Health Information, Privacy, & Security Manager

View full description

Requirements:

• Minimum of 4-6 years of experience in healthcare privacy, security, or health information management, specifically in roles focused on managing sensitive health data and ensuring compliance with privacy and security regulations.
• Proven experience ensuring compliance with federal, state, and local regulations, including HIPAA, HITECH, and other applicable laws governing health information privacy and security.
• Demonstrated knowledge of healthcare laws, regulations, and standards governing the use, access, and protection of medical records and patient data.
• Strong background in developing, managing, and executing comprehensive privacy and security programs tailored to healthcare organizations.
• Proven track record in leading the response to privacy and security incidents, including breach identification, investigation, mitigation, and reporting in compliance with legal requirements.
• History of identifying compliance gaps and implementing corrective actions to maintain continuous regulatory adherence.
• Experience designing and delivering effective training programs related to privacy, security, medical record management, and health information compliance.
• Proven ability to foster a culture of accountability and continuous improvement through education and awareness.
• Ability to provide clear and actionable updates to senior leadership and stakeholders regarding program effectiveness and potential areas for improvement.

Responsibilities:

• Lead the development and execution of comprehensive privacy and security strategies, ensuring alignment with Vynca’s overall organizational goals and compliance requirements.
• Develop and manage a centralized program to ensure the quality, accuracy, and accessibility of medical record documentation, meeting all legal and regulatory standards.
• Collaborate with cross-functional teams to implement processes and systems that consistently support the accurate, complete, and timely documentation of medical records, maintaining high standards of quality.
• Ensure adherence to federal, state, and local regulations, including HIPAA, HITECH, and other applicable laws governing health information privacy and security.
• Conduct regular risk assessments to identify vulnerabilities in health information management systems, and implement corrective actions to address any identified risks.
• Oversee the implementation and management of data protection programs to safeguard sensitive health information from unauthorized access, theft, or loss, including encryption and access controls.
• Plan and execute internal and external auditing and monitoring activities to evaluate compliance with health information management, privacy, and security policies and regulations, and address any gaps in compliance.
• Create, update, and enforce privacy and security policies and procedures related to health information management to ensure ongoing compliance and best practices.
• Manage medical record requests, including access, subpoenas, restrictions of information, amendments or corrections, and accounting of disclosures
• Design and deliver training programs for staff on medical record management and documentation, privacy, security protocols, and other health information management compliance standards to foster a culture of awareness, accountability, and continuous improvement.
• Lead the response to privacy or security incidents, including breach identification, investigation, mitigation, and reporting in accordance with legal requirements.
• Work closely with IT, legal, compliance, and operations teams to ensure seamless integration of health information management policies, privacy, and security measures into the organization's systems, applications, and day-to-day operations.
• Track, monitor, and report on the effectiveness of health information management, privacy, and security programs, providing regular updates to leadership and recommending continuous improvements to enhance data protection and integrity efforts.