Full-Time Privacy & Data Security Manager

Privacy & Data Security Manager

Under the direction of the Chief Privacy Officer and in close collaboration with the Chief Information Security Officer, the Privacy & Data Security Manager will assist with maintaining an effective privacy and data security program.

Primary Job Duties:

1. Initiates, facilitates, and promotes activities to foster a culture of privacy and data security compliance.
2. Provides guidance and direction on HIPAA Privacy and Security rules and other applicable federal and state health care privacy laws.
3. Assists in the development, implementation, and maintenance of administrative, physical, and technical safeguards for personally identifiable data.
4. Periodically reviews and proposes revisions to Privia’s Privacy and Security Policies and Procedures and guidance materials to facilitate compliance with new privacy or cybersecurity-related laws/regulations.
5. Collaborates with the CPO and CISO on the development of privacy and security training modules.
6. Assists ongoing privacy and security compliance monitoring and auditing activities.
7. In collaboration with the CPO and CISO, supports investigations of privacy and security incidents.
8. Maintains rapport with all business units to facilitate collaboration.
9. Collaborates with Information Security including conducting and reviewing security risk assessments.
10. Assists with the implementation and management of PCI-DSS standards and SOX controls.
11. Other duties as assigned.

Skills/Experience:

• Demonstrated knowledge in HIPAA Privacy, HIPAA Security, applicable state Privacy statutes and regulations, NIST Cybersecurity framework, 405(d) Health Industry Cybersecurity Practices, PCI, and SOX.
• Working knowledge of medical group operation processes.
• Ability to detect deficiencies in processes and determine needs to improve outcomes.
• Minimum of five years general healthcare privacy and security compliance experience with knowledge of medical group operations and physician services.
• Minimum five years’ experience in regulatory research and knowledge of federal, state healthcare privacy and security requirements.
• HIPAA Privacy Officer or Security Officer experience preferred.
• Certified in Healthcare Privacy Compliance (CHPC) or other relevant certifications strongly preferred.

Compensation:

The salary range for this role is $100,000-$120,000 in base pay.

Technical Requirements (remote only):

• Minimum 5 Mbps download speed and 3 Mbps upload speed.

What is the last date for applying to the job?

Which countries are accepted for this remote job?