Privacy Officer Jobs

The Privacy Officer is a member of the Office of Corporate Compliance and reports directly to the Chief Compliance Officer. This position is responsible for privacy matters impacting the organization and works in collaboration with the Chief Information Security Officer. As Privacy Officer, this position oversees HHC/MCPHD’s privacy program, including develop and implementation, maintenance and compliance with information privacy policies and procedures. This position works with various senior leaders, directors, and managers as well as Information Security (“IS”), IT, Human Resources, Finance, Legal and Operations.

• Establishes a mechanism to track access to protected health information and to allow qualified individuals to review or receive a report on such activity.
• Responsible for developing, implementing, monitoring, training, reporting and oversight of the privacy program for HHC/MCPHD.This position works in collaboration with those departments responsible for maintaining privacy and security of medical, proprietary, confidential information consistent with regulatory requirements.The position also collaborates with Human Resources in determining sanctions for noncompliance.
• Provides and/or directs privacy training for employees, volunteers, contractors, business associates and others.
• Monitors advancements in information privacy technologies to ensure organizational adaptation and compliance.
• Performs information privacy risk assessments and conducts related ongoing privacy compliance monitoring activities.
• Leads an organization-wide HIPAA Steering Committee.
• Reporting noncompliance to external agencies with assistance and guidance from the chief compliance officer including implementing action necessary to address problems and prevent re-occurrence.
• Reviews, negotiates and monitors business associate agreements, non-disclosure agreements, and data sharing agreements.
• Works cooperatively with HIM and others to oversee patient rights to inspect, amend and restrict access to their electronic health record when appropriate.
• Serves as the subject matter expert for the organization in privacy matters including information blocking
• Ensures the organization has and maintains compliant privacy and confidentiality consents, authorization forms, information notices and other materials.
• Responsible for investigating and responding to privacy complaints.
• Monitors and educates on changes in privacy regulations.
• Collaborates with Information Security to review HHC/MCPHD/IEMS/Eskenazi Health’s system-related information security plans to ensure alignment and consistency with security and privacy practices.

Job Requirements

• Certification in Health Care Privacy, Information Privacy, or Healthcare Compliance (CHPC, CIPP/US, CIPM, CHC, or equivalent) strongly preferred
• Eight years of relevant experience working in health care privacy
• Master’s in Health Care Administration, Business, or closely related field
• Juris Doctor from ABA-accredited law school preferred