The incumbent will work closely with the Mayo Clinic Privacy Officer, Site Privacy Officers, Privacy Analysts, and other Senior Privacy Analysts to ensure compliance with Federal and State Privacy regulations including HIPAA & HITECH, FERPA, State Privacy laws, State Data Breach laws, Business Associate Agreements, and Mayo Clinic Privacy policies and procedures.
Job Duties and Responsibilities:
Provide supervision of Privacy Analysts including coaching, training, project delegation and oversight, regular statuses, and scheduling
Oversee audits of Mayo Clinic employee access to the Electronic Medical Records (EMRs) and ancillary ePHI systems
Work directly with Human Resources to oversee and document complex Privacy investigations
Respond timely and professionally to questions from Mayo Clinic employees and Mayo Clinic patients related to: release of information, restrictions, revocations, authorizations, amendment requests, privacy breach reporting, encryption, Business Associate Agreements, HIPAA, Privacy policies, Confidential Information data transfers (PHI, PII, IP, personnel information, student information, etc.)
Resolve escalated situations involving employees and/or patients
Oversee identification of questionable EMR access patterns through analysis of proactive auditing reports
Consult with business proponents to consider Privacy risks related to organizational initiatives
High Profile Patient auditing including coordinating visits with Development and Physical Security, managing appropriate HPP confidentiality flags, and auditing all medical record access
Investigate and document complex Privacy-related Compliance Hotline reports
Develop and present in-person Privacy training for Mayo Clinic employees
Conduct on-site audits of various Mayo Clinic departments to assess compliance with Privacy and Information Security policies
Work directly with Information Security Leadership to monitor Confidential Information transmitted outside Mayo Clinic to enforce policy compliance while mitigating organizational risk
Draft policies and oversee implementation of procedures
Lead multi-disciplinary workgroups and projects
Investigate and respond to complaints filed with the Office for Civil Rights and other regulatory agencies
Report privacy breaches to affected patients, HHS, and other persons/entities as required by law
Represent Privacy on institutional committees
Other functions and projects as assigned
Some travel may be required to other Mayo Clinic sites and/or training conferences
This position can be located at any Mayo Clinic site.
Bachelor's degree required and a minimum of 5 years' experience in compliance, privacy, health information management, internal audit, human resources, legal, investigations, information security, or a related field.
Ability to maintain highest level of confidentiality
Healthcare provider/payer experience
Experience supervising exempt staff
Knowledge of Federal and State regulations related to Privacy and data security of confidential information
Systems knowledge of EMRs
Effective training and presentation skills
Complex investigation and audit experience
Proficient in Excel, Word, and Power Point
Demonstrated ability to set priorities and to respond to changing demands from multiple sources
Ability to follow-through, meet regulatory deadlines, anticipate requirements, and build relationships
Strong analytical and problem-solving skills
Ability to communicate effectively with diverse groups including attorneys, physicians, patients, allied health staff, researchers, and vendors
Ability to lead in a team environment with minimal supervision
License or certification
Preferred certifications: CHC (Certified in Healthcare Compliance-HCCA), CHPC (Certified in Healthcare Privacy Compliance-HCCA), CFE (Certified Fraud Examiner-ACFE), HCISPP (Healthcare Information Security and Privacy Practitioner-ISC2), CISSP (Certified Information Systems Security Professional-ISC2), CIPP (Certified Information Privacy Professional-IAPP), CHPS (Certified in Healthcare Privacy and Security-AHIMA)
Hours / Pay period
Friday with additional hours as needed.
Mayo Clinic is located in the heart of downtown Rochester, Minnesota, a vibrant, friendly city that provides a highly livable environment for more than 34,000 Mayo staff and students. The city is consistently ranked among the best places to live in the United States because of its affordable cost of living, healthy lifestyle, excellent school systems and exceptionally high quality of life.
Administration, Business, Finance
Job posting number
Equal opportunity employer
Mayo Clinic is an equal opportunity educator and employer (including veterans and persons with disabilities).