Sr. HIPAA Privacy Expert

72% Flex
Full Remote
Senior (5-10 years)
81 - 102 K yearly
Remote from:United States
Request priority access (3/3)

Sr. HIPAA Privacy Expert

72% Flex
Remote: Full Remote
Salary: 81 - 102K yearly
Experience: Senior (5-10 years)
Work from: United States...

Offer summary


5-7 years of direct experience, Knowledge of HIPAA and state privacy laws, Experience in negotiating HIPAA-related contracts, Bachelor's degree or equivalent work experience.

Key responsabilities:

  • Manage HIPAA privacy compliance program
  • Develop and deliver privacy training
  • Review Business Associate Agreements, investigate complaints, manage breaches
  • Maintain HIPAA website, oversee vendor management program


201 - 500 Employees

Job description

Logo Jobgether

Your missions

UNITE HERE HEALTH serves 190,000+ workers and their families in the hospitality and gaming industry nationwide. Our desire to be innovative and progressive drives us to develop impactful programs and benefits designed to engage our participants in managing their own health and healthcare. Our vision is exciting and challenging. Please read on to learn more about this great opportunity!


The Senior Hippa Privacy Expert will review, update and manage the Fund’s HIPAA privacy compliance program, including investigating and managing privacy and security incidents and supporting the management of breaches.  The Hippa Expert will manage the vendor management program, develop HIPAA training, analyze privacy risks, and interact with various business areas across the enterprise to ensure compliance with all relevant federal and state privacy regulations. In addition, this position will negotiate Business Associate Agreements and Data Use Agreements, oversee the privacy awareness program, as well as maintain the HIPAA website.  The Hippa Expert will participate and support many other privacy initiatives and activities.




  • Reviews Business Associate Agreements (BAAs), oversees maintenance of BAAs, educates employees on when they are needed and fields questions
  • Documents, tracks, and investigates complaints and incidents; prepares reports, findings and recommendations
  • Manages identified privacy breaches to ensure that all reports are filed, root cause analysis is performed and controls are initiated to prevent loss of protected health information  
  • Manages the Fund’s vendor management program, including review of all the vendor privacy and security surveys, identifying any vendor privacy risks and working with the vendor and Fund staff to mitigate those privacy risks
  • Advises the Privacy Officer in ensuring proper reporting of violations or potential violations to oversight agencies as appropriate and/or required
  • Advises workforce member regarding appropriate use and disclosure of Protected Health Information (PHI); ensures consistent application of policies in response to such inquiries and consistent documentation of such requests
  • Creates and delivers  security and privacy awareness and compliance training to all employees, applicable contractors, and other parties, including new hire HIPAA orientation for new employees as well as ongoing training for all employees and managers
  • Develops, reviews and updates policies, procedures, forms and processes to afford participants their privacy rights, including access and copy of their PHI, amendment of their PHI, accounting of disclosures of their PHI, requests for restrictions of the use and release of their PHI, requests for confidential communications, filing of complaints about privacy practices, and maintenance and dissemination of the Notice of Privacy Practices and ongoing maintenance of these materials to ensure alignment to current industry trends and regulatory changes
  • Manages the HIPAA webpages on the Fund’s internal website to ensure it has up to date documents
  • Oversees maintenance of documentation for facility access controls in all offices
  •  Responsible for Privacy’s role in the Fund’s process for controlling employee access to information systems containing protected health information
  • Partners collaboratively with HIPAA Security team regarding privacy issues related to electronic media or systems development
  • Monitors and audits compliance with the organization’s policies and procedures, contractual obligations, individual privacy rights, and federal and state privacy and security regulations
  • Works across all departments to identify privacy risks, trends, vulnerabilities, and research solutions for risk mitigation
  • Develops, manages and implements privacy plans for specific risks identified due to operational or regulatory changes
  • Partners with organizational stakeholders and senior management to ensure consistent application of privacy laws and regulations and to resolve common privacy issues
  • Maintains current knowledge of privacy regulations, including contractual and operational issues involving HIPAA and other regulations and laws affecting a national healthcare company, and assisting businesses and regions to adapt business practices when necessary to ensure compliance
  • Conducts research on privacy laws and policy issues, and pending privacy legislation and proposals
  • Advises the Privacy Officer through active participation on committees, task forces and working groups, by gathering information for, or providing advice, opinions, recommendations, or ideas to the Privacy Officer  



  • 5 ~ 7 years of direct experience 
  • Working knowledge and experience with researching, analyzing, and interpreting laws and regulations
  • Direct knowledge and experience with HIPAA and state privacy laws
  • Working knowledge and experience in welfare benefit plans and ERISA (preferred)
  • Experience in working in a matrix organization across multiple geographic areas 
  • Experience reviewing and negotiating HIPAA-related contracts, including business associate agreements, data use agreements, data processing agreements and confidentiality agreements
  • Experience conducting privacy impact assessments and privacy risk assessments
  • Bachelor's degree or equivalent work experience
  • Privacy related certification (preferred)


Salary range for this position: Salary $81,400 - $101,700. Actual base salary may vary based upon, but not limited to: relevant experience, qualifications, expertise, certifications, licenses, education or equivalent work experience, time in role, peer and market data, prior performance, business sector, and geographic location.

Work Schedule (may vary to meet business needs): Monday~Friday, 7.5 hours per day (37.5 hours per week) with potential for hybrid work-from-home arrangement.

We reward great work with great benefits, including but not limited to: Medical, Dental, Vision, Paid Time-Off (PTO), Paid Holidays, 401(k), Pension, Short- & Long-term Disability, Life, AD&D, Flexible Spending Accounts (healthcare & dependent care), Commuter Transit, Tuition Assistance, and Employee Assistance Program (EAP).


See more

Required profile


Level of experience:Senior (5-10 years)
Industry :
Spoken language(s):
Check out the description to know which languages are mandatory.

Soft Skills

  • Analytical thinker
  • Excellent communication skills

Go Premium: Access the World's Largest Selection of Remote Jobs!

  • Largest Inventory: Dive into the world's largest remote job inventory. More than half of these opportunities can't be found on standard platforms.
  • Personalized Matches: Our AI-driven algorithms ensure you find job listings perfectly matched to your skills and preferences.
  • Application fast-lane: Discover positions where you rank in the TOP 5% of applicants, and get personally introduced to recruiters with Jobgether.
  • Try out our Premium Benefits with a 7-Day FREE TRIAL.
    No obligations. Cancel anytime.

Find other similar jobs


Go Premium Today!
Unlock Unlimited Access to the Largest Remote Job Platform!