Bon Secours Mercy Health
Privacy Director
Bon Secours Mercy Health, Marriottsville, Maryland, United States, 21104
Thank you for considering a career at
Bon Secours Mercy Health!Scheduled Weekly Hours:
40Work Shift:
Days (United States of America)PRIVACY DIRECTOR
| Work from Home - NationwideWFH role with ~10% travel - onsite to hospitals, ministry-wideWe are seeking a dynamic and collaborative leader to develop and conduct privacy education and investigations across the organization. The role will consist of 70% education and supervision of investigations, 15% Annual Privacy Workplan projects, and 15% committee involvement/partnership across the ministry. We are looking for a candidate who has researched regulatory law, has expert knowledge in HIPAA, has at least 5-7 years of experience in healthcare law (regulatory and transactional), and has experience with privacy-related artificial intelligence issues and GDPR. CHC or CHPC is strongly preferred.SummaryOversees all ongoing activities across the group related to the development, implementation, maintenance of, and adherence to the organization's policies and procedures covering the privacy of, disclosure of, and access to, patient health information in compliance with federal and state laws and the healthcare organization's information privacy practices.Essential FunctionsBuilds a strategic and comprehensive privacy program that defines, develops, maintains, and implements policies and procedures that enable consistent, effective privacy practices which minimize risk and ensure the confidentiality of protected health information (PHI); ensure privacy forms, notices, policies, standards, and procedures are up to date.Works with organization senior management to establish a group-wide Privacy Oversight Committee and serve in a leadership role for the Privacy Oversight Committee's activities.Collaborates with IT Security Director and Information Services Director to ensure alignment between security and privacy programs including policies, practices, and investigations.Conducts related ongoing compliance monitoring activities in coordination with the organization's other compliance and operational assessment functions.Reviews role-based access controls; oversees audits of access to Protected Health Information (PHI); recommends appropriate action necessary as a result of audit activities.Takes a lead role to ensure the organization has and maintains appropriate privacy and confidentiality consents, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.Oversees, develops, and delivers ongoing privacy training to the workforce.Participates in the development, implementation, and ongoing compliance monitoring of business associates and business associate agreements to ensure all privacy concerns, requirements, and responsibilities are addressed.Establishes, with management and operations, a mechanism to track access to protected health information, within the purview of the organization and as required by law and to allow qualified individuals to review or receive a report on such activity.Establishes and administers a process for receiving, documenting, tracking, investigating, and taking action on all complaints concerning the organization's privacy policies and procedures in coordination and collaboration with other similar functions, when necessary, legal counsel.Monitors compliance risk strategies and independently troubleshoots problems while providing sound advice.Education QualificationsRequired Minimum Education: Bachelor’s DegreeSpecialty/Major: Law, regulatory affairs, healthcare administration, business, ethicsLicensing/CertificationLicensure/Certification Preferred: Certified Healthcare Privacy Compliance (CHPC) or Certified Information Privacy Manager (CIPM)Minimum QualificationsMinimum Years and Type of Experience: 5-7 years’ experience in privacy compliance preferably in a healthcare settingExperience overseeing and managing privacy-related investigations and key privacy compliance areas; motivated self-starter with the ability to excel at multi-tasking in a fast-paced environment; ability to identify problems, analyze data, and present conclusions effectively; strong communication and organizational skills.Bon Secours Mercy Health is an equal opportunity employer.Many of our opportunities reward your hard work with:Comprehensive, affordable medical, dental and vision plansPrescription drug coverageFlexible spending accountsLife insurance w/AD&DEmployer contributions to retirement savings plan when eligiblePaid time offEducational AssistanceAnd much more*Benefits offerings vary according to employment status.Department:
SS Enterprise Risk - Corp ResponsibilityIt is our policy to abide by all Federal and State laws, as well as, the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). Accordingly, all applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, sexual orientation, gender identity, age, genetic information, or protected veteran status, and will not be discriminated against on the basis of disability. If you’d like to view a copy of the affirmative action plan or policy statement for Mercy Health– Youngstown, Ohio or Bon Secours – Franklin, Virginia; Petersburg, Virginia; and Emporia, Virginia, which are Affirmative Action and Equal Opportunity Employer, please email
recruitment@mercy.com . If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact The Talent Acquisition Team at
recruitment@mercy.com .
