Assistant Privacy Officer

We are more than a health system. We are a belief system. We believe wellness and sickness are both part of a lifelong partnership, and that everyone could use an expert guide. We work hard, care deeply and reach further to help people uncover their own power to be healthy. We inspire hope. We learn, grow, and achieve more – in our careers and in our communities.

Job Description Summary:

The purpose of this position is to be OhioHealth's Privacy subject matter expert ensuring OhioHealth's compliance with all applicable federal and state privacy laws including the Health Insurance Portability and Accountability Act (HIPAA). The position has diverse and complex duties necessitating a high level of contact and exposure to highly confidential information. The position will: (1) serve as the Privacy Officer for OhioHealthy; (2) conduct investigations where there is an allegation of a privacy violation and manage direct reports that do the same; Conducting investigations includes communicating with patients and stakeholders, conducting interviews, coordinating resolution and implementing corrective action.; (3) conduct and/or manage ePHI auditing using a software tool that utilizes machine learning; (4) develop and, as appropriate, deliver privacy training, including annual and initial workforce privacy education; and (5) participate in the risk assessment process and, as appropriate, develop and implement appropriate controls to mitigate privacy risk.

Responsibilities And Duties:

40%
Responds to questions, concerns, and allegations of noncompliance related to privacy laws and regulations.

Response may include communicating with patients, government officials, community members and workforce members.

Response may also require a subsequent investigation that may require interviews, fact gathering, analyzing audit logs, developing a root cause analysis, and implementing corrective action plan.

A portion of the response includes documentation of response and, as appropriate, the subsequent investigation in a software tool.

This work may require coordination with other departments, including but not limited to Information Security, Office of the General Counsel, Human Resources, etc. 

20%
Manages a team of Compliance Analysts responsible for responding to questions, concerns, and allegations of noncompliance related to privacy laws and regulations.

Management would include, but is not limited to, monitoring documentation for accuracy, mentoring team to improve knowledge of HIPAA and other privacy laws or regulations and distributing work.

20%
Developing and, as appropriate, providing training, education, and other awareness-building activities designed to promote a culture of privacy protection and related to privacy laws, regulations, and OhioHealth policy.

10%
Attends and actively participated in appropriate governance and other committees to represent the privacy team and provide guidance.

Identifies privacy risks and issues then helps designs solutions and risk management strategies to achieve business objectives while promoting privacy compliance. 

Tracks, trends, and analyzes privacy data and prepares related reports for leadership and governance bodies. 

10%
Serves as the OhioHealthy Privacy Officer which includes writing or editing applicable policies.


The listed above are not intended to be all inclusive of the duties, responsibilities, and tasks to be performed by an associate in this job.  Associate is expected to perform other duties as requested by leadership. 

Minimum Qualifications:

Bachelor's Degree (Required)

Additional Job Description:

SPECIALIZED KNOWLEDGE

• Field of Study: Business, Health Information Management, Law, or related Field of Study required.

• Knowledge and Experience in Health Information Portability and Accountability Act (HIPAA), other privacy laws, conducting investigations, and experience conducting electronic Protected Health Information (ePHI) auditing. 

• Attention to detail.

• Demonstrated organization, facilitation, communication, listening, and presentation skills.

• Able to work independently and as part of a team (inter and intra-departmental teams). 

• High degree of Integrity and business judgment.

• Proficient knowledge of Microsoft Office products (Word, Excel, and PowerPoint) and experience with EPIC electronic medical record.

• Outstanding customer service skills.

• Experience handling sensitive and confidential information with discretion.

• Six (6) years or more progressive related work Experience or Degree including five (5) years related healthcare work experience. 

• Strong leadership, influencing and relationship-building abilities required. 

• Demonstrated ability to foster collaboration among diverse team members; develop individuals and teams by providing effective feedback and coaching, delegating, empowering, and removing obstacles. 

Work Shift:

Day

Scheduled Weekly Hours :

40

Department

Ethics And Compliance Office

Join us!
... if your passion is to work in a caring environment
... if you believe that learning is a life-long process
... if you strive for excellence and want to be among the best in the healthcare industry

Equal Employment Opportunity

OhioHealth is an equal opportunity employer and fully supports and maintains compliance with all state, federal, and local regulations. OhioHealth does not discriminate against associates or applicants because of race, color, genetic information, religion, sex, sexual orientation, gender identity or expression, age, ancestry, national origin, veteran status, military status, pregnancy, disability, marital status, familial status, or other characteristics protected by law. Equal employment is extended to all person in all aspects of the associate-employer relationship including recruitment, hiring, training, promotion, transfer, compensation, discipline, reduction in staff, termination, assignment of benefits, and any other term or condition of employment 

Remote Work Disclaimer:

Positions marked as remote are only eligible for work from Ohio.