JO - Health Care Compliance Association
JO - Health Care Compliance Association
JO - Health Care Compliance Association
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
September 2006<br />
14<br />
feature<br />
Editor’s note: Lea Cobb, RN, MBA,<br />
CHC, CPHQ, CPHRM, CLNC; Director<br />
of <strong>Compliance</strong> and Policy, HIPAA<br />
Privacy Officer at Erickson Retirement<br />
Communities was interviewed in July by<br />
HCCA Board Member Jennifer O’Brien.<br />
Lea may be reached by telephone at<br />
443/883-4607.<br />
<strong>JO</strong>: Tell us about your background and<br />
the journey that brought you to your current<br />
role.<br />
LC: I have worked in health care for over<br />
20 years. I began my career and eventual<br />
track to compliance as a home health staff<br />
nurse working in the acute care hospital setting.<br />
After completing my MBA, I started<br />
my career in health care management with<br />
responsibilities for areas such as quality/peer<br />
review, utilization review/case management,<br />
patient safety, JCAHO 1 accreditation, and<br />
risk management in various health care settings.<br />
These settings included rural health<br />
clinics, physician practices, home health services,<br />
and hospitals.<br />
My first compliance position began in<br />
1998, when I became the corporate compliance<br />
officer for a hospital in West Virginia.<br />
In 2000, I moved from West Virginia to<br />
Maryland where I began working in a hospital<br />
as the director of risk management and<br />
performance improvement, and eventually<br />
obtained the corporate compliance officer<br />
responsibilities as well. I had the opportunity<br />
to begin working for Erickson Retirement<br />
Communities, LLC (a continuing care<br />
community management and development<br />
company) in the Risk Management department<br />
with responsibilities for risk management<br />
and compliance. This eventually led<br />
article<br />
Meet Lea Cobb<br />
Director of <strong>Compliance</strong> and Policy, HIPAA Privacy Officer<br />
Erickson Retirement Communities<br />
to my current position as the Director of<br />
<strong>Compliance</strong> and Policy and HIPAA Privacy<br />
Officer. I saw the career move to Erickson<br />
Retirement Communities as an exciting challenge,<br />
since I had many years of experience<br />
in a variety of other health care settings.<br />
<strong>JO</strong>: What are some of your responsibilities<br />
as Director of <strong>Compliance</strong> and Policy?<br />
LC: Simply stated, I oversee all on-going<br />
compliance and ethics activities throughout<br />
the organization. These activities are<br />
related to the development, implementation,<br />
maintenance of, and adherence to the organization’s<br />
policies and procedures governing<br />
compliance. The privacy of and access to<br />
protected health information and compliance<br />
with federal and state laws also falls<br />
within the scope of my responsibilities. This<br />
includes: conducting an organizational compliance<br />
risk assessment; ensuring on-going<br />
compliance monitoring activities; reporting<br />
compliance activities to the Erickson and<br />
community boards and <strong>Compliance</strong> and<br />
Ethics committee; ensuring compliance education<br />
and training for all employees, board<br />
members, management and professional<br />
staff; conducting compliance investigations;<br />
and maintaining the organization’s values<br />
line. I work closely with the HIPAA security<br />
officer to ensure alignment between security<br />
and privacy practices, policies and procedures.<br />
<strong>Health</strong> <strong>Care</strong> <strong>Compliance</strong> <strong>Association</strong> • 888-580-8373 • www.hcca-info.org<br />
<strong>JO</strong>: What is your reporting structure?<br />
LC: The chief compliance officer reports<br />
to our four boards of directors. As the director<br />
of compliance and policy and HIPAA<br />
privacy officer, I report to the chief compliance<br />
officer. Each of the Continuing<br />
<strong>Care</strong> Retirement Communities (CCRCs)<br />
has a community compliance liaison who<br />
manages compliance responsibilities at the<br />
community level. Community management<br />
and corporate line of business management<br />
also play a roll in the reporting structure of<br />
compliance. There is also a HIPAA security<br />
officer in the Information Technology<br />
department with whom I work on HIPAA<br />
initiatives. The <strong>Compliance</strong> and Ethics committee<br />
consists of representatives from legal,<br />
health services, finance, compliance, senior<br />
campus physicians, information technol-