#J-18808-Ljbffr
Bon Secours Mercy Health!Scheduled Weekly Hours:
40Work Shift:
Days (United States of America)PRIVACY DIRECTOR
| Work from Home - NationwideWFH role with ~10% travel - onsite to hospitals, ministry-wideWe are seeking a dynamic and collaborative leader to develop and conduct privacy education and investigations across the organization. The role will consist of 70% education and supervision of investigations, 15% Annual Privacy Workplan projects, and 15% committee involvement/partnership across the ministry. We are looking for a candidate who has researched regulatory law, has expert knowledge in HIPAA, has at least 5-7 years of experience in healthcare law (regulatory and transactional), and has experience with privacy-related artificial intelligence issues and GDPR. CHC or CHPC is strongly preferred.SummaryOversees all ongoing activities across the group related to the development, implementation, maintenance of, and adherence to the organization's policies and procedures covering the privacy of, disclosure of, and access to, patient health information in compliance with federal and state laws and the healthcare organization's information privacy practices.Essential FunctionsBuilds a strategic and comprehensive privacy program that defines, develops, maintains, and implements policies and procedures that enable consistent, effective privacy practices which minimize risk and ensure the confidentiality of protected health information (PHI); ensure privacy forms, notices, policies, standards, and procedures are up to date.Works with organization senior management to establish a group-wide Privacy Oversight Committee and serve in a leadership role for the Privacy Oversight Committee's activities.Collaborates with IT Security Director and Information Services Director to ensure alignment between security and privacy programs including policies, practices, and investigations.Conducts related ongoing compliance monitoring activities in coordination with the organization's other compliance and operational assessment functions.Reviews role-based access controls; oversees audits of access to Protected Health Information (PHI); recommends appropriate action necessary as a result of audit activities.Takes a lead role to ensure the organization has and maintains appropriate privacy and confidentiality consents, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.Oversees, develops, and delivers ongoing privacy training to the workforce.Participates in the development, implementation, and ongoing compliance monitoring of business associates and business associate agreements to ensure all privacy concerns, requirements, and responsibilities are addressed.Establishes, with management and operations, a mechanism to track access to protected health information, within the purview of the organization and as required by law and to allow qualified individuals to review or receive a report on such activity.Establishes and administers a process for receiving, documenting, tracking, investigating, and taking action on all complaints concerning the organization's privacy policies and procedures in coordination and collaboration with other similar functions, when necessary, legal counsel.Monitors compliance risk strategies and independently troubleshoots problems while providing sound advice.Education QualificationsRequired Minimum Education: Bachelor’s DegreeSpecialty/Major: Law, regulatory affairs, healthcare administration, business, ethicsLicensing/CertificationLicensure/Certification Preferred: Certified Healthcare Privacy Compliance (CHPC) or Certified Information Privacy Manager (CIPM)Minimum QualificationsMinimum Years and Type of Experience: 5-7 years’ experience in privacy compliance preferably in a healthcare settingExperience overseeing and managing privacy-related investigations and key privacy compliance areas; motivated self-starter with the ability to excel at multi-tasking in a fast-paced environment; ability to identify problems, analyze data, and present conclusions effectively; strong communication and organizational skills.Bon Secours Mercy Health is an equal opportunity employer.Many of our opportunities reward your hard work with:Comprehensive, affordable medical, dental and vision plansPrescription drug coverageFlexible spending accountsLife insurance w/AD&DEmployer contributions to retirement savings plan when eligiblePaid time offEducational AssistanceAnd much more*Benefits offerings vary according to employment status.Department:
SS Enterprise Risk - Corp ResponsibilityIt is our policy to abide by all Federal and State laws, as well as, the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). Accordingly, all applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, sexual orientation, gender identity, age, genetic information, or protected veteran status, and will not be discriminated against on the basis of disability. If you’d like to view a copy of the affirmative action plan or policy statement for Mercy Health– Youngstown, Ohio or Bon Secours – Franklin, Virginia; Petersburg, Virginia; and Emporia, Virginia, which are Affirmative Action and Equal Opportunity Employer, please email
recruitment@mercy.com . If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact The Talent Acquisition Team at
recruitment@mercy.com .
#J-18808-Ljbffr