Privacy Analyst - Nemours

The Privacy Analyst's role is to provide support and operations for initiatives critical to Nemours information privacy practices. It is expected that this individual will support our information privacy strategy and goals, which includes various projects and programs central to privacy function throughout the organization. This includes information concerning patients, families, partners, associates, business practices, and operations.

The Nemours Privacy Analyst will be responsible for supporting the initiatives and activities related to the design, development and implementation of enterprise-wide privacy training, procedures, auditing and monitoring, controls, risk mitigation planning and other privacy program elements. This professional must be able to analyze and respond to complex privacy scenarios in way that is easily understood and implemented. Additionally, the Privacy Analyst will be committed to protecting the confidential information our patients, their families, and our business associates entrust to us.

Essential Functions

1. Champion good information stewardship and privacy practices across Nemours.

2. Identify, investigate, and resolve privacy violations involving a breach of information.

3. Maintain accurate records of investigations and requests in the case management system.

4. Support the implementation of privacy laws, regulations, and best practices.

5. Provides analytical support for the Privacy Office, under the direction of the Manager, Privacy, and acts as a liaison to the enterprise.

6. Review legal contracts (e.g., business associate agreements, data use agreements, etc.) to ensure compliance with federal and state regulations.

7. Initiates and conducts activities to create information privacy and security awareness and education within the enterprise.

8. Supports the development and implementation of privacy policies, standards, and procedures for the Nemours workforce.

9. Analyzes and monitors privacy compliance and produces reports necessary to properly manage the privacy program.

10. Additional miscellaneous duties and responsibilities, as may be assigned from time to time by associate's manager.

Requirements

• Bachelor's Degree is required (or in lieu of degree, at least 5 years of progressively increasing responsibility and experience in privacy, health care privacy compliance, or legal departments is required).
• Certified Information Privacy Professional (CIPP), Certified in Healthcare Privacy Compliance (CHPC), or Healthcare Certified Information Security and Privacy Professional (HCISPP) required at the time of hire (or within first three months in the position).
• Minimum of 3 years of progressively increasing responsibility and experience and/or education in health care privacy or related legal studies.