Privacy Analyst

University of Maryland - Linthicum Heights, MD

posted 4 months ago

Full-time - Mid Level
Linthicum Heights, MD
Educational Services

About the position

The Privacy Analyst position at the University of Maryland Medical System (UMMS) is a critical role within the Corporate Compliance and Business Ethics Group's (CCBEG) Privacy Program. This program is designed to provide comprehensive privacy oversight, subject matter expertise, and guidance to all administrative and clinical functions within UMMS. The Privacy Analyst will work under the supervision of the Director and will be responsible for managing complex privacy incidents, developing and implementing privacy policies, procedures, and processes, and ensuring compliance with federal and state privacy laws and regulations. The role requires collaboration with various stakeholders across UMMS, including hospitals and member organizations, to ensure the effective implementation of Corporate Privacy Program initiatives. The Privacy Analyst will serve as a key resource for privacy-related issues, advising leadership and departments on the release of information and privacy concerns. A significant aspect of the role involves managing and resolving complex privacy investigations, including those received through internal reporting methods and inquiries from regulatory agencies such as the Department of Health and Human Services (HHS). The analyst will conduct root cause analyses, facilitate management action plans, and oversee the implementation of corrective measures. Additionally, the Privacy Analyst will prepare and submit privacy breach reports, track changes in privacy laws, and develop project plans to ensure compliance with regulatory changes. The position also involves managing the Privacy Audit and Monitoring Plan, conducting audits, and providing recommendations for improvement. The Privacy Analyst will mentor Compliance Analysts, develop privacy awareness materials, and prepare reports for senior management and the Board of Directors. This role is essential in maintaining the integrity of UMMS's privacy practices and ensuring that the organization adheres to the highest standards of compliance and ethical conduct.

Responsibilities

  • Serve as the privacy resource to UMMS Corporate and Member Organizations, advising on privacy-related issues.
  • Manage and resolve complex privacy investigations, collaborating with internal and external stakeholders.
  • Conduct root cause analysis and facilitate management action plans for privacy incidents.
  • Respond to inquiries and investigations from regulatory agencies such as HHS and OAG.
  • Prepare and submit federal and state privacy breach reports under the direction of the Director of Privacy and Research Compliance.
  • Track current, revised, and new federal and state privacy laws and provide status reports to CCBEG leadership.
  • Develop and manage project plans to comply with regulatory changes and educate stakeholders.
  • Manage the Privacy Audit and Monitoring Plan, including drafting and implementing annual plans and auditing tools.
  • Review investigation and breach risk assessment work of Member Organizations and Compliance Analysts.
  • Mentor and guide Compliance Analysts in their roles.
  • Develop privacy policies and procedures to enhance compliance.
  • Monitor investigation and inquiry data to identify deficiencies and recommend operational changes.
  • Create privacy awareness messages and educational materials in collaboration with compliance leadership.
  • Prepare reports for senior management and the Audit and Compliance Committee.

Requirements

  • Bachelor's degree in a related field such as healthcare administration, law, or business.
  • Experience in privacy compliance, healthcare regulations, or a related field.
  • Strong understanding of HIPAA and state privacy laws and regulations.
  • Excellent analytical and problem-solving skills.
  • Ability to manage multiple projects and meet deadlines.
  • Strong communication and interpersonal skills to build relationships with stakeholders.

Nice-to-haves

  • Certification in healthcare compliance (e.g., CHC, CIPP) is preferred.
  • Experience with privacy audits and monitoring activities.
  • Familiarity with electronic health record systems and data management.

Benefits

  • Comprehensive health insurance coverage.
  • 401k retirement savings plan with employer matching.
  • Paid time off and holidays.
  • Tuition reimbursement for further education.
  • Professional development opportunities.
  • Flexible scheduling options.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service