Privacy Manager, Healthcare at Inmar, Inc. in Winston Salem, North Carolina

Job Description:

The Privacy Manager for the Healthcare Division will lead the development, implementation, and enforcement of privacy policies and practices related to the handling of Protected Health Information (PHI) within the division. This role requires close collaboration with the division’s legal team, Product development team, IT and security teams, to ensure HIPAA compliance and to protect sensitive health information.

Major Responsibilities/Essential Functions: 

• Oversee privacy policies and practices concerning PHI and ensure HIPAA compliance. 


• Implement full visibility, documentation, tracking and change management of PII and PHI metadata across onsite and offsite data locations (storage, third-parties, etc.) to ensure compliance with DSAR requirements.


• Build and maintain data asset inventory within the division.


• Work with the Privacy Officer to integrate division-specific privacy requirements into the broader company privacy strategy.


• Conduct privacy impact assessments, risk management activities within the division, and manage privacy impact evaluations for storage, access and use of PHI and sensitive health care information.  


• Oversee the maintenance of a privacy compliance program, including risk assessments, execute regular audits for compliance, corrective action plans and and enforce when non-compliance occurs


• Manage the reporting of privacy breaches and potential regulatory violations


• Work closely with departments across the organization (Product Teams, Data Governance, Legal, Compliance, Operations, Security, etc.) to integrate privacy considerations into workflows and technology systems.  This includes working with Product Teams to ensure privacy by design principles are being followed during the product development process.


• Responsible for the development and onboarding of privacy-enhancing technologies and practices.


• Execute regular compliance audits and correct any perceived gaps.


• Develop and deliver HIPAA-focused privacy training and certifications to division employees


• .Assist with inquiries and investigations from regulatory bodies related to PHI or data privacy.


• Serve as the point of contact for privacy-related inquiries from customers, employees, and external parties for the division.


• Address inquiries and concerns regarding their privacy rights, including access to and amendment of their medical records.


• Respond to complaints about potential privacy violations and collaborate with appropriate departments to resolve issues.


• Stay informed about evolving patient privacy preferences and advocate for patient control over their data.


• Assist legal team in reviewing and revising Business Associate Agreements


• Track developing state laws and regulations related to personal health information and advise stakeholders within the division at regular intervals regarding the same.

Required Qualifications:

• Bachelor’s Degree in Health Information Management, Law, Business Administration or a related field required


• 5 years of experience in privacy, compliance or a related field, with a strong emphasis on HIPAA and health information privacy; or any equivalent combination of experience and training that provides the required knowledge, skills, and abilities needed to complete the major responsibilities/essential functions of the position


• In-depth understanding of HIPAA and related federal and state healthcare data privacy regulations.


• Certified in Healthcare Privacy and Security (CHPS) or equivalent certification preferred.


• Excellent interpersonal, communication, and project management skills.


• Demonstrates a strong willingness and ability to learn and grow in the role as regulations evolve and challenges arise.


• Proven ability to deliver pragmatic, business-friendly privacy solutions that balance regulatory requirements with operational efficiency, avoiding a one-size-fits-all approach and tailoring strategies to meet the unique needs of the business.


• Experience with privacy by design concepts and working with business partners to integrate compliance into projects and separate phases of product lifecycles.


• Experience in conducting data mapping exercises to identify how data flows through the organization, ensuring alignment with privacy regulations and identifying areas for enhancing data protection measures.


• Experience using privacy and security software to manage data access requests, deletion requests, and privacy-related complaints in a timely and compliant manner. 


• Strong grasp of data privacy contractual clauses.

Individual Competencies:

• 
  Integrity:  Gains the trust of others by taking responsibility for own actions and telling the truth. Follows through on commitments and agreements; Respects confidentiality; Maintains confidentiality regardless of pressure from others.


• 
  Analytical and Critical Thinking: Ability to tackle a problem by using a logical, systematic, sequential approach.


• 
  Communication:  Giving and receiving messages and information in written, oral, and visual formats concisely for a complete understanding of meaning and intent.


• 
  Collaboration: Works collaboratively with others to achieve group goals and objectives.


• 
  Effective Execution: Gathers and analyzes information to generate and evaluate potential solutions to problems, issues and challenges while weighing the accuracy and relevance of the facts, data and information.

• 
  Business Acumen: Understands and is aware of how to think about and successfully make the right business decisions through the utilization of industry-specific knowledge and skills and strategic thinking tools and skills.

The physical demands described here are representative of those that must be met by an associate to successfully perform the major job responsibilities (essential functions) of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the major job responsibilities. This job description is not intended to be an exhaustive list of all duties, responsibilities, or qualifications associated with the job. Duties responsibilities and activities may change, or new ones may be assigned at any time with or without notice.

While performing the duties of this job, the associate is: 

• Regularly required to use hands to finger, handle or feel objects, tools or controls, and reach with hands or arms.


• Regularly required to talk or hear and read instructions on a computer monitor and/or printed on paper.


• Occasionally required to stand, kneel or stoop, and lift and/or move up to ## pounds.


• Regularly required to view items at an extremely close range and must be able to adjust and readjust focus.


• Occasionally required to remain in a stationary position.

Occasionally: Job requires this activity up to 33% of the time

Frequently: Job requires this activity between 33% - 66% of the time

Regularly: Job requires this activity more than 66% of the time

As an Inmar Associate, you:

• Put clients first and consistently display a positive attitude and behaviors that demonstrate an awareness and willingness to listen and respond to clients in order to meet their short-term and long-term needs, requirements and exceed their expectations.


• Treat clients and teammates with courtesy, consideration and tact; you also can perceive the needs of internal and external clients and communicate effectively with the objective of delighting and retaining the client.


• Build collaborative relationships and work cooperatively with others, inside and outside the organization, to accomplish objectives, develop and maintain mutually beneficial partnerships, leverage information and achieve results.


• Set and attain achievable, yet aggressive, goals with a sense of urgency and accountability.


• Understand that results are important and focus on turning mission into action to achieve results following the principles of agile, dynamic execution while consistently complying with quality, service and productivity standards to meet deadlines and exceed expectations by giving our clients the best possible outcome.


• Support a safe work environment by following safety rules and regulations and reporting all safety hazards.

#LI-BA1

#LI-REMOTE

Apply Now