Privacy Associate I

$61,200 - $81,900/Yr

Unclassified - Newark, NJ

posted 2 months ago

Full-time - Entry Level
Newark, NJ

About the position

The Privacy Associate is responsible for performing a variety of privacy compliance activities to ensure the proper use, collection, and storage of data throughout the organization. This role involves applying privacy by design principles to mitigate privacy risks and maintaining the organization's compliance with relevant laws, regulations, industry standards, and company policies. The incumbent will facilitate privacy center of excellence services and initiatives, as well as develop, review, and revise new and existing privacy policies and procedures to incorporate new regulatory requirements. Additionally, this position will investigate reports of potential non-compliance, lead risk assessments, and conduct other activities to support Horizon BCBSNJ's Office of Information Governance and Privacy. The Privacy Associate will validate the adequacy, reliability, and effectiveness of organizational controls related to privacy compliance. They will perform assessments of the organization's compliance with privacy policies, identify information and privacy compliance issues and gaps, and document these in accordance with policies and procedures. The role requires suggesting solutions to mitigate compliance issues and gaps, independently investigating privacy-related complaints, and developing relationships with business areas to implement remediation plans and appropriate Corrective Action Plans (CAPs). Moreover, the Privacy Associate will prepare and maintain reports on the status of the Privacy Compliance Program, including results based on established reporting metrics. They will serve as a contact person to respond to privacy complaints and inquiries, partnering with business teams to provide guidance on privacy standards and regulatory requirements. The role also involves performing breach analysis for all privacy incidents and preparing reports to notify regulatory agencies of privacy-related breaches, as appropriate. The Privacy Associate will handle complex assignments in unclear situations, especially in the context of privacy incident investigations and member complaints. They will also develop and deliver privacy compliance training to both internal and external audiences, interact with OCR or other regulatory agencies regarding privacy and security of Protected Health Information, and may support information governance activities. Special projects and ad-hoc tasks from management may also be part of the responsibilities.

Responsibilities

  • Validate adequacy, reliability and effectiveness of organizational controls related to privacy compliance.
  • Perform assessments of the organization's compliance with privacy policies.
  • Identify information and privacy compliance issues and gaps and document in accordance with policies and procedures; suggest solutions to mitigate compliance issues and gaps.
  • Independently investigate privacy-related complaints and reports of potential non-compliance with privacy policies.
  • Develop relationships with business areas; partner with business areas on implementing remediation plans and appropriate Corrective Action Plans (CAPs); perform follow-up and track completion.
  • Prepare and maintain reports on the status of the Privacy Compliance Program, including results based on established reporting metrics.
  • Serve as a contact person to respond to privacy complaints and inquiries; partner with business teams to provide guidance on privacy standards and regulatory requirements.
  • Perform breach analysis for all privacy incidents and prepare reports to and/or notify regulatory agencies of privacy related breaches, as appropriate.
  • Handle complex assignments in unclear situations, especially in the context of privacy incident investigations and handling of member complaints.
  • Develop and deliver privacy compliance training to both internal and external audiences (from individual contributors up to managers and directors).
  • Interact with OCR or other regulatory agencies for matters relating to privacy and security of Protected Health Information, including investigating issues identified by regulatory agencies and preparing reports.
  • May support information governance activities including monitoring for compliance to information governance policies, identifying risks and delivering training programs and awareness campaigns.
  • Complete special projects and ad-hoc tasks from management.

Requirements

  • High School Diploma/GED required.
  • Minimum of two years of experience in compliance and compliance investigations.
  • 2-3 years' experience in a health care environment or the health insurance industry preferred.
  • Certification as a privacy professional from an organization such as IAPP, HCCA or similar preferred.
  • Knowledge of the Federal and State regulatory environment in the health insurance industry, with emphasis on HIPAA privacy and security rules, as well as other state and federal privacy laws.
  • Knowledge of compliance investigation process.

Nice-to-haves

  • Experience in developing and delivering training programs.
  • Familiarity with data analysis tools and techniques.

Benefits

  • Comprehensive health benefits (Medical/Dental/Vision)
  • Retirement Plans
  • Generous PTO
  • Incentive Plans
  • Wellness Programs
  • Paid Volunteer Time Off
  • Tuition Reimbursement

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service