I am a builder at heart. I create programs, protections, and infrastructure that hold up under pressure. With well over a decade of experience leading compliance, privacy, and risk across non-profits, hospital systems, digital health organizations, and value-based care platforms, I’ve witnessed how easy it is for well-intentioned teams to get lost in complexity.

That’s where I come in. I work side by side with mission-driven leaders to bring clarity to the gray areas, strengthen the backbone of their operations, and turn ethics into action. Whether I am mapping risks, drafting regulatory compliance plans, responding to crises, or mentoring teams, I lead with integrity and help others do the same.

My approach is hands-on, collaborative, and grounded in the belief that trust isn’t just a value — it’s a system that must be thoughtfully designed and carefully maintained.

I’m always eager to connect with others who are passionate about building trust and integrity in healthcare. If you’re interested in collaborating, learning more, or just starting a conversation, I’d love to hear from you.

Credentials

• Certified in Healthcare Compliance (CHC)

• Certified in Healthcare Privacy Compliance (CHPC)

• Master of Legal Studies in Healthcare Law, Cybersecurity, and Data Privacy Law — Seton Hall University

• Bachelor of Science in Healthcare Management — New York University

Selected Projects & Leadership Highlights

Compliance Program Architecture

Built and scaled enterprise compliance programs for digital health startups, hospital systems, and nonprofit healthcare organizations. Designed policies, training, auditing frameworks, and governance aligned with HIPAA, 42 CFR Part 2, SOC 2, and OIG guidelines.

Multistate Clinical Staffing & Licensure Compliance

Developed a scalable staffing model to support care delivery across multiple states. Aligned scope of practice, licensure, and professional board requirements with operational workflows — ensuring compliance across MSO/PC structures and telehealth regulations.

Risk & Privacy Governance for Telehealth Expansion

Led organization-wide risk assessments to support growth across all 50 states and regulatory strategy in partnership with executive leadership and legal counsel.

Incident Response & Breach Management

Directed investigations and response efforts for high-impact privacy incidents. Coordinated regulatory reporting, stakeholder communications, and post-incident remediation — all with zero civil penalties and improved organizational readiness.

Compliance & Ethics Committee Development

Launched and facilitated cross-functional Compliance Committees to embed accountability across clinical, technical, and operational teams. Defined charters, risk ownership, and reporting mechanisms to support sustainable governance.

Compliance Champion Program & Culture-Building

Designed and launched a Compliance Champion Spotlight Program to elevate frontline awareness and engagement. Delivered regular “Lunch & Learn” sessions across clinical, engineering, and business teams to demystify compliance and embed it into day-to-day operations.

Operationalizing 21st Century Cures & Interoperability Requirements

Implemented policies and workflows to support ONC information blocking compliance and transparent patient data access. Worked closely with product and engineering teams to translate regulatory requirements into system design and documentation.

Medicaid Managed Care Program Integrity

Redesigned a Medicaid Managed Care oversight program, including vendor monitoring, encounter data validation, and internal auditing protocols — with a focus on compliance in high-risk and underserved markets.

Research Compliance Program Launch

Established a research compliance program within an academic medical center. Developed IRB coordination processes, human subjects protection policies, and NIH grants compliance monitoring aligned with 45 CFR Part 46 and 42 CFR Part 50.

HITRUST & SOC 2 Readiness

Led cross-functional efforts to prepare for HITRUST and SOC 2 Type 2 certification. Developed internal control maps, policy documentation, risk assessments, and evidence-gathering strategies in collaboration with engineering, security, and legal teams.