4) Technical and professional questions (the ones that decide the offer)
This is where you separate yourself from “I have a CPC” candidates who can’t explain their decisions. Expect them to test your command of ICD-10-CM specificity, CPT logic, modifier use, edits, and compliance. If you’re interviewing as a Clinical Coder or Medical Coding Specialist, they’ll also look for specialty depth (ED, surgery, cardiology, radiology, ortho, etc.).
Q: How do you decide between ICD-10-CM codes when documentation is borderline—especially for specificity (laterality, acuity, episode of care)?
Why they ask it: They’re testing whether you code to the highest supported specificity without assuming.
Answer framework: Documentation-first ladder (What’s stated → what’s supported → what’s allowed by guidelines). Mention querying.
Example answer: “I code to the highest specificity that’s clearly supported in the provider documentation. If laterality or acuity isn’t documented, I don’t infer it from imaging alone unless our policy allows it and it’s clearly linked in the note. I check the ICD-10-CM guidelines for that chapter and any instructional notes like ‘code also’ or ‘use additional code.’ If the specificity matters for medical necessity or risk adjustment and it’s genuinely unclear, I send a compliant query rather than guessing.”
Common mistake: Upcoding by inference (“the MRI shows it, so I code it”).
Q: Explain how you use CPT modifiers 25, 59, and the X{EPSU} modifiers. When do you avoid them?
Why they ask it: They’re testing whether you understand the highest-risk modifier decisions tied to audits and denials.
Answer framework: Rule + example + guardrail (definition, a clean use case, and a “do not use” line).
Example answer: “Modifier 25 is for a significant, separately identifiable E/M on the same day as a procedure, and the documentation has to show separate work beyond the pre/post of the procedure. Modifier 59 or the X modifiers are about distinct services when an edit would otherwise bundle them; I prefer X{EPSU} when the payer accepts it because it’s more specific. I avoid using 59 as a default ‘denial fixer’—if the documentation doesn’t support distinctness, I don’t force it.”
Common mistake: Treating modifiers as a tool to “make it pay” instead of a documentation-backed statement.
Q: How do you handle NCCI edits and payer-specific edits in your daily coding?
Why they ask it: They want to know if you prevent rejections upstream instead of dumping problems into billing.
Answer framework: Prevent–validate–document (check edits, confirm documentation, leave an audit trail).
Example answer: “I check NCCI edits when I’m coding combinations that commonly bundle—like injections with E/M, multiple procedures, or component codes. If an edit triggers, I verify whether the documentation supports a legitimate exception and whether a modifier is appropriate. For payer-specific rules, I follow our payer matrix or policy notes in the billing system, because what passes Medicare may fail a commercial plan. If we override an edit, I make sure the rationale is clear in the record or internal notes.”
Common mistake: Saying “billing handles edits,” which signals rework and poor ownership.
Q: What’s your approach to E/M coding under the 2021+ office/outpatient guidelines (MDM vs time)?
Why they ask it: They’re testing whether you can code modern E/M correctly—one of the most audited areas.
Answer framework: Choose path + prove it (MDM elements or time documentation). Mention risk.
Example answer: “For office/outpatient E/M, I decide early whether MDM or time is the cleanest supported path. If it’s MDM, I validate the number/complexity of problems, data reviewed/analyzed, and risk of management—making sure the note supports each element. If it’s time, I confirm total time is documented and aligns with the service. I’m careful with high-level codes: if the documentation doesn’t clearly support it, I code conservatively or query.”
Common mistake: Mixing old bullet-style rules with new MDM/time logic.
Q: Which code sets do you use most (ICD-10-CM, CPT, HCPCS Level II), and how do you keep them straight across profee vs facility coding?
Why they ask it: They’re testing whether you understand scope and reimbursement context.
Answer framework: Scope map (setting → code set → common pitfalls).
