Assistant Privacy Officer

Work set-up: 
Full Remote
Contract: 
Experience: 
Senior (5-10 years)
Work from: 

Offer summary

Qualifications:

Bachelor's Degree in Business, Health Information Management, Law, or related field., Minimum of 5 years of healthcare-related work experience, with at least 6 years of progressive experience., Knowledge of HIPAA and other privacy laws, with experience in investigations and ePHI auditing., Strong communication, organization, and leadership skills, with proficiency in Microsoft Office and EPIC electronic medical records..

Key responsibilities:

  • Serve as OhioHealth's Privacy Officer and main contact for privacy compliance.
  • Respond to privacy-related questions, concerns, and allegations, including investigations and documentation.
  • Develop and deliver privacy training and awareness programs to staff.
  • Participate in governance committees, identify privacy risks, and develop strategies to mitigate them.

OhioHealth logo
OhioHealth XLarge http://www.ohiohealth.com/
10001 Employees
See all jobs

Job description

We are more than a health system. We are a belief system. We believe wellness and sickness are both part of a lifelong partnership, and that everyone could use an expert guide. We work hard, care deeply and reach further to help people uncover their own power to be healthy. We inspire hope. We learn, grow, and achieve more – in our careers and in our communities.

Job Description Summary:

The purpose of this position is to be OhioHealth's Privacy subject matter expert ensuring OhioHealth's compliance with all applicable federal and state privacy laws including the Health Insurance Portability and Accountability Act (HIPAA). The position has diverse and complex duties necessitating a high level of contact and exposure to highly confidential information. The position will: (1) serve as the Privacy Officer for OhioHealthy; (2) conduct investigations where there is an allegation of a privacy violation and manage direct reports that do the same; Conducting investigations includes communicating with patients and stakeholders, conducting interviews, coordinating resolution and implementing corrective action.; (3) conduct and/or manage ePHI auditing using a software tool that utilizes machine learning; (4) develop and, as appropriate, deliver privacy training, including annual and initial workforce privacy education; and (5) participate in the risk assessment process and, as appropriate, develop and implement appropriate controls to mitigate privacy risk.

Responsibilities And Duties:

50%
Responds to questions, concerns, and allegations of noncompliance related to privacy laws and regulations.
Response may include communicating with patients, government officials, community members and workforce members.
Response may also require a subsequent investigation that may require interviews, fact gathering, analyzing audit logs, developing a root cause analysis, and implementing corrective action plan.
A portion of the response includes documentation of response and, as appropriate, the subsequent investigation in a software tool.
This work may require coordination with other departments, including but not limited to Information Security, Office of the General Counsel, Human Resources, etc. 

25%
Developing and, as appropriate, providing training, education, and other awareness-building activities designed to promote a culture of privacy protection and related to privacy laws, regulations, and OhioHealth policy.
15%
Attends and actively participated in appropriate governance and other committees to represent the privacy team and provide guidance.
Identifies privacy risks and issues then helps designs solutions and risk management strategies to achieve business objectives while promoting privacy compliance. 
Tracks, trends, and analyzes privacy data and prepares related reports for leadership and governance bodies. 
10%
Serves as the OhioHealthy Privacy Officer which includes writing or editing applicable policies.

The listed above are not intended to be all inclusive of the duties, responsibilities, and tasks to be performed by an associate in this job.  Associate is expected to perform other duties as requested by leadership. 

Minimum Qualifications:

Bachelor's Degree (Required)

Additional Job Description:

SPECIALIZED KNOWLEDGE

  • Field of Study: Business, Health Information Management, Law, or related Field of Study required.

  • Knowledge and Experience in Health Information Portability and Accountability Act (HIPAA), other privacy laws, conducting investigations, and experience conducting electronic Protected Health Information (ePHI) auditing. 

  • Attention to detail.

  • Demonstrated organization, facilitation, communication, listening, and presentation skills.

  • Able to work independently and as part of a team (inter and intra-departmental teams). 

  • High degree of Integrity and business judgment.

  • Proficient knowledge of Microsoft Office products (Word, Excel, and PowerPoint) and experience with EPIC electronic medical record.

  • Outstanding customer service skills.

  • Experience handling sensitive and confidential information with discretion.

  • Six (6) years or more progressive related work Experience or Degree including five (5) years related healthcare work experience. 

  • Strong leadership, influencing and relationship-building abilities required. 

  • Demonstrated ability to foster collaboration among diverse team members; develop individuals and teams by providing effective feedback and coaching, delegating, empowering, and removing obstacles. 

Work Shift:

Day

Scheduled Weekly Hours :

40

Department

Ethics And Compliance Office

Join us!
... if your passion is to work in a caring environment
... if you believe that learning is a life-long process
... if you strive for excellence and want to be among the best in the healthcare industry

Equal Employment Opportunity

OhioHealth is an equal opportunity employer and fully supports and maintains compliance with all state, federal, and local regulations. OhioHealth does not discriminate against associates or applicants because of race, color, genetic information, religion, sex, sexual orientation, gender identity or expression, age, ancestry, national origin, veteran status, military status, pregnancy, disability, marital status, familial status, or other characteristics protected by law. Equal employment is extended to all person in all aspects of the associate-employer relationship including recruitment, hiring, training, promotion, transfer, compensation, discipline, reduction in staff, termination, assignment of benefits, and any other term or condition of employment 

Remote Work Disclaimer:

Positions marked as remote are only eligible for work from Ohio.

Required profile

Experience

Level of experience: Senior (5-10 years)
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Analytical Skills
  • Training And Development
  • Microsoft Office
  • Communication
  • Customer Service
  • Relationship Building
  • Detail Oriented
  • Leadership
  • Active Listening
  • Teamwork
  • Presentations

Data Protection Officer Related jobs