Meet Debra A. Muscio

An interview by Margaret Hambleton

This interview with Debra Muscio (dmuscio@communitymedical.org) was conducted by Margaret Hambleton (Margaret@hambletoncompliance.com), President of Hambleton Compliance, LLC. Margaret is also Immediate Past President of SCCE & HCCA.

Debra A. Muscio, MBA, CHC, CCE, CFE, CHP, Senior Vice President, Chief Audit, ERM, Privacy, Security, Ethics and Compliance Officer, Community Medical Centers, Clovis, CA

MH: You and I had a chance to talk a bit about your current position while at the 2019 Compliance Institute, and I love your title as Senior Vice President, Chief Audit, ERM, Privacy, Security, Ethics and Compliance Officer. Can you tell our readers about your current position and how all these elements came together?

DM: My current position has five areas—audit, enterprise risk management, privacy, information security, and compliance—which all relate to keeping the pulse on integrity and risk. I began my career in the finance world and quickly learned I needed to know more, so I moved into internal audit. When I started in the healthcare internal audit arena, I knew I found my home. Healthcare has a mission (helping others) and is ever changing (to be better) and I believe in both. My passion for being the best I could be, helping my community and employer be the same, and utilizing my high level of integrity, it was a given that when Compliance came to healthcare, it was meant to be an additional area for my focus.

Back in the 1990s, I went to the chair of the audit and compliance committee and CEO and volunteered to be the compliance officer, noting that I would take on the role and make it successful (and I did just that). I was in my element—training, mentoring, and advocating a change for doing the right thing. I was the lifeguard striving for the just right culture. While leading audit and compliance, I was very close to the CIO [chief information officer], because I had an information systems audit background with additional training from Simi Valley in hacking and cyber security. This knowledge led me to be a member of steering committees for disaster recovery and information security.

I also was very close to the leader of HIM [health information management], due to all the compliance initiatives and external audits. As privacy concerns came to my attention, we started a privacy committee. Then I moved from Connecticut to California, taking the chief audit and compliance officer position. Privacy and security have compliance as the key focus, and the CEO as well as the audit and compliance committee and I felt that under the compliance office, I could build the privacy and security compliance programs. I welcomed the opportunity. My vision was compliance with privacy and security would be the reviewers, the eyes on these operational areas, to ensure compliance and be or support the trainers when changes need to happen. Compliance would work with internal audit when a violation was noted to utilize their skill set to quantify and remediate. What a full circle team to address risks and concerns!

This document is only available to members. Please log in or become a member.
Become a Member Login


Would you like to read this entire article?

If you already subscribe to this publication, just log in. If not, let us send you an email with a link that will allow you to read the entire article for free. Just complete the following form.

* required field

First name field cannot be blank!
Last name field cannot be blank!
We will send you an email that will give you access to this entire article.
Email field cannot be blank!
Enter a valid email!
Company field cannot be blank!
Enter a valid company!
Title field cannot be blank!

We're committed to your privacy. The Society of Corporate Compliance and Ethics (SCCE) & Health Care Compliance Association (HCCA) uses the information you provide us to contact you about our relevant content, products, and services. For more information, check out our Privacy Policy.


About SCCE

The Society of Corporate Compliance and Ethics (SCCE) is a non-profit, member-based professional association. SCCE supports our members' work with education, news, and discussion forums. We are a community of leaders, defining and shaping the corporate compliance environment across a wide range of industries and geographic regions. In developing and maintaining effective ethics and compliance programs, our members strengthen and protect their companies.

952.933.4977

About HCCA

The Health Care Compliance Association (HCCA), is a 501(c)6 non-profit, member-based professional association. HCCA was established in 1996 and is headquartered in Minneapolis, MN. We provide training, certification, and other resources to over 10,000 members. Our members include compliance officers and staff from a wide range of organizations, including hospitals, research facilities, clinics and technology service providers.

952.988.0141

Facebook Twitter LinkedIn
Copyright © 2024 by Society of Corporate Compliance and Ethics (SCCE) & Health Care Compliance Association (HCCA). No claim to original US Government works. All rights reserved. All information provided through this site, including without limitation all information such as the “look and feel” of the site, data files, graphics, text, photographs, drawings, logos, images, sounds, music, video or audio files on this site, is owned and/or licensed by SCCE & HCCA or its suppliers and is subject to United States and international copyright, trademark and other intellectual property laws. Any third party logos and/or content provided herein is owned by such third parties and is used by permission herein. Your use of this site to is subject to our Terms Of Use and Privacy Statement.
Cookie settings