Example answer: “In outpatient/profee work I’m constantly in ICD-10-CM and CPT, with HCPCS Level II for supplies, drugs, and certain services. Facility coding shifts the focus—revenue codes, charge capture workflows, and sometimes different packaging logic depending on the setting. I keep them straight by confirming at the start of each chart what I’m responsible for coding and what the downstream system expects. When I switch settings, I review the top denial reasons because the pitfalls change.”
Common mistake: Talking about code sets without acknowledging setting-specific rules.
Q: What encoder, EHR, or billing tools have you used (e.g., 3M, Optum, Epic, Cerner), and how do you use them without “coding by software suggestion”?
Why they ask it: They’re testing tool fluency and whether you rely on judgment, not auto-suggest.
Answer framework: Tool + verification (what you used, what it speeds up, what you always verify).
Example answer: “I’ve worked with encoder workflows where the system suggests codes based on terms, and I treat those as a starting point, not an answer key. The tool helps me navigate guidelines, LCD/NCD notes when available, and code relationships faster. But I always verify against the provider’s final documentation and official coding rules, especially for high-risk areas like modifiers, E/M levels, and combination codes. If the suggestion conflicts with the note, the note wins—or I query.”
Common mistake: Saying “the system picks the code,” which sounds like compliance risk.
Q: How do you ensure HIPAA compliance in your day-to-day work, especially in remote coding?
Why they ask it: They’re testing whether you understand privacy/security expectations in US healthcare operations.
Answer framework: Risk controls (environment, access, communication, minimum necessary).
Example answer: “I follow minimum necessary access and only open records I’m assigned. For remote work, I use a private workspace, lock my screen, and avoid printing PHI unless policy requires it. I never discuss patient details in unsecured channels, and I’m careful with screenshots or copying text into messages. If I suspect a privacy issue, I report it through the proper internal process immediately.”
Common mistake: Treating HIPAA like a one-time training instead of daily habits.
Q: What’s your experience with audits (internal QA, payer audits), and how do you respond to audit findings?
Why they ask it: They want someone coachable who won’t get defensive—and who can reduce repeat errors.
Answer framework: Own–analyze–adjust (accept finding, understand root cause, change behavior).
Example answer: “I’ve had internal QA reviews where a few charts were flagged for insufficient documentation to support a modifier. I reviewed each finding, compared it to the guideline/policy, and identified the pattern—where I was being too permissive. I adjusted my personal checklist and asked for clarification on one edge case so I could apply it consistently. The next QA cycle showed improvement, which is what matters.”
Common mistake: Arguing every finding instead of learning from patterns.
Q: If you suspect documentation doesn’t support the billed service, what do you do—especially when there’s pressure to ‘just code it’?
Why they ask it: They’re testing ethics and compliance backbone (OIG risk, fraud/waste/abuse exposure).
Answer framework: Compliance escalation path (clarify → query → policy → escalate).
Example answer: “I don’t code services that aren’t supported. First I re-check the note for supporting details—sometimes it’s there but buried. If it’s genuinely missing, I send a compliant query. If there’s pressure to bill anyway, I refer to policy and escalate to the coding lead or compliance contact, because that’s a risk to the organization and to me professionally.”
Common mistake: Saying you’d “do what your manager wants” without mentioning compliance.
Q: What certifications do you hold (AAPC/AHIMA), and how do you apply that knowledge on the job?
Why they ask it: They’re testing whether your Certified Professional Coder / CPC knowledge shows up in real decisions.
Answer framework: Credential → application → proof (what you hold, how it guides decisions, an example).
Example answer: “I’m a CPC, and I use that foundation daily—especially around CPT guidelines, modifier logic, and compliant documentation requirements. For example, I’m careful with modifier 25 and 59/X modifiers because they’re common audit targets. The certification gave me the rule set; the job taught me how to apply it consistently under real-world documentation constraints.”
Common mistake: Listing credentials like trophies without connecting them to coding judgment.