Privacy Analyst & Auditor, Sr.
Requisition Number: 7720 Reg/Temp Regular
Employment Type: Full-Time Shift Day
Work Schedule: M - F 8 to 5 with on-call Location Name Information Technology Services
City: SALT LAKE CITY State UT
Department: UUH ISC 17B OIT COMPLIANCE OFF
Overview:
As a patient-focused organization, the University of Utah Health Care exists to enhance the health and well-being of people through patient care, research and education. Success in this mission requires a culture of collaboration, excellence, leadership, and respect. University of Utah Health Care seeks staff that are committed to the values of compassion, collaboration, innovation, responsibility, diversity, integrity, quality and trust that are integral to our mission.
This position is responsible for privacy policy development and maintenance; auditing; monitoring compliance with University privacy policy and applicable law; and coordinating investigation and reporting of privacy incidents. The position will assist in the design of privacy policy education, training, and awareness activities.
Responsibilities:
- Assists in the protection of patient privacy and rights, as they relate to health information.
- Assists in the analyses and evaluation of privacy trends and implementation of policy and regulatory requirements.
- Accesses and utilizes information and support resources to help advice peers and the institution.
- Assists and or Conducts Privacy Breech Investigations.
- Contributes to and promotes the administrative, outreach, and clinical activities of the Privacy Office.
- Implements awareness and training activities that promotes patient privacy rights, and ultimately patient safety.
- Supports all levels of staff, faculty, and students in response to questions and helps facilitate process improve where deficiencies exist.
- Leads project teams in the identification of pertinent privacy issues and prepares comprehensive project plans and timelines for process improvement.
- Solves technical and communication problems.
- Conducts privacy research in keeping abreast of latest privacy issues.
- Prepares documentation, including department policies and procedures, campus notifications, Web content, and notifications.
- Actively participates in the higher education privacy communities such as Educause, HCCA, AHIMA, etc.
- Conducts privacy compliance audits and prepares written and oral reports on these audits for leadership.
- Coordinates the implementation of Business Associate and Third Party Network Access Agreement.
- Recommends business process improvements to enhance security and efficiency. Provide guidance and assist with business process improvement efforts and initiatives.
Knowledge / Skills / Abilities
- Knowledge of privacy standards, rules, and regulations (e.g., FERPA, HIPAA, etc.).
- Knowledge of risk assessment and management methodology and principles for risk identification, analysis, and mitigation.
- Requires strong project management experience, with the capability of managing multiple projects with a high degree of complexity.
- Excellent customer service skills.
- Strong interpersonal skills.
- Ability to work flexible hours.
- Ability to manage workflow support.
- Strong mentoring and supervision/leadership skills.
Qualifications:
Required
- A Bachelor’s degree in Business, Public Administration, Healthcare Administrations, Information Systems Management, or a related field is required.
- Eight years of progressive responsibility and experience in privacy or compliance setting including experience with auditing.
Qualifications (Preferred):
Preferred
- Experience in healthcare strongly preferred.
- Ten year's experience in privacy setting.
- Master’s Degree in healthcare related field.
- JD with practical experience highly preferred.
- CIPP, CIPP/G or other privacy certifications desired.
Requisition Number: 7720 Reg/Temp Regular
Employment Type: Full-Time Shift Day
Work Schedule: M - F 8 to 5 with on-call Location Name Information Technology Services
City: SALT LAKE CITY State UT
Department: UUH ISC 17B OIT COMPLIANCE OFF
Overview:
As a patient-focused organization, the University of Utah Health Care exists to enhance the health and well-being of people through patient care, research and education. Success in this mission requires a culture of collaboration, excellence, leadership, and respect. University of Utah Health Care seeks staff that are committed to the values of compassion, collaboration, innovation, responsibility, diversity, integrity, quality and trust that are integral to our mission.
This position is responsible for privacy policy development and maintenance; auditing; monitoring compliance with University privacy policy and applicable law; and coordinating investigation and reporting of privacy incidents. The position will assist in the design of privacy policy education, training, and awareness activities.
Responsibilities:
- Assists in the protection of patient privacy and rights, as they relate to health information.
- Assists in the analyses and evaluation of privacy trends and implementation of policy and regulatory requirements.
- Accesses and utilizes information and support resources to help advice peers and the institution.
- Assists and or Conducts Privacy Breech Investigations.
- Contributes to and promotes the administrative, outreach, and clinical activities of the Privacy Office.
- Implements awareness and training activities that promotes patient privacy rights, and ultimately patient safety.
- Supports all levels of staff, faculty, and students in response to questions and helps facilitate process improve where deficiencies exist.
- Leads project teams in the identification of pertinent privacy issues and prepares comprehensive project plans and timelines for process improvement.
- Solves technical and communication problems.
- Conducts privacy research in keeping abreast of latest privacy issues.
- Prepares documentation, including department policies and procedures, campus notifications, Web content, and notifications.
- Actively participates in the higher education privacy communities such as Educause, HCCA, AHIMA, etc.
- Conducts privacy compliance audits and prepares written and oral reports on these audits for leadership.
- Coordinates the implementation of Business Associate and Third Party Network Access Agreement.
- Recommends business process improvements to enhance security and efficiency. Provide guidance and assist with business process improvement efforts and initiatives.
Knowledge / Skills / Abilities
- Knowledge of privacy standards, rules, and regulations (e.g., FERPA, HIPAA, etc.).
- Knowledge of risk assessment and management methodology and principles for risk identification, analysis, and mitigation.
- Requires strong project management experience, with the capability of managing multiple projects with a high degree of complexity.
- Excellent customer service skills.
- Strong interpersonal skills.
- Ability to work flexible hours.
- Ability to manage workflow support.
- Strong mentoring and supervision/leadership skills.
Qualifications:
Required
- A Bachelor’s degree in Business, Public Administration, Healthcare Administrations, Information Systems Management, or a related field is required.
- Eight years of progressive responsibility and experience in privacy or compliance setting including experience with auditing.
Qualifications (Preferred):
Preferred
- Experience in healthcare strongly preferred.
- Ten year's experience in privacy setting.
- Master’s Degree in healthcare related field.
- JD with practical experience highly preferred.
- CIPP, CIPP/G or other privacy certifications desired.