Privacy Specialist II or SeniorPortland, OR; Seattle, WA or Salt Lake City, UT
The Privacy Specialist II or Senior will support corporate efforts to protect information in a fashion that strengthens the trust our members have in us, protects our brand, enhances the member experience, and is compliant with governing regulations.
- Issue, spot and address basic privacy-related questions and provide guidance to the business.
- Investigate privacy incidents and log in incident tracking system to ensure compliance with HIPAA and state data breach laws.
- Recommend corrective actions and communicate to supervisors and managers.
- Process individual rights requests under HIPAA and with oversight of mitigation efforts.
- Assist with development and presentation of privacy-related training with a view toward furthering a compliance culture.
- Complete training-tracking and monitoring to ensure enterprise-wide training completion compliance.
- Assist with development of privacy-related resources and maintain/develop Privacy Office Intranet site.
- Assist with maintenance of databases relating to privacy.
- Participate in teams and work groups to further privacy-related goals and serve as subject matter expert for privacy.
- Collaborate with business areas to contribute to and support the corporation's initiatives while identifying compliant methods, mechanisms or alternatives.
- Assist with tracking and monitoring new or proposed privacy-related legislation.
- Other privacy-related duties as assigned.
- Address privacy-related questions and provide guidance to the business, serving as privacy subject matter expert.
- Ability to consider the needs of various business partners, corporate goals and initiatives, and applicable regulatory requirements, some of which may be at odds, and identify creative solutions to ensure business needs are met in a manner that supports corporate goals and initiatives and complies with the law.
- Ability to identify when and how existing policies need to be revised either for regulatory purposes or other reasons.
- Review legal documentation for sufficiency under privacy regulations, advise the business regarding sufficiency and permissible disclosures.
- Develop recommendations regarding appropriate disciplinary sanctions, consult with HR and management to conduct employee interviews, document sanctions to demonstrate compliance with relevant laws and regulations.
- Ability to work with management to address privacy trends in business area and recommend corrective action or training plan to address repeated incidents.
- Represents the Privacy Office on cross-functional internal work groups and task forces addressing wide-ranging business issues.
- Develop and present privacy-related training and tools with a view toward furthering a compliance culture.
- Investigate complex privacy incidents including developing mitigation strategies and enforcing sanctions as required.
- As an essential member of the privacy team, collaborate on a privacy risk assessment and mitigation plan.
- Lead and implement assigned sections of the plan with a view toward maintaining or strengthening current levels of compliance.
- Maintain databases relating to privacy.
Normally to be proficient in the competencies listed above
- Sound working knowledge of privacy-related laws and regulations governing personal information, particularly HIPAA and state data breach laws.
- Demonstrated ability to understand and apply complex legal language and terminology.
- Demonstrated ability to research, interpret and understand laws, regulations and other regulatory and compliance guidance.
- Demonstrated ability to review legal documents regarding personal representation, determine validity, and identify specific authority or powers given.
- Capable of managing multiple tasks simultaneously and to prioritize work in order to meet assigned deadlines and to ensure highest priority assignments are given the time and attention required.
- Strong attention to detail.
- Sound PC skills to include word processing, spreadsheets, and PowerPoint.
- Ability to quickly learn and work in internal and external databases to search pertinent information.
- Excellent analytical, written and verbal communication skills.
- Previous training/public speaking experience desired.
The Privacy Specialist II would have a bachelor's degree in law, business administration, health policy, communication or related field and 5-7 years of previous work experience in privacy, particularly for a HIPAA covered entity, or equivalent combination of education and experience.
The Privacy Specialist Senior would have a post-baccalaureate degree in Law, Business Administration, Health Administration or a related field preferred and 8+ years of previous work experience in privacy, particularly for a HIPAA covered entity, or equivalent combination of education and experience.Required Licenses, Certifications, Registration, Etc.
The Privacy Specialist II would have at least one privacy certification (example: CIPP-US or CHPC).
The Privacy Specialist Senior would have at least one privacy certification (example: CIPP-US or CHPC) or a technical certification (example CISSP).
We are an Equal Opportunity and Affirmative Action employer dedicated to workforce diversity and a drug and tobacco-free workplace. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, age, sex, sexual orientation, gender identity, disability, protected veteran status or any other status protected by law. A drug screen and background check are required.
This job has expired.