New Opportunity! Woven Health Collective is a healthcare marketing, strategy, and science communications company, dedicated to revolutionizing healthcare through innovative solutions and collaborative partnerships. Our unwavering commitment to empathy and collaboration ensures that both our team and clients experience a rewarding journey, where innovation not only advances healthcare but also enriches lives.

At Woven Health Collective, you will be empowered to bring your authentic self to work and unlock your full potential. Come join our growing team!

***This is a 6-month Contract Position***

Job Summary

The Sr. Ethics and Compliance Manager is responsible for the execution, maintenance, and continuous improvement of the agency’s ethics, compliance, and information-governance programs. This role ensures the organization meets client, contractual, and ethical obligations—particularly within a medical communications and conflict-shop environment—while supporting efficient delivery of client work.

This is a hands-on role suited for a compliance professional who can operate independently, translate requirements into practical processes, and partner cross-functionally to embed compliance into everyday operations.

Job Responsibilities and Skills

Compliance Program Execution

• Execute and maintain the agency’s Compliance roadmap, escalating risks, gaps, or resourcing needs to leadership.
• Translate client, legal, and regulatory requirements into operational workflows and controls.
• Track compliance initiatives, risks, and remediation actions; prepare summaries and materials for leadership review.

Conflict Tracking & Awareness

• Administer and maintain the conflict tracking process, including documentation, updates, and periodic reviews.
• Support new business and project staffing decisions by identifying potential conflicts and required mitigations.
• Assist in implementing conflict-mitigation measures (e.g., team segmentation, disclosures, access restrictions).

Data Access, Classification, & Need-to-Know Alignment

• Maintain data classification guidelines and support education on appropriate data handling.
• Partner with IT, Operations, and Delivery resources to ensure role-based and need-to-know data access is applied appropriately.
• Coordinate quarterly reviews of system access and user permissions.
• Support monitoring activities related to data access and usage, escalating potential issues.
• Assist with identifying sensitivity labels and Data Loss Prevention (DLP) policies for client/internal systems.

Policies, SOPs, & Documentation

• Draft, update, and maintain ethics, compliance, confidentiality, and information-security policies.
• Develop and maintain SOPs that clearly document compliance-related processes.
• Ensure policies and SOPs are accessible, understood, and consistently applied.

Compliance Training & Enablement

• Coordinate and administer compliance training programs, including onboarding and routine refreshers.
• Track training completion and follow-up on outstanding requirements.
• Assist in developing role-specific or scenario-based training as needed.

Compliance Council & Cross-Functional Support

• Serve as the program lead and coordinator for the Compliance Council.
• Prepare materials, facilitate meetings, document decisions, and track follow-ups.
• Partner with stakeholders across IT, Operations, and Client Services to implement agreed actions.

Compliance Tools & Systems Support

• Support evaluation, implementation, and administration of compliance-related tools (e.g., conflict tracking, training management, access review tools).
• Partner with IT to ensure sufficient technical & system support is in place
• Maintain documentation and user guidance for compliance systems.

Client Contracts & Client-Driven Compliance

• Review client contracts, MSAs, and SOWs, DPA’s to identify compliance-related obligations such as GDPR or Restricted Data Transfer.
• Partner with IT, Ops, and Client Services to ensure operational alignment with contractual requirements.
• Support completion of client compliance questionnaires, attestations, and due diligence requests.

Audits, Monitoring & Issue Management

• Support internal compliance reviews and readiness checks.
• Coordinate internal and external compliance audits, including evidence collection and response tracking.
• Assist in investigating compliance concerns and documenting corrective actions
• Support response to compliance or data incidents, coordinating investigation, documentation, and remediation.
• Partner with IT on Vendor Risk Assessments and develop system for efficient client responses

Minimum Qualifications

• 5+ years of experience in ethics, compliance, risk management, or information governance, preferably within medical communications, life sciences, healthcare, or professional services.
• Experience working in conflict-of-interest or highly confidential environments.
• Working knowledge of data confidentiality, access controls, and information-security concepts.
• Strong organizational skills with the ability to manage multiple initiatives simultaneously.
• Comfortable working independently while collaborating closely with cross-functional partners.
• Experience with SOC 2 audits, CCPA, GDPR, HIPAA, Sunshine Act compliance.
• Comfortable responding to client risk assessments.

Disclaimer

Woven Health Collective provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.