Senior Privacy Analyst

Mayo Clinic Rochester , MN 55905

Posted 3 months ago

City

Rochester

State

Minnesota

Telecommute

No

Department

Risk Management

Position description

The incumbent will work closely with the Mayo Clinic Privacy Officer, Site Privacy Officers, Privacy Analysts, and other Senior Privacy Analysts to ensure compliance with Federal and State Privacy regulations including HIPAA & HITECH, FERPA, State Privacy laws, State Data Breach laws, Business Associate Agreements, and Mayo Clinic Privacy policies and procedures.

Job Duties and Responsibilities:

  • Provide supervision of Privacy Analysts including coaching, training, project delegation and oversight, regular statuses, and scheduling

  • Oversee audits of Mayo Clinic employee access to the Electronic Medical Records (EMRs) and ancillary ePHI systems

  • Work directly with Human Resources to oversee and document complex Privacy investigations

  • Respond timely and professionally to questions from Mayo Clinic employees and Mayo Clinic patients related to: release of information, restrictions, revocations, authorizations, amendment requests, privacy breach reporting, encryption, Business Associate Agreements, HIPAA, Privacy policies, Confidential Information data transfers (PHI, PII, IP, personnel information, student information, etc.)

  • Resolve escalated situations involving employees and/or patients

  • Oversee identification of questionable EMR access patterns through analysis of proactive auditing reports

  • Consult with business proponents to consider Privacy risks related to organizational initiatives

  • High Profile Patient auditing including coordinating visits with Development and Physical Security, managing appropriate HPP confidentiality flags, and auditing all medical record access

  • Investigate and document complex Privacy-related Compliance Hotline reports

  • Develop and present in-person Privacy training for Mayo Clinic employees

  • Conduct on-site audits of various Mayo Clinic departments to assess compliance with Privacy and Information Security policies

  • Work directly with Information Security Leadership to monitor Confidential Information transmitted outside Mayo Clinic to enforce policy compliance while mitigating organizational risk

  • Draft policies and oversee implementation of procedures

  • Lead multi-disciplinary workgroups and projects

  • Investigate and respond to complaints filed with the Office for Civil Rights and other regulatory agencies

  • Report privacy breaches to affected patients, HHS, and other persons/entities as required by law

  • Represent Privacy on institutional committees

  • Other functions and projects as assigned

  • Some travel may be required to other Mayo Clinic sites and/or training conferences

This position can be located at any Mayo Clinic site.

Qualifications

Bachelor's degree required and a minimum of 5 years' experience in compliance, privacy, health information management, internal audit, human resources, legal, investigations, information security, or a related field.

Additional qualifications

  • Ability to maintain highest level of confidentiality

  • Healthcare provider/payer experience

  • Experience supervising exempt staff

  • Knowledge of Federal and State regulations related to Privacy and data security of confidential information

  • Systems knowledge of EMRs

  • Effective training and presentation skills

  • Complex investigation and audit experience

  • Proficient in Excel, Word, and Power Point

  • Demonstrated ability to set priorities and to respond to changing demands from multiple sources

  • Ability to follow-through, meet regulatory deadlines, anticipate requirements, and build relationships

  • Strong analytical and problem-solving skills

  • Ability to communicate effectively with diverse groups including attorneys, physicians, patients, allied health staff, researchers, and vendors

  • Ability to lead in a team environment with minimal supervision

License or certification

Preferred certifications: CHC (Certified in Healthcare Compliance-HCCA), CHPC (Certified in Healthcare Privacy Compliance-HCCA), CFE (Certified Fraud Examiner-ACFE), HCISPP (Healthcare Information Security and Privacy Practitioner-ISC2), CISSP (Certified Information Systems Security Professional-ISC2), CIPP (Certified Information Privacy Professional-IAPP), CHPS (Certified in Healthcare Privacy and Security-AHIMA)

Exemption status

Exempt

Benefits eligible

Yes

Schedule

Full Time

Hours / Pay period
80

Schedule details
8am

  • 5pm Monday

  • Friday with additional hours as needed.

Site description

Mayo Clinic is located in the heart of downtown Rochester, Minnesota, a vibrant, friendly city that provides a highly livable environment for more than 34,000 Mayo staff and students. The city is consistently ranked among the best places to live in the United States because of its affordable cost of living, healthy lifestyle, excellent school systems and exceptionally high quality of life.

Category

Administration, Business, Finance

Job posting number
124885BR

Recruiter

Laura Percival

Equal opportunity employer

Mayo Clinic is an equal opportunity educator and employer (including veterans and persons with disabilities).


