The HIPAA Privacy Officer's general responsibilities are to oversee all ongoing activities related to the development, implementation, maintenance of, and adherence to Ohio University policies and procedures covering privacy of and access to protected health information (PHI) and other data privacy matters in compliance with federal and state laws and University privacy practices.
1.Develop, establish, conduct, implement
Serve as the subject matter expert for all Health Insurance Portability and Accountability Act (HIPAA) and privacy related compliance.
Develop, establish and maintain processes, policies, and documentation for data privacy including HIPAA and privacy security for Ohio University.
Develop, implement and maintain appropriate privacy and security related policies and procedures and advises the University on the compliance implications of any new or existing policies.
Conduct ongoing compliance monitoring activities, investigate high impact issues in coordination with other compliance functions at Ohio University, and develop and maintain audit schedules
Participate in the development, implementation and ongoing compliance monitoring of all third-party vendors/business partners, to ensure all privacy concerns, requirements and responsibilities are addressed.
Establish a mechanism to track access to PHI in the organization and to allow qualified individuals to review or receive a report on such activity.
Establish and administer a process for receiving, documenting, tracking, investigating and resolving all complaints concerning Ohio University's privacy policies and procedures, and collaborate with the Office of Legal Affairs to respond, as necessary.
Develop or obtain appropriate privacy and security training for all workforce members, as appropriate.
Manage breach notification investigations, determinations and responses.
2.Collaborate, serve, cooperate
Collaborate with Ohio University administration, compliance officer and Legal Affairs to establish/maintain and serve as the chair of a University-wide Privacy Oversight Committee.
Delegate a Privacy Officer designee for each covered department, as appropriate.
Work with Legal Affairs and key departments to ensure Ohio University maintains appropriate privacy and confidentiality consent forms, authorization forms, and information notices and that such materials reflect current Ohio University practices and requirements.
Work cooperatively with any HIPAA covered components (including health plan) to oversee compliance with rights to access, amendment, accounting of disclosures, restrictions, and confidential communications, when appropriate.
Ensure compliance with Ohio University privacy policies and procedures, and work with Human Resources, Information Technology, and the Office of Legal Affairs to ensure consistent application of sanctions for employee violations of such policies and procedures.
Serve as a member of, or a liaison to, Ohio University's Institutional Review Board.
Work with Information Technology to review all Ohio University information security plans to ensure alignment between security and privacy practices.
Serve as information privacy consultant to all departments.
Cooperate with OCR, other regulators, and organization officers in any compliance reviews or investigations.
Assist with the U.S. Department of Health and Human Service's Office of Civil Rights, other legal entities, and Ohio University administrators in any compliance reviews or investigations
3.Professional development and organizational culture
Maintain current knowledge of applicable federal and state privacy and security laws and accreditation standards and monitor advancement in information privacy technologies to ensure organizational adaptation and compliant.
Maintain current knowledge of applicable accreditation standards.
Maintain knowledge of university policies that govern the ethical conduct of behavioral and clinical research involving behavioral and clinical research involving human subjects.
Collaborate with Information Technology to monitor advancements in information privacy and security technologies to ensure Ohio University's adaptation and compliance.
Fosters a work environment emphasizing excellence, collaboration, integrity, trust, and diversity.
Maintains sensitive and confidential information.
Serves as principal point of contact with respect to receipt and disposition of privacy complaints and the provision of information regarding Ohio University privacy practices.
Collaborate with the information security officer to ensure alignment between security and privacy compliance programs including policies, practices, investigations, and acts as a liaison to the information systems department.
Work with the Offices of Legal Affairs, Internal Audit and Information Technology when encountering privacy issues, questions related to the release of information, and for the development of forms, processes and policies related to privacy issues.
A bachelor’s degree is required; 6-8 years of relevant professional experience is required
A masters degree is preferred in one of the following areas: Business Administration, Public Administration, Health Administration, Higher Education Administration, Risk Management
Planning Unit: Heritage College of Osteopathic Medicine
Department: COM-Dean's Office
Applicants may contact this person if they have questions about this position: Brenda Noftz; email@example.com
Employment Type: full-time regular
Internal Number: 34079
About Ohio University
Ohio University is home to one of the nation’s friendliest and most picturesque campuses. But more importantly, it’s where you can become part of a two-century tradition of excellence and embark upon a rewarding career that will make a real difference. From teaching and research to admissions, facilities maintenance, and residence life, our faculty and staff propel Ohio University’s mission of helping students become their best selves. OHIO offers competitive compensation and outstanding benefits. For a complete list of employment opportunities, please visit www.ohiouniversityjobs.com.Ohio University is an equal access/equal opportunity affirmative action institution. For more information about Ohio University’s policies prohibiting discrimination and harassment, visit www.ohio.edu/equity.