Privacy Officer at Forrest General Hospital – Hattiesburg, Mississippi

Job Summary:

Under the oversight of Forrest Health’s Corporate Compliance Officer, the Privacy Officer supports system-wide compliance with the Health Insurance Portability and Accountability Act’s (HIPAA) Privacy Rule and other privacy-related federal and state regulations. The Privacy Officer serves as the subject-matter expert on laws, regulations, policies, and procedures relating to the protection of private and confidential patient information. Plans, coordinates, manages, and conducts privacy risk assessments and independent legal-compliance reviews to evaluate compliance with all applicable state and/or federal regulations and Forrest Health’s privacy policies. Collaborates with the Information Security Officer to ensure alignment between privacy and security compliance programs including policies, practices, investigations, and acts as a liaison to the Information Services Department. Investigates and responds to Office for Civil Rights and HIPAA complaints, and as necessary, reports to management and/or regulatory agencies. Serves as the chair of the Privacy/Security Committee.

Performance Expectations:

• Maintain breach reporting requirements in accordance with federal guidelines.
• Maintain a strong working knowledge of federal and state laws and regulations pertaining to access, use, and disclosure of protected health information.
• Demonstrates knowledge and skills to appropriately communicate and interact with the patients, families, and visitors of all age groups while being sensitive to their cultural and religious beliefs.
• Demonstrates ability to provide education in regard to HIPAA/privacy for staff/departments as indicated.
• Demonstrates ongoing knowledge of EPIC use to review and audit charts for privacy as indicated.

Qualifications:

Education/Skills:

Bachelor’s degree in Business Administration, Healthcare Administration, Health Information Management, or related field. Must possess strong planning, organizational, and project management skills, problem-solving and analytic skills, interpersonal and oral/written communication skills, people and process management skills, and skills in personal diplomacy. Ability to lead in a team environment with minimal supervision. Knowledge of federal and state regulations related to privacy and data security of confidential information. Systems knowledge of Electronic Medical Records.

Work Experience:

Must have a minimum of two (2) years’ experience in Compliance, Privacy, Health Information Management, Information Security, Legal, or a related healthcare field. Experience working with the EPIC electronic medical record system preferred.

Certification/Licensure—DUE UPON HIRE

• Certified in Healthcare Privacy Compliance (CHPC)—Preferred

Mental Demands:

Must be able to work independently and must have a strong sense of organization and work efficiently under stress. Must be able to meet short deadlines. Must be able to work with frequent interruptions. Flexibility with work schedule to meet hospital needs. Travel to off-site facilities will be required.