Job Details

Legal Staff Paralegal in Bangor ME

Organization Type


Job Type

Legal Staff

Posted on

Sep 11,2019

Years of Experience

Min 4 yrs required


Bangor, ME, United States
Practice Area
Data Privacy >> Data Privacy
Health Care >> Health Care
Apply for this job
Your Email:
Upload Resume:

7 hits


Privacy Officer
The candidate will be responsible to support Chief Legal Officer to ensure operations with respect to privacy practices efficient and effective. Works independently as well as collaboratively with other team members, departments, and practice contacts. Serves as the primary point of contact for internal and external contacts on privacy, legal, and risk matters and requests. Works with brokers and carriers to facilitate claims incident and claims reporting, and through annual renewal processes. Performs paralegal support on legal and administrative matters (MHRC complaints, litigation, licensing board complaints, e.g.) under the direction of the Chief Legal Officer. Drafts correspondence and motions for filing in district and superior courts as well as administrative bodies. Manages all administrative details associated with litigation, legal requests from external and internal parties, and deposition notices/requests. Coordinates acceptance of, response to, and compliance with all subpoenas. At the direction of the Chief Legal Officer, prepares written notifications, pleadings, and correspondence to individuals, courts, and regulatory agencies, such as U.S. Department of Health and Human Service’s Office of Civil Rights (OCR) or other regulatory agency. Works at the direction of the Chief Legal Officer to assist with defending matters under regulatory and/or legal review or litigation, coordinating where appropriate with outside counsel and the US Attorney’s Office. May assists with review and maintenance of departmental budgets. Assists in identifying and researching new laws, rules and regulations implemented at the local, state, and federal level and assists with operational and policy updates regarding the same. Coordinates Disruptive Patient Committee discussions by gathering and summarizing materials in a cohesive manner for review. Drafts patient termination letters as needed under the direction of the Chief Legal Officer and Chief Medical Officer. Serves as a subject matter expert in the use of the patient privacy monitoring software, Maize Analytics, overseeing regular audits and investigating claims of inappropriate access and/or breach in coordination with staff. Oversees implementation of 42 CFR Part 2 policies and regular updates to related exhibits to ensure compliance with federal law and regulations. Implements and maintains a strategic and comprehensive privacy program that defines, develops, maintains and implements policies and processes that enable consistent, effective privacy practices which minimize risk and ensure the confidentiality of protected health information (PHI), paper and/or electronic, across all media types. Ensures privacy forms, policies, standards, and procedures are up-to-date. Collaborates with the information security officer to ensure alignment between security and privacy compliance programs including policies, practices, investigations, and acts as a liaison to the information systems department. Establishes, with the information security officer, an ongoing process to track, investigate and report inappropriate access and disclosure of protected health information. Monitor patterns of inappropriate access and/or disclosure of protected health information. Performs or oversees initial and periodic information privacy risk assessment/analysis, mitigation and remediation. Conducts related ongoing monitoring activities in coordination with firm’s other compliance and operational assessment functions. Takes a lead role to ensure the organization has and maintains appropriate privacy and confidentiality consents, authorization forms and information notices and materials reflecting current organization and legal practices and requirements. Fields and answers questions from practices about appropriate patient releases. Oversees, develops and delivers initial and ongoing privacy training to the workforce. Partners with the CLO and Compliance Officer to develop, implement, and monitor all business associate/qualified service organization agreements (BAA/QSO), to ensure all privacy concerns, requirements, and responsibilities are addressed. Works cooperatively with applicable organizational units in overseeing patient and third parties’ rights to inspect, amend, and restrict access to protected health information when appropriate. Oversees all required breach determinations and notification processes under HIPAA and applicable State breach rules and requirements. Establishes and administers a process for investigating and acting on privacy and security complaints. Performs required breach risk assessment, documentation, and mitigation. Works with Human Resources to ensure consistent application of sanctions for privacy violations. Maintains current knowledge of applicable federal and state privacy laws and accreditation standards. In collaboration with the Chief Legal Officer, works with senior leadership, outside legal counsel, and other relevant parties to represent the organization's information privacy interests with external parties (state or local government bodies) who undertake to adopt or amend privacy legislation, regulation, or standard. Cooperates and coordinates with the U.S. Department of Health and Human Service's Office for Civil Rights, State regulators and/or other legal entities in any compliance reviews or investigations. May assist the Compliance Officer as needed, in compliance reviews and investigations. Maintains awareness of policies, procedures, and work flows to offer suggestions for improvement and update as needed. Seeks best practices and works toward standardization. Updates and oversees firm’s privacy work plan, including ongoing training for departments and leadership. Supports timely team resolution of departmental and practice concerns to assure quality patient care. Maintains strict confidentiality in accordance with firm policies and state and federal privacy laws and regulations. Interacts harmoniously and effectively with others, focusing upon the attainment of organizational goals and objectives through a commitment to teamwork. Complies with all safety rules and protocols. Reports all accidents, regardless of severity, immediately to supervisor and completes incident/injury report and investigation form, which will be forwarded to Human Resources within 24 hours of incident. Abides by the organizations compliance program and requirements. Current on all required training for current year. Must demonstrate flexible and critical thinking skills, commitment to precision and accuracy, commitment to life-long learning, strong written and verbal skills, and a sense of humor.

Qualification and Experience

The candidate must have 4 year college degree or equivalent years of experience in healthcare operations or administration; Master’s Degree or Juris Doctor is preferred. Paralegal certification or equivalent experience in a legal office or court setting is beneficial. Healthcare privacy compliance (CHPC) certification is an asset. Project Management Certification is a plus. Knowledge of practice and project management, and various systems and software is necessary. Knowledge of organizational policies, procedures, and systems is needed. Knowledge of health care administration practices is must. Should be proficient in Word, Excel and PowerPoint.

Company info

Apply Now