Privacy Operations Manager at Mass General Brigham in Somerville, Massachusetts

Job Description:

Position Overview:



Under the leadership of the Enterprise Privacy Operations, Senior Manager, the Privacy Manager is responsible for the development, implementation and operational management and maintenance of an MGB enterprise-wide privacy compliance assurance program. This includes identification and maintenance of appropriate level of resources (human and technical) to carry out the functions and operations of the Privacy Office while proactively identifying and managing business opportunity while reducing privacy and security risk.



Principal Duties and Responsibilities

• Establish, implement and maintain an ongoing, enterprise-wide privacy compliance, education and training program. This includes
  
  
  • Design and promote a workforce privacy training and communications program and activities to foster privacy and confidentiality awareness throughout Mass General Brigham.
    
    
  
  
  • Establish and administer a process for receiving, documenting, tracking, investigating, and taking action on all complaints and reported incidents concerning potential violations of patient privacy and confidentiality. This includes assessing applicability, conducting risk assessments, and notifying impacted individuals, in accordance with federal, state and international data breach laws.
    
    
  
  
  • Ensure compliance with privacy and information security policies and practices and the consistent application of sanctions for failure to comply for all workforce members, in cooperation with Human Resources, as applicable.
    
    
  
  
  • Maintain preparedness and provide timely response to Office of Civil Rights, DPH, CMS, other legal entities, and organization officers in any compliance reviews, audits or investigations.
  
  
  
  


• Develop a working knowledge of all departmental policies and procedures as well as all aspects of the functionality of the unit, including any applications used within the unit.


• Research and apply all current and emerging applicable federal and state privacy laws and accreditation standards. Monitor advancements in information privacy technologies to ensure MGB's adaptation and compliance.


• Lead with a positive and productive team environment, by mentoring and coaching staff. Supervise staff in the day-to-day operational functions of the unit. Manage and delegate assignments of team resources in operations of the unit as well as other projects. Manage daily and on-call scheduling and timekeeping for unit team, including PTO approvals, and management of timekeeping exceptions


• Create, maintain and implement portfolio of Privacy Office policies and procedures, facilitate training and provide guidance.


• Hire, manage and develop team of privacy specialists. Evaluate overall employee performance, author annual reviews, and develop the career action plans for staff in a timely manner. Work with staff to develop an individualized professional development plan by setting clear goals. Monitor the quality of work performed by staff throughout the fiscal year. Provide orientation and training to new staff regarding the privacy policies and procedures.


• Perform ongoing, enterprise-wide privacy risk assessments in response to changing environment, operational changes or significant events in order to continually safeguard patient, research, employee and organizational confidential information. Work collaboratively and consult with site information security officer to identify and refer matters requiring ISO participation or an information security risk assessment.


• Develop procedures and oversees ongoing proactive auditing of electronic health records.


• Participate in the development and maintenance of up-to-date documentation (Mass General Brigham Notice of Privacy Practices, privacy and confidentiality consent documents, authorization forms, and information notices), resources (publications, newsletters, website, seminars), policies, procedures, business associate agreements, and guidelines that reflect current organizational and legal practices and requirements. This is done in collaboration with legal counsel, compliance, site management, and medical staff leadership to facilitate education and awareness of the hospital's approach and ongoing adherence to HIPAA.


• Promote and encourage high quality customer service to all Mass General Brigham departments, entities and affiliates through on-going communication, feedback and follow-through with customers and peers. Collaborate with clinicians and other health professionals in order to accomplish goals and maintain relationships required for cross departmental cooperation and projects.


• Participate in professional development activities offered by relevant organizations and share information with team.

Qualifications

Qualifications:

• Bachelors Degree. Master's Degree in health care area or Law Degree strongly preferred.


• 5-7 years privacy and security or compliance experience


• 5-7 years of progressive health related managerial experience preferred

Skills/Abilities/Competencies Required:

• Exhibit strong professionalism and a highly proficient persona. Individual must possess the knowledge, skills and abilities to gain credibility as the internal privacy and security expert/consultant.


• Identify privacy and information security knowledge gaps across the organization. Manage and lead successful educational campaigns, trainings and performance improvement processes.


• Ability to build relationships and motivate teams of people which includes working cooperatively and communicating effectively with groups at various professional levels, i.e. physicians and other care providers, administrators, managers and staff in order to accomplish goals and objectives while maintaining good working, professional relationships.


• Detail-Oriented with excellent analytical and problem-solving skills. Ability to analyze, interpret and apply data towards operations, strategic planning and budget purposes.


• Excellent communication and written skills


• Ability to plan and manage projects, staff, other resources, and timelines; and to prioritize and delegate accordingly


• Ability to be flexible, versatile, and adaptable in day to day activities conducted in a multi-site environment


• Ability to manage workload and competing priorities in order to complete tasks within set limits


• Ability to produce quality work on a consistent basis


• Ability to work independently and as a team player


• Ability to understand the work environment and competing priorities in conjunction with developing and meeting project goals.


• Strong PC skills including knowledge of PC applications.


• Utilize the Mass General Brigham values to govern decisions, actions and behaviors. These values guide how we get our work done: Patients, Affordability, Accountability & Service Commitment, Decisiveness, Innovation & Thoughtful Risk; and how we treat each other: Diversity & Inclusion, Integrity & Respect, Learning, Continuous Improvement & Personal Growth, Teamwork & Collaboration

Working Conditions

• Hybrid work location, opportunity to work remotely, periodic travel to Mass General Brigham entities and corporate offices approximately 4 days a month.

Supervisory Responsibility

• Direct supervision of 5+ FTEs and other temporary staff as needed

Fiscal Responsibility

• Provide capital and operating budget planning for Privacy Office including estimating resources needed for projects

About Us:

As a not-for-profit organization, Mass General Brigham is committed to supporting patient care, research, teaching, and service to the community by leading innovation across our system. Founded by Brigham and Women's Hospital and Massachusetts General Hospital, Mass General Brigham supports a complete continuum of care including community and specialty hospitals, a managed care organization, a physician network, community health centers, home care and other health-related entities. Several of our hospitals are teaching affiliates of Harvard Medical School, and our system is a national leader in biomedical research.


We're focused on a people-first culture for our system's patients and our professional family. That's why we provide our employees with more ways to achieve their potential. Mass General Brigham is committed to aligning our employees' personal aspirations with projects that match their capabilities and creating a culture that empowers our managers to become trusted mentors. We support each member of our team to own their personal development-and we recognize success at every step.


Our employees use the Mass General Brigham values to govern decisions, actions and behaviors. These values guide how we get our work done: Patients, Affordability, Accountability & Service Commitment, Decisiveness, Innovation & Thoughtful Risk; and how we treat each other: Diversity & Inclusion, Integrity & Respect, Learning, Continuous Improvement & Personal Growth, Teamwork & Collaboration.



EEO Statement

Mass General Brigham is an Equal Opportunity Employer. By embracing diverse skills, perspectives and ideas, we choose to lead. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, national origin, sex, age, gender identity, disability, sexual orientation, military service, genetic information, and/or other status protected under law. We will ensure that all individuals with a disability are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Apply Now