University of California - San Diego, CA
posted 5 months ago
The Senior Privacy Analyst position at UC San Diego is a critical role within the Shared Corporate Office-Compliance department, reporting directly to the Director of Privacy Compliance. This hybrid position requires a blend of onsite and remote work, allowing for flexibility while ensuring compliance with privacy regulations. The successful candidate will be responsible for a variety of tasks that include the review and analysis of business associate agreements and other privacy-related contract inquiries. This is essential to safeguard protected health information in accordance with applicable state and federal laws and regulations. In addition to contract review, the role involves the development and implementation of privacy controls. This includes collaborating with various business functions to understand relevant processes and operations that have privacy implications. The Senior Privacy Analyst will perform periodic reviews and update existing policies and procedures to ensure continuous improvement of privacy practices, processes, and controls. Tracking privacy legislation and managing compliance with relevant privacy and data protection laws is also a key responsibility, which includes the implementation of new requirements as they arise. The position requires the development of privacy training and awareness campaigns to promote privacy awareness throughout the organization. The analyst will conduct privacy training sessions and communicate best practices to staff. Investigating and assessing privacy incidents is another critical aspect of the role, which includes responding to patient concerns and documenting findings of suspected violations of laws and policies. The analyst will assist with the remediation of privacy issues and necessary notifications, while also tracking and validating mitigation actions. Moreover, the Senior Privacy Analyst will develop and implement monitoring and audit action plans to maintain compliance with regulatory bodies. Utilizing audit tools to assess compliance of privacy and security of patient information is essential, as is reporting on compliance processes to external regulatory agencies. The analyst will analyze privacy and compliance data to identify patterns or trends and prepare recommendations for business process changes to enhance privacy compliance. This position also involves participation in privacy committee meetings and task forces, representing the privacy division and advocating for compliance outcomes. Building and maintaining strong relationships across the organization is crucial for ongoing dialogue regarding regulatory or policy changes. The role provides frequent opportunities to interface with employees and managers at various levels, requiring high standards of legal and business ethics, as well as the ability to analyze large quantities of data and communicate findings clearly.