Support PDF,DOC,DOCX,TXT,XLS,WPD,HTM,HTML fils up to 5MB
Organization TypePublic Interest
Years of Experience
Date Last Verified
ProfileCompliance Program Manager The candidate will be responsible for ensuring all operating units across the system are in compliance with regulatory and legal requirements relative to data sharing, privacy, and information security. Ensure all appropriate local, state, and federal laws and regulations are followed. Provide consultation to internal staff. Coordinate and communicate with business contacts, legal, and compliance at external organizations regarding standard BAA contract provisions and negotiation, as well as required management and monitoring of external organizations relative to data sharing privacy and security. Frequently reports to Chief Compliance Officer, and Chief Privacy Officer. Collaborates and coordinates with legal privacy lead, information services, and other stakeholders to promote and ensure compliance with applicable laws and regulations pertaining to Business Associates. Act as a steward of the Business Associate Management and Monitoring Program structure and process, and maintains effective controls. Establish and maintain strong working relationship with BAA Process Owners and BAA Support Resources. Plan and facilitate monthly presentations to the Health Information Privacy and Security committee, which provides oversight and guidance to the Business Associate Management and Monitoring Program. Ensure institutional policies/procedures relative to Business Associates are in alignment with applicable regulations and the organization’s mission and strategic goals. Prepare regulatory compliance reports to management and regulatory bodies as needed. Remain apprised of relevant changes in applicable laws, industry guidelines, and standards applicable to privacy, security, and Business Associates. Assist leadership and stakeholders in other projects as needed. Responsible for operational and administrative activities related to Business Associates and compliance with contractual and privacy requirements related to Business Associates. Responsible for coordinating response and remediation for data breaches reported by Business Associates. In coordination with legal department and the Chief Privacy Officer, prepares for and responds to Office for Civil Rights complaints, audits, and investigations. Serve as the process expert and acts as a resource for the entire organization. Provide daily guidance/advice via site questions related to Business Associate Management and Monitoring Program policy and process. Ensure a comprehensive and complete understanding of Business Associate Management and Monitoring Program policies and procedures. Assist Process Owners and Support Resources in understanding their roles and accountabilities at each stage of the contracting process, including initiation, negotiation, execution, administration and renewal/termination. Assist with the identification of gaps and inefficiencies in existing policies, procedures, and workflows and suggests effective and efficient solutions. Responsible for due diligence and contractual issues related to business changes, acquisitions, and mergers. Monitor all contracting activities and timelines. Provide reporting tools as necessary to facilitate ongoing compliance. Utilize C360 database to perform statistical sampling and monitoring. Establish and implement an ongoing program for management and monitoring of Business Associate administrative, physical, and technical safeguards relative to the privacy and security of data. Develop and implement process for reviewing and risk ranking Business Associates. Develop and implement audit and monitoring procedures to be applied to Business Associates based on assessed level of risk. Communicate and collaborate with external contacts, legal, information services, and compliance departments to conduct Business Associate management and monitoring activities. Develop and modify tools to support an effective and efficient Business Associate management and monitoring process. Provide education, advice, guidance, and problem resolution to stakeholders on Business Associate related issues. Masters or JD preferred. 4-6 years of experience in related field required. Health care compliance or health care legal experience preferred. Contract management experience preferred. Demonstrated skills in leading process re-design and improvement required. Knowledge and understanding of HIPAA Privacy and Security Rules; information security technical standards and best practices; risk assessment and/or analysis; enterprise program development and implementation preferred. Excellent: critical thinking, customer service and influencing skills; organizational and communication skills required. Mastery of computer skills with ability to assess system tools as necessary to support effective and efficient data management required.
Job ID: 36469BR