Great companies need great teams to propel their operations. Join the group that solves business challenges and enhances the way we work and grow. Working at Gainwell carries its rewards. You’ll have an incredible opportunity to grow your career in a company that values your contributions and puts a premium on work flexibility, learning, and career development.
Summary
As an Privacy Officer at Gainwell, you can contribute your skills as we harness the power of technology to help our clients improve the health and well-being of the members they serve — a community’s most vulnerable. Connect your passion with purpose, teaming with people who thrive on finding innovative solutions to some of healthcare’s biggest challenges. Here are the details on this position.
Your role in our mission
Essential Job Functions
- Understanding of HIPAA Privacy and Security regulations and state/local privacy laws, including OCR and NIST privacy and security guidance and controls
- Evaluate the day-to-day work conducted on the Client account and conduct risk assessments to determine impact.
- Review Policy Compliance Management and investigate and report on privacy-related incidents.
- Conduct monitoring assessments to ensure staff member compliance with privacy and security procedures and best practices.
- Coordinate full risk assessment every three years. Working knowledge of HIPAA Privacy and Security Rules including HITECH is required. Familiarity with NIST SP 800-53 is preferred.
- Assist in conducting HIPAA new hire training and ongoing privacy training for staff.
- Maintain all documentation supporting HIPAA compliance including Privacy and Security Manual, Risk Management Plan, Incident Response Plan, System Security Plan.
- Work with the client during the annual disaster and recovery drill and other tabletop incident response exercises
- 24/7 availability to address privacy and security emergency incidents as they may affect Gainwell and client operations.
What we're looking for
Required Qualifications
- Five (5) years' experience in corporate privacy activities, including but not limited to: overseeing the establishment, implementation, and adherence to corporate policies on patient privacy, confidentiality, and release of patient information; experience developing, conducting and reporting privacy risk assessments and internal privacy audits; experience overseeing the development and delivery of privacy training and awareness in a government and/or healthcare setting
- Four (4) years of experience in program organization and administration.
- Three (3) years of experience implementing or managing the Health Insurance Portability and Accountability Act of 1996 Privacy Rule.
- Three (3) years of experience managing patient privacy disputes and requests for changes to their medical records.
- Certified Information Privacy Professional (CIPP) certificate.
- Possess a Bachelor's degree or equivalent from an accredited college/university in Public Administration, Business Administration or a related degree. Additional relevant experience may be substituted for the required education on a year-for-year basis, assuming four (4) years for a Bachelor's degree
Desired Qualifications
- Experience with agile principles and development methodologies, and capability of supporting agile teams.
- Experience with government healthcare audit procedures
- Experience in technology management or information security in both government and healthcare environments, including substantial experience with HIPAA, FIPS, FISMA, FedRAMP, NIST, and NIST CSF.
- Demonstrated effective verbal, written, and presentation communication skills.
What you should expect in this role
- Candidate must be willing to work onsite in Roseville, CA
The deadline to submit applications for this posting is 11/15/2024.
#LI-REMOTE
#LI-LM1
#LI-LM1
The pay range for this position is $107,900.00 - $154,100.00 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors. Put your passion to work at Gainwell. You’ll have the opportunity to grow your career in a company that values work flexibility, learning, and career development. All salaried, full-time candidates are eligible for our generous, flexible vacation policy, a 401(k) employer match, comprehensive health benefits, and educational assistance. We also have a variety of leadership and technical development academies to help build your skills and capabilities.
We believe nothing is impossible when you bring together people who care deeply about making healthcare work better for everyone. Build your career with Gainwell, an industry leader. You’ll be joining a company where collaboration, innovation, and inclusion fuel our growth. Learn more about Gainwell at our company website and visit our Careers site for all available job role openings.
Gainwell Technologies is committed to a diverse, equitable, and inclusive workplace. We are proud to be an Equal Opportunity Employer, where all qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical condition), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We celebrate diversity and are dedicated to creating an inclusive environment for all employees.