UPMC is looking for a Privacy Analyst Intermediate to join their team. This position will be a hybrid role offering remote/work from home, however will require working ON-SITE work as well.
Description
Under the direction of the Office of Patient and Consumer Privacy (OPCP), the Intermediate Privacy Analyst supports the organization’s enterprise-wide privacy program and oversight activities. This role requires adequate understanding of applicable privacy regulations and collaboration with Privacy Officers across the system.
Key responsibilities include managing and responding to privacy inquiries, maintaining accurate documentation through investigation logging and regulatory reporting, and supporting organization-wide initiatives through data analysis, regulatory research, and compliance monitoring. The analyst also conducts complex internal investigations and audits and evaluates privacy trends identified through reporting mechanisms.
Additionally, the role involves developing and maintaining privacy policies, procedures, and program materials, as well as delivering training to promote privacy awareness. The Intermediate Privacy Analyst serves as a resource to workforce members and Privacy Officers and contributes to the ongoing success of departmental and organizational privacy goals.
Responsibilities:
· Support the UPMC Office of Patient and Consumer Privacy (OPCP) in administering the enterprise-wide privacy program and providing guidance to entity Privacy Officers
· Manage and support internal privacy investigations, including enforcing investigatory workflows and ensuring accurate documentation and compliance reporting
· Coordinate and facilitate responses to external audits, regulatory inquiries, and government investigations, including required filings (e.g., HIPAA)
· Research, interpret, and apply state and federal regulations and industry guidance to develop organizational policies, procedures, and compliance resources
· Monitor and analyze privacy compliance data, including tracking and trending to identify risks and support remediation efforts
· Develop and deliver privacy training and educational materials, and contribute to ongoing awareness initiatives across the organization
Qualifications
· Bachelor's Degree and 2 years of health care, compliance or other related work experience is required.
· An Advanced Degree, Professional Certification in Compliance, Health Care Administration, Business Administration, Law or a related field is preferred.
· Experience in an academic medical center setting is strongly preferred.
· Data Analytics experience is strongly preferred.
· Expert proficiency with associated technology solutions such as Microsoft Excel and Access is strongly preferred.
· Ability to learn and identify best practices relating to new technology is preferred.
· Ability to identify, interpret and summarize relevant policy and regulation in a clear and timely manner is essential.
· Technical acumen and the ability to learn and identify best practices relating to new technology solutions are preferred.
· Experience researching and interpreting regulation and performing internal investigations is preferred.
· Must be able to demonstrate a high degree of professionalism, enthusiasm and initiative on a daily basis.
· Ability to work in a fast-paced environment is a must.
· Must have ability to manage multiple tasks and projects, and forge strong interpersonal relationships within the department, with other departments, and with external audiences.
· Attention to detail is critical to the success of this position, as is the ability to deal with ambiguity Excellent planning, communication, documentation, organizational, analytical, and problem-solving abilities are a must.
Licensure, Certifications, and Clearances:
Act 34
UPMC is an Equal Opportunity Employer/Disability/Veteran