50 applicants

Company

World Relief · 1 day ago

Privacy Officer (2024973)

Baltimore, MD

Full-time

Remote

Mid, Senior Level

$80K/yr - $85K/yr

5+ years exp

Maximize your interview chances

CharityConsulting

Growth Opportunities

No H1B

Insider Connection @World Relief

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Develop implement, and maintain corporate privacy policies and procedures.

Develop and deliver data privacy training and guidance to staff, considering language and literacy needs.

Provide training and guidance to staff regarding data privacy.

Conduct regular and ongoing privacy risk assessments and legal-compliance audits using WR’s risk assessment systems and cycles, evaluating compliance with HIPAA, Confidentiality of Substance Use Disorder Patient Records (42 CFR Part 2) and all other applicable state and federal regulations.

Identify potential areas of privacy vulnerability and risk.

Develop corrective action plans for resolution of problematic issues and guidance for risk mitigation.

Collaborate with the Security Officer to ensure protection of electronic protected health information (ePHI) in compliance with both federal and state law, and where necessary define steps to mitigate any identified risks.

Investigate and track privacy incidents as they arise, reporting inappropriate access and/or disclosure of protected health information according to the Health Insurance Portability and Accountability Act (HIPAA) privacy rules.

Coordinate, convene, and report progress to and recommendations for changes to the internal intradepartmental Privacy Advisory Group.

Collaborate with IT, HR, Legal, and local offices, including IT personnel contracted by local offices, to ensure recommendations for change are approved, understood, and implemented fully.

Keep abreast of the changing landscape of privacy laws and best practices, updating the relevant policies and procedures and communicate these changes accordingly.

Monitor and ensure compliance follow-up with staff for the documentation platform for detailed documentation of staff training, and other privacy compliance requirements for staff working in roles where HIPAA compliance is required (currently about 25 staff with annual growth in the next three years of 5 to 10 staff per year).

Oversee and manage data breach response and investigation in collaboration with the Security Officer.

Oversee third-party vendors for privacy compliance.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

HIPAA compliancePrivacy policies developmentData privacy trainingCompliance auditsRisk assessmentHealth care privacyInformation securityBehavioral health practicesChristian faithDiverse settings experienceConfidential information protectionThird-party vendor management

Required

Mature and personal Christian faith.

Committed to the mission, vision, and values of World Relief.

Desire to serve and empower the Church to impact vulnerable communities.

Able to affirm and/or acknowledge World Relief's Core Beliefs, Statement of Faith, Christian Identity and National Evangelicals For the Health of The Nation document.

Subject matter expert on laws, regulations, policies, and procedures relating to the protection of private and confidential information, especially HIPAA, Confidentiality of Substance Use Disorder Patient Records (42 CFR Part 2) and other applicable state and federal regulations.

Have highly developed written and verbal communication skills.

Sound business judgment on handling sensitive and confidential information.

Ability to work in diverse settings.