies, standards or guidelines, or if an exception to these is needed.Handle Tier 3 inquiries; Explain policies to other employees in their organization & external partners, customers & vendors when needed.Manage policy issues or escalate through the formal processes as appropriate.Conduct reviews and provide sign off for high-risk policy reviews. Support roll-out of corporate policy training initiatives; develop and deliver business group implementation level policy training, and provide statistics for privacy scorecard as needed.Help maintain HSG-specific policy websites. Build risk mitigation processes. Represent the business group as a voting member in extended stakeholder communities.Drive Functional Risk Assessment Process and drive resulting remediation activity. Ensure implementation across the division of policies, standards, and procedures. Explain policy positions to other employees in their organization, and to external partners, customers and vendors when needed.Monitor and report compliance with applicable policies, standards and procedures. Determine and establish a resource model to ensure adequate coverage for policy issues within the organizations as appropriate  

Qualifications: The ideal candidate will have:

Demonstrated experience working across groups to identify, analyze, influence, and successfully address risk to thebusiness model without having authority over the participating groups.10+ years experience in software industry in healthcare, product development, or R&D, legal or regulatory experience a plus.Proven experience working across multiple Microsoft team boundaries, either externally or internally.Proven track record in driving complex issues and/or process development efforts to successful completionExcellent conceptualization, analytical, and problem solving skillsAbility to understand and relate product technology strategy with all levels of compliance requirements including external legal and regulatory requirements.Experience in conducting root cause analysis    Contribute as an individual and/or as a member of a teamMethodical approach with strong organizational skills to manage multiple opportunities and projects concurrently Passionate, self motivated, creative and flexible.Manage risk by maintaining knowledge of business operational needs, long range goal(s) and visionPossesses unquestionable ethics and integrity, and is willing to take calculated risksExcellent listening and oral/written communication skillsOutstanding interpersonal skills that foster teamwork and that proactively explore alternatives and positions to reach outcomes that secure the support and acceptance of all partiesAdvanced degree in Computer Science, Law or related fieldExperience with Microsoft applications such as MS Visio, Excel and Power Point preferred. Prior experience with healthcare communications standards (e.g. DICOM, HL7) a plusLight physical requirements working in office environment; some travel required