Job Description
Below is the JD for Part time (10-20 hours per week) Privacy consultant.
Position Overview:
CompliancePro Solutions, a wholly-owned subsidiary of Genzeon, seeks a Privacy Consultant. We are a team of experienced healthcare leaders, advisors, developers, and problem-solvers. Our primary customers include health systems, higher education institutions, payors, and healthcare IT vendor organizations. With a referenceable customer base, strong financials, and consistently strong growth, we are well positioned to help our customers simplify, automate, and modernize their Privacy, Security, and Compliance operations.
The Privacy Consultant plays a crucial role in ensuring the privacy and protection of our clients and their organization's data assets by identifying, assessing, and mitigating privacy risks. This role involves a comprehensive analysis of privacy regulatory requirements, policies and procedures, and best practices for privacy programs as well as the development and implementation of risk mitigation strategies to remediate and mature privacy programs.
KEY RESPONSIBILITIES
- Privacy Risk Assessments: Conduct regular and comprehensive privacy risk assessments to identify vulnerabilities, threats, and potential privacy weaknesses for our clients and the organization.
- Project Management: create and deliver assigned privacy projects for clients and the organization, including but not limited to periodic status reports.
- Stay current with privacy regulatory landscape (HIPAA, NIST, GDPR, state laws), trends and emerging issues to proactively assess the potential impact on our clients and the organization.
- Documentation: Familiarity with creating and editing privacy policies, procedures, training, and patient request forms.
- Risk Mitigation: Develop and recommend privacy measures and controls to mitigate identified risks effectively. Create mitigation work plans. Collaborate with cross-functional teams to implement these measures.
- Reporting: Generate and communicate comprehensive risk assessment reports, findings, and recommendations to senior management and relevant stakeholders. Ability to present project deliverables to stakeholders as assigned.
- Privacy Awareness: Promote a culture of privacy awareness and educate employees and stakeholders on privacy best practices.
- Incident Response: Assist in the development and maintenance of incident response plans and participate in the investigation and resolution of privacy incidents.
- Continuous Improvement: Continuously assess and enhance the organization's risk management and privacy posture through the implementation of industry-leading practices and technologies.
professional experience:
- Bachelor's Degree in related field from an accredited college or university.
- 3-5 years of experience in healthcare or higher education privacy, risk analysis, compliance, or a related field.
- Direct experience with privacy impact/risk assessments, policies and procedures, training, and incident investigations.
- Professional certification in privacy or healthcare compliance.
- In depth knowledge of state and federal guidelines on privacy and compliance.
- Extensive familiarity with privacy regulatory requirements such as HIPAA, FERPA, GDPR, NIST, state privacy laws, etc.
- Ability to transfer knowledge to staff with different backgrounds, educational experiences and learning styles.
- Demonstrated project management skills, specifically managing multiple, concurrent projects.
- Commitment to exceptional customer service.
INTERPERSONAL AND PROFESSIONal SKILLS:
- Professional Skills- Demonstrates exceptional level of professional skill and knowledge in position-related areas; keeps up with current developments and trends in area of expertise.
- Delivers Results Establishes high goals for success and personal accomplishment; meets or exceeds those goals; conveys a sense of urgency and drives issues to closure.
- Building Partnerships Identifies opportunities and takes action to build strategic relationship between ones area and other teams, departments to achieve business goals. Demonstrates professional collaborative skills.
- Confidentiality/Trust Operates with integrity; demonstrates honesty and respects the need for confidentiality in position.
- Communication Communicates clearly, accurately, honestly, and effectively, both in oral and written form. Represents CompliancePro in a professional manner. Able to work effectively with all associates to achieve goals. Encourages collaboration and professional communication amongst team members.
- Planning and Organizing - Establishes a course of action for self and others to ensure that work is completed on time and accurately in a fast paced, ever-changing environment. Able to prioritize; determines needed resources, schedules accordingly, leverages resources and keeps self and others focused on achieving goals.
- Facilitating & Supporting Change Encourages others to seek opportunities for different and innovative approaches to address problems and opportunities; facilitates the implementation and acceptance of change within the workplace.
- Living Vision and Values Keeps the companys vision and values at the forefront of decision-making and action.
work environment:
- Willingness to occasionally work outside of normal business hours as required to complete projects.
- Self-motivated, successful with limited supervision.
- Limited travel to (primarily) domestic destinations (If needed).
- Sitting at desk or in meetings for long periods of time.
- Use standard office equipment.