Privacy Manager jobs in Des Moines, IA

Remote/Hybrid position with the need to travel within a 3-state area IL, IA, and WI.

We are seeking a Market Privacy Officer to join our Team! In compliance with the HIPAA Privacy Rule, this position will serve as the Privacy Officer for one or more UPH Markets and/or UPH operating division(s). Primary responsibilities will include responsibility for privacy issues in one or more Markets, assisting in other Markets as needed, and participation in implementation of a standardized privacy program applicable to the entire the system. In doing so, collaborate with the management team in the design, implementation, and monitoring of privacy initiatives to ensure adherence to patient privacy regulations/law (e.g. HIPAA, Part 2, Mental Health state laws, etc.). Develop and oversee appropriate privacy-related education for new employees and existing staff members. Investigate suspected cases of improper privacy activity, misuse of data, mitigation, breach notification, education/training, and coordinate reporting to the applicable Compliance Committee as appropriate and recommend corrective steps.

Why UnityPoint Health? 

• Commitment to our Team – We’ve been named a  Top 150 Place to Work in Healthcare 2022  by Becker’s Healthcare for our commitment to our team members. 
• Culture – At UnityPoint Health, you matter. Come for a fulfilling career and experience  a culture  guided by uncompromising values and unwavering belief in doing what's right for the people we serve. 
• Benefits – Our competitive  Total Rewards  program offers benefits options that align with your needs and priorities, no matter what life stage you’re in. 
• Diversity, Equity and Inclusion Commitment – We’re committed to ensuring you have a voice that is heard regardless of role, race, gender, religion, or sexual orientation. 
• Development – We believe equipping you with support and  development opportunities  is an essential part of delivering a remarkable employment experience. 
• Community Involvement – Be an essential part of our core purpose—to improve the health of the people and communities we serve. 

Visit us at UnityPoint.org/careers to hear more from our team members about why UnityPoint Health is a great place to work.  https://dayinthelife.unitypoint.org/  

What are team member vaccine requirements?

As part of keeping our communities safe and healthy, all team members must be vaccinated for influenza and Tdap, provide proof of immunity to MMR and varicella, and be tested for tuberculosis.  New hires must submit proof of vaccination or an approved exemption to begin work. If you have questions, please contact a recruiter or ask at any time during the interview process. UPH strongly recommends that all team members receive the updated 2023-2024 COVID-19 vaccine, and at this time, UnityPoint Health – Meriter requires Covid-19 vaccination or an approved exemption.

Market Privacy Officer

• Work in collaboration with the System Privacy Officer and Market Information Security Officer to maintain the privacy and security program for assigned Market(s).
• Support other Market Privacy Officers by handling incidents and matters from other Markets to ensure equitable distribution of work.
• Establish subject matter expertise as requested by the System Privacy Officer to support the system-wide privacy program.
• Support standardization of the privacy program across Markets, including standardized training and policies.
• Participate in system-wide initiatives impacting privacy.
• Plan, execute and manage a variety of technical, investigative, and education-based projects as a key member of the Compliance Department.
• Respond to investigations and/or inquiries from regulatory agencies on privacy concerns including, but not limited to, the Office of Civil Rights, Attorney General, accreditation bodies, etc.
• Develop communication tools and vehicles to disseminate and update management and staff on privacy initiatives, related policies and procedures, and regulations.
• Serve as a resource to providers and team members in establishing methods to improve efficiency and reduce vulnerability to privacy issues.
• Ensures Markets have appropriate Business Associate Agreements in place and perform ongoing monitoring thereof.
• Work with the management team in the design, implementation and monitoring of the privacy program and initiatives to promote and ensure adherence to federal and state privacy laws and regulations.
• Develop and oversee appropriate privacy-related education for new employees and existing team members.
• Assist in the development and execution of a Privacy Auditing and Monitoring Plan.
• Investigate suspected cases of improper privacy activity, coordinate reporting to the applicable regulatory bodies and Compliance Committee as appropriate, and recommend corrective steps.
• Ensure compliance with privacy monitoring and documentation requirements.
• Manage the process to receive, investigate, document, and respond to all privacy complaints.
• Ensure process for compliance with patient rights(i.e. accounting of disclosures, request to amend, right to access, restrict use and disclosure, etc.
• Provide specific remedial privacy training).
• Collaborate with HR to ensure consistent application of sanctions for violations of privacy rules.
• Perform privacy walk-throughs and physical space assessments.
• Work with System Privacy Officer to ensure that the organization has and maintains appropriate privacy and confidentiality consents, authorization forms, privacy notices, privacy policies and procedures, and business associate agreements.
• Prepare periodic reports to System Privacy Officer and leadership on status of privacy and security initiatives.
• Participate in periodic enterprise-wide meetings related to privacy/security.
• Support an environment of innovation, learning, teamwork, and professional practice, consistent with the mission, vision and values of the organization.
• Provide resources to help ensure all organization services, policies and procedures follow agency standards, regulatory mandates, accrediting bodies and federal, state and local regulations as appropriate.
• If delegated, function as the Identity Theft Prevention Officer.
• Collaborate with other Market Privacy Officers in building strong relationships in areas of responsibilities.
• Serve as a member or liaison to affiliate IRB as applicable.

Education:

• Bachelor’s degree in HIM or healthcare related field

Experience:

• At least 5 year of experience managing privacy initiatives, preferably within a large, complex healthcare organization, and strong knowledge of federal and state privacy laws/regulations.

Licenses/Certifications:

• Certification in Healthcare Privacy (CHPC), Certified HIPAA Professional (CHP), or Certified Information Privacy Professional (CIPP) or obtain within first year of service.

Knowledge/Skills/Abilities:

• Knowledge of risk assessment and development of privacy breach reporting systems and protocols.
• Strong verbal and written communication skills.
• Ability to take initiative and exercise independent judgment, decision making and problem-solving expertise.
• Knowledge of personnel administration and patient relation principles.
• Ability to work as a team member.
• Ability to understand and apply guidelines, policies and procedures.