Sr. Privacy Analyst

Job Description Summary

‎ 

Senior Privacy Analyst - apree health

About apree: apree health, Inc., was formed through the combination of Castlight Health and Vera Whole Health. apree’s core services include a member digital healthcare navigation application and Advanced Primary Care Clinics.

A Senior Privacy Analyst works closely with our Privacy Officer, Privacy Engineer, Security Team, Legal, Support, Product, Marketing/Engagement, and Customer Success Teams to address data privacy matters. These matters include data subject access requests, release of health information requests, privacy incident response, privacy impact assessments, the implementation of privacy by design principles through the product and service lifecycle, and supporting workstreams related to the implementation of various policies and training.

‎ 

How will you make an impact & Requirements

‎ 

Sr. Privacy Analyst

You will:

• Support data privacy compliance initiatives as directed by the Privacy Officer, CISO (Chief Information Security Officer), Information Security Manager, and Legal Privacy Officer. 

• Participate in conferences, meetings, and/or discussions on complex privacy matters with customers and other stakeholders at the direction of management. 

• Support activities related to compliance with HIPAA Privacy Rules and additional applicable privacy laws. 

• Support the development and management of the organization’s privacy policies and procedures, including: 

  • The organization's authorization and monitoring procedures for access, use and disclosure of member information; 

  • The implementation of processes that maintain compliance with applicable privacy laws relevant to privacy, confidentiality, and protection of member information; and 

  • The organization's procedures for responding to suspected privacy and security incidents. 

• Stay on top of the ever-changing privacy regulatory landscape by researching and maintaining key, actionable knowledge of regulatory requirements and privacy laws including: 

  • HIPAA, GDPR, CCPA, VCDPA, CPA, CTDPA, TCPA, CAN-SPAM, FTC, State Laws 

• Work collaboratively and cross-functionally with management, legal, engineering, product, marketing, business development and customer support teams.

• Actively promote, manage, and maintain the visibility of the privacy program throughout the organization by utilizing intra-office communication channels to promote awareness. 

• Support and lead initiatives related to client privacy inquiries, data mapping, and risk assessments. 

• Support and review initiatives for quarterly and annual reporting activities including:

  • Employee information systems access; 

  • HHS/OCR HIPAA and State Regulatory Agency Reporting; 

  • Data Subject Access Request and Authorized Release of PHI Reporting; 

  • SOC2/HITRUST/NCQA Reporting

Minimum Requirements: 

• Bachelor’s Degree → Advanced degree and/or privacy certifications (e.g., CIPP/US) preferred 

• Minimum 2-3 years experience in healthcare and/or high-tech privacy

• An understanding of HIPAA, HITECH, and other privacy regulations 

• Excellent analytical, organizational, problem-solving, and time management skills 

• Advanced collaboration skills, applied successfully within the team environment

• Advanced oral and written communication skills that demonstrate a professional demeanor and the ability to interact with others with discretion and tact 

• Ability to track, comprehend, and explain complex privacy regulations, frameworks, and laws 

• Familiarity with healthcare operations, electronic medical records (EMR), and data protection technologies

• Experience with privacy-by-design and integrating privacy principles into business processes

• Ability to manage multiple projects in a fast-paced environment while meeting deadlines  

• Ability to work independently and provide guidance to internal stakeholders

• Proficient in Google Suite (docs, sheets, slides). Experience with SalesForce, Atlassian (Jira) and EMR Platforms is a plus.

Compensation:  $89,000K - $112,000K & bonus eligible  

‎