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
IT Senior Analyst Programer

Mayo Clinic

Posted 1 week ago

VIEW JOBS 1/10/2020 12:00:00 AM 2020-04-09T00:00 City Rochester State Minnesota Telecommute No Department Information Technology Why Mayo Clinic The Enterprise Application Lifecycle Management (ALM) team is seeking a highly dynamic, motivated, and outgoing individual to join the Lifecycle Success Center: A new and small group of highly focused individuals delivering knowledge, training, and promoting best practices on a number of industry leading topics through training materials and in-person sessions. This position will be directly involved with creating interactive and engaging videos and articles which will be focused on helping teams achieve value delivery while coupling the culture and goals of Mayo Clinic. Position description Responsible for the design, development, implementation, and maintenance of custom system software, and/or the installation and maintenance of purchased systems software, as well as the configuration and support of hardware systems across Mayo Clinic. In conjunction with more senior technical staff, develops proposals that consider alternatives and business case, and gains needed institutional approvals. Evaluates alternative approaches and presents recommendations to teams and unit leadership. Regularly reviews applications and makes modifications and/or updates to ensure currency and functionality within established environment. Maintains and supports multiple systems or complex software applications and their associated hardware at multiple Mayo Clinic sites. Produces and maintains documentation such as system requirements, designs, resource inventories, and plans. Provides technical and project leadership to other staff members, demonstrates initiative, and works independently as needed to accomplish responsibilities. Works effectively across departmental organizations gaining consensus of stakeholders. May interface with vendor support service groups or other external support teams to ensure proper escalation during outages or periods of degraded system performance. Acts as a liaison to Mayo departments and vendors to adequately support the division's computing systems. Interfaces routinely with colleagues who may be located at any of the Mayo Group practices to perform job responsibilities requiring virtual collaboration and partnership. May be required to provide 24/7 on-call support. Qualifications This vacancy is open to internal, IT/ IS employees (excluding limited tenure staff). Bachelor's degree and 3 years' experience (or Assc. + 7 years), including 1 year demonstrated technical experience (see work unit business/technology skills required and preferred: Required Strong written and communication skills. An astute problem solver that can create solutions that educate and inform. Able to concisely and coherently explain topics that teach and inform our users. Passionate about working with teams in person and through recorded audio & video segments. Some experience with audio & video production professionally (or at lease as a hobby may be considered). This vacancy is not eligible for sponsorship/ we will not sponsor or transfer visas for this position. Additional qualifications Required Strong written and communication skills An astute problem solver that can create solutions that educate and inform Able to concisely and coherently explain topics that teach and inform our users Passionate about working with teams in person and through recorded audio & video segments Some experience with audio & video production professionally or as a hobby Preferred Experience with developer tools, such as Visual Studio, VSCode, Git Experience with Agile/Lean development Experience working with Azure DevOps and/or TFS Experience with live & post-production audio & video editing Experience with professional post-production video editing software: Final Cut Pro, Adobe Premiere Experience recording video for editing purposes, including interviews Applies effective system design principles and software development methodologies. Demonstrated ability to multi-task among multiple complex assigned tasks/projects. Evidence of strong communication, meeting management, and organizational skills and ability to adjust the message as appropriate to the audiences of varying technical capabilities. Evidence of project management skills. Possesses an objective and positive attitude with all tasks and projects. Possesses a high level of project and deliverable consistency through demonstrated repeatable and reliable performance. Evidence of ability to take initiative and proactive on starting tasks and assignments and ability to work independently. Experience working in healthcare technology. Exposure to managing both custom developed and vendor-supplied applications. Masters degree in applicable field preferred. Exemption status Exempt Compensation Detail Education, experience and tenure may be considered along with internal equity when job offers are extended. The minimum salary every 2 weeks is approx $2,976 based on a full-time position. Benefits eligible Yes Schedule Full Time Hours / Pay period 80 Schedule details Monday - Friday, 8:00 a.m. - 5:00 p.m. May be required to provide 24/7 on-call support. Weekend schedule May be required to provide 24/7 on-call support. Site description Mayo Clinic is located in the heart of downtown Rochester, Minnesota, a vibrant, friendly city that provides a highly livable environment for more than 34,000 Mayo staff and students. The city is consistently ranked among the best places to live in the United States because of its affordable cost of living, healthy lifestyle, excellent school systems and exceptionally high quality of life. Category IT and Engineering Career profile Information Technology Job posting number 126227BR Recruiter Shelly Weir Equal opportunity employer Mayo Clinic is an equal opportunity educator and employer (including veterans and persons with disabilities). Mayo Clinic Rochester MN

Senior Privacy Analyst

Mayo Clinic