Privacy Associate I

$61,200 - $81,900/Yr

Horizon Blue Cross Blue Shield of New Jersey - Newark, NJ

posted 2 months ago

Full-time - Entry Level
Newark, NJ
5,001-10,000 employees
Insurance Carriers and Related Activities

About the position

The Privacy Associate is responsible for performing a variety of privacy compliance activities to ensure the proper use, collection, and storage of data throughout the organization. This role involves applying privacy by design principles to mitigate privacy risks and maintaining the organization's compliance with relevant laws, regulations, industry standards, and company policies. The incumbent will facilitate privacy center of excellence services and initiatives, in addition to developing, reviewing, and revising new and existing privacy policies and procedures to incorporate new regulatory requirements. This position will also investigate reports of potential non-compliance, lead risk assessments, and conduct other activities to support Horizon BCBSNJ's Office of Information Governance and Privacy. Key responsibilities include validating the adequacy, reliability, and effectiveness of organizational controls related to privacy compliance, performing assessments of the organization's compliance with privacy policies, and identifying information and privacy compliance issues and gaps. The Privacy Associate will independently investigate privacy-related complaints and reports of potential non-compliance with privacy policies, develop relationships with business areas, and partner with them on implementing remediation plans and appropriate Corrective Action Plans (CAPs). Additionally, the role involves preparing and maintaining reports on the status of the Privacy Compliance Program, serving as a contact person for privacy complaints and inquiries, and performing breach analysis for all privacy incidents. The Privacy Associate will also handle complex assignments in unclear situations, especially in the context of privacy incident investigations and member complaints. They will develop and deliver privacy compliance training to both internal and external audiences and interact with OCR or other regulatory agencies regarding privacy and security of Protected Health Information. The role may also support information governance activities, including monitoring compliance with information governance policies and delivering training programs and awareness campaigns. Special projects and ad-hoc tasks from management may also be part of the responsibilities.

Responsibilities

  • Validate adequacy, reliability and effectiveness of organizational controls related to privacy compliance.
  • Perform assessments of the organization's compliance with privacy policies; identify information and privacy compliance issues and gaps and document them according to policies and procedures; suggest solutions to mitigate compliance issues and gaps.
  • Independently investigate privacy-related complaints and reports of potential non-compliance with privacy policies.
  • Develop relationships with business areas; partner with business areas on implementing remediation plans and appropriate Corrective Action Plans (CAPs); perform follow-up and track completion.
  • Prepare and maintain reports on the status of the Privacy Compliance Program, including results based on established reporting metrics.
  • Serve as a contact person to respond to privacy complaints and inquiries; partner with business teams to provide guidance on privacy standards and regulatory requirements.
  • Perform breach analysis for all privacy incidents and prepare reports to and/or notify regulatory agencies of privacy-related breaches, as appropriate.
  • Handle complex assignments in unclear situations, especially in the context of privacy incident investigations and handling of member complaints.
  • Develop and deliver privacy compliance training to both internal and external audiences (from individual contributors up to managers and directors).
  • Interact with OCR or other regulatory agencies for matters relating to privacy and security of Protected Health Information, including investigating issues identified by regulatory agencies and preparing reports.
  • May support information governance activities including monitoring for compliance to information governance policies, identifying risks and delivering training programs and awareness campaigns.
  • Complete special projects and ad-hoc tasks from management.

Requirements

  • High School Diploma/GED required.
  • Requires a minimum of two years of experience in compliance and compliance investigations.
  • Prefers 2-3 years' experience in a health care environment or the health insurance industry.
  • Certification as a privacy professional from an organization such as IAPP, HCCA or similar preferred.
  • Requires knowledge of the Federal and State regulatory environment in the health insurance industry, with emphasis on HIPAA privacy and security rules, as well as other state and federal privacy laws.
  • Knowledge of compliance investigation process.
  • Organization and management of multiple priorities.
  • Proficient in various Microsoft software products.
  • Written and verbal communication skills.
  • Data analysis.
  • Attention to detail.
  • Listening skills.
  • Problem solving.
  • Ethics and integrity.
  • Requires the ability to work independently.

Benefits

  • Comprehensive health benefits (Medical/Dental/Vision)
  • Retirement Plans
  • Generous PTO
  • Incentive Plans
  • Wellness Programs
  • Paid Volunteer Time Off
  • Tuition Reimbursement

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service