Privacy Director

WFH role with ~10% travel - onsite to hospitals, ministry-wide

We are seeking a dynamic and collaborative leader to develop and conduct privacy education and investigations across the organization. The role will consist of 70% education and supervision of investigations, 15% Annual Privacy Workplan projects, and 15% committee involvement/partnership across the ministry. We are looking for a candidate who has researched regulatory law, has expert knowledge in HIPAA, has at least 5-7 years of experience in healthcare law (regulatory and transactional), and has experience with privacy-related artificial intelligence issues and GDPR. CHC or CHPC is strongly preferred.

Summary

Oversees all ongoing activities across the group related to the development, implementation, maintenance of, and adherence to the organization's policies and procedures covering the privacy of, disclosure of, and access to, patient health information in compliance with federal and state laws and the healthcare organization's information privacy practices.

Essential Functions

• Builds a strategic and comprehensive privacy program that defines, develops, maintains, and implements policies and procedures that enable consistent, effective privacy practices which minimize risk and ensure the confidentiality of protected health information (PHI); ensure privacy forms, notices, policies, standards, and procedures are up to date.

• Works with organization senior management, to establish a group-wide Privacy Oversight Committee and serve in a leadership role for the Privacy Oversight Committee's activities

• Collaborates with IT Security Director and Information Services Director to ensure alignment between security and privacy programs including policies, practices, and investigations.

• Conducts related ongoing compliance monitoring activities in coordination with the organization's other compliance and operational assessment functions.

• Reviews role-based access controls; oversees audits of access to Protected Health Information (PHI); recommends appropriate action necessary as a result of audit activities.

• Takes a lead role to ensure the organization has and maintains appropriate privacy and confidentiality consents, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.

• Oversees, develops, and delivers ongoing privacy training to the workforce.

• Participates in the development, implementation, and ongoing compliance monitoring of business associates and business associate agreements to ensure all privacy concerns, requirements and responsibilities are addressed.

• Establishes, with management and operations, a mechanism to track access to protected health information, within the purview of the organization and as required by law and to allow qualified individuals to review or receive a report on such activity.

• Establishes and administers a process for receiving, documenting, tracking, investigating, and taking action on all complaints concerning the organization's privacy policies and procedures in coordination and collaboration with other similar functions, when necessary, legal counsel.

• Monitors compliance risk strategies and independently troubleshoots problems while providing sound advice.

Education Qualifications

• Required Minimum Education: Bachelor’s Degree

• Specialty/Major: Law, regulatory affairs, healthcare administration, business, ethics

Licensing/Certification

• Licensure/Certification Preferred: Certified Healthcare Privacy Compliance (CHPC) or Certified Information Privacy Manager (CIPM)

Minimum Qualifications

• Minimum Years and Type of Experience: 5-7 years’ experience in privacy compliance preferably in a healthcare setting

• Experience overseeing and managing privacy-related investigations and key privacy compliance areas; Motivated self-starter with the ability to excel at multi-tasking in a fast-paced environment; Ability to identify problems, analyze data, and present conclusions effectively; Strong communication and organizational skills.