Privacy Associate II

Horizon BCBSNJ employees must live in New Jersey, New York, Pennsylvania, Connecticut or Delaware

Job Summary:

The Privacy Associate II is responsible for performing a variety of information governance and privacy compliance activities to ensure proper use, collection and storage of information throughout the organization, including the application of privacy by design principles to mitigate privacy risk and maintain the organization’s compliance with relevant laws, regulations, industry standards and company policies. This position will also manage the investigation of reports of potential non-compliance, lead risk assessments and conduct other activities to support Horizon BCBSNJ’s Office of Information Governance and Privacy.Responsibilities:

• Evaluate enterprise initiatives to ensure information handling conforms to applicable legal, regulatory and policy requirements. Coordinate the process and serve as the contact person.
• Identify potential privacy risks of collecting, maintaining and disseminating information and evaluate alternatives to mitigate.
• Provide privacy regulation expertise to functional or operational areas of the business.
• Interpret federal/state regulations, as applicable to privacy policies and procedures, and advises business units on implementation of requirements.
• Promote effective relationships with business areas; Partner with business areas on the creation of development of appropriate Corrective Action Plans (CAPs).
• Independently investigate, or manage the investigation of, privacy-related issues, as well as, performs assessments of the organization’s privacy compliance including determining root cause, and developing corrective action plans with other business units, as needed.
• Perform detailed data analysis to identify trends in privacy and information governance risks and appropriate mitigations.
• Lead the development and delivery of relevant privacy compliance training to both internal and external audiences (from individual contributors up to managers, directors and higher).
• Ensure Horizon’s privacy standards & policies are understood by the workforce, vendors and other business related third- parties.
• Identify and develop value added metrics; analyze root causes, trends, and systemic issues and prepare reports for senior management and the Board of Directors.
• Interact with OCR or other regulatory agencies for matters relating to privacy and security of Protected Health Information, including investigating issues identified by regulatory agencies and preparing reports.
• Serve as a seasoned resource and subject matter expert to other members of the privacy team. Mentor and support junior staff; perform quality reviews of junior staff work product.
• Independently manage special projects and ad-hoc tasks from management.

Addendum:

• May assist in researching and reviewing information governance and privacy policies, terms of service, and other legal documents related to privacy and information governance.
• May support information governance activities including monitoring for compliance to information governance policies, identifying risks and delivering training programs and awareness campaigns.
• Support the team in managing data access requests and other privacy-related inquiries and/or cases and complaints.
• Coordinate with internal stakeholders to ensure compliance with privacy laws and regulations.
• Assist in the preparation of privacy impact assessments and compliance reports.

Disclaimer:

This job summary has been designed to indicate the general nature and level of work performed by colleagues within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of colleagues assigned to this job.

• High School Diploma/GED required.
• Bachelor degree preferred or relevant experience in lieu of degree.
• Requires a minimum of five years of compliance experience in a health care environment or the health insurance industry.
• Requires a minimum of three years of experience in a privacy compliance role.

Additional Licensing, Certifications, Registrations:

• Prefers certification as a privacy professional from an organization such as IAPP, HCCA or similar.

Knowledge:

• Requires in-depth knowledge of the Federal and State regulatory environment in the health insurance industry, with emphasis on HIPAA privacy and security rules, as well as other state and federal privacy laws.
• Knowledge of Privacy by Design principles.
• Requires proficiency in the use of personal computer and supporting software including Microsoft Office (Word, Excel, Outlook and PowerPoint).
• Experience with conducting privacy risk assessments preferred.

​

Skills and Abilities:

• Requires strong communication and presentation skills.
• Can convey clear and concise ideas and facts orally and written.
• Requires the ability to research and resolve problems through interaction with companywide personnel.
• Excellent organization and an ability to manage multiple priorities and shifting priorities.
• Able to interpret regulations and effectively apply them to business processes.
• Data analysis.
• Attention to detail.
• Ethics and integrity.
• Requires the ability to work independently.

Salary Range:

$68,500 - $91,665

​This compensation range is specific to the job level and takes into account the wide range of factors that are considered in making compensation decisions, including but not limited to: education, experience, licensure, certifications, geographic location, and internal equity. This range has been created in good faith based on information known to Horizon at the time of posting. Compensation decisions are dependent on the circumstances of each case. Horizon also provides a comprehensive compensation and benefits package which includes:

• Comprehensive health benefits (Medical/Dental/Vision)

• Retirement Plans

• Generous PTO

• Incentive Plans

• Wellness Programs

• Paid Volunteer Time Off

• Tuition Reimbursement

Horizon Blue Cross Blue Shield of New Jersey is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or status as an individual with a disability and any other protected class as required by federal, state or local law. Horizon will consider reasonable accommodation requests as part of the recruiting and hiring process.