Manager of Data Security Operations

Summary:

The Manager of Data Security Operations is responsible to assist with security efforts and will be expected to manage data protection risk and privacy compliance. The Manager will oversee efforts that foster and ensure a strong culture of adherence to data privacy and protection including data security and compliance, addressing data privacy requirements, development and implementation of all data security policies, assessing and managing risk that can arise from data protection mistakes, and acting as a point of contact with funding authorities, vendors and other data subjects.

Essential Job Functions:

  • Promote a data privacy culture by advocating best practices, advising employees on how to deliver compliance and informing key stakeholders on their obligation to adhere to those laws when dealing with personal data
  • Educate the organization and staff on compliance requirements
  • Provide training to staff involved in data acquisition, management, processing, transmission, and storage
  • Oversee policies and procedures for PCC and ensure employees are trained and adhere to established policies and procedures
  • In conjunction with the Director of Quality and Compliance, coordinate policies and procedures for HIPAA compliance as well as coordinate auditing and verification of administrative services in covered regions
  • Conduct internal audits (HIPAA, PCI, PIPEDA) to ensure compliance and address potential issues proactively
  • Serve as the point of contact between the organization and State or Federal oversight agencies (Department of Health, Centers for Medicaid and Medicare Services, etc.)
  • Coordinate implementation of data security and other compliance risk assessments; facilitate implementation teams for solutions to mitigate risks identified through assessments
  • Provide immediate response and action plans in the event of a data security threat or issue
  • Maintain comprehensive records of all data processing activities conducted by the organization including the purpose of all processing activities
  • Facilitate and/or serve as on committees and workgroups that serve PCC in technical, privacy and security areas of focus; serve as contributing member of PCC Information Technology and Compliance teams
  • Assist in the development of the operational budget for management of data security with needed resources
  • Serve as the main point of contact for systems and software vendors for data security needs
  • In conjunction with Administrative Services Organization, establish, oversee, and monitor reporting system for regional hubs and operations
  • Ensure compliance with all applicable local, State, and Federal regulations and agency policies
  • Perform all other duties relevant to the position as requested.

Knowledge, Skills, and Abilities:

  • Knowledge of OPWDD and/or DOH program and service delivery system
  • Proficient in quality and performance management metrics
  • Must be able to multi-task, establish priorities, and meet deadlines
  • Ability to communicate effectively, both orally and in writing
  • Ability to act quickly, assess, and act appropriately in crisis situations
  • Proficient with technology and understanding of health records
  • Demonstrated capability to handle confidential information and data breach incidents.

How to Apply:

To apply for this position, please submit your cover letter and resume to jobs@primecareny.org. If chosen for an interview, you will get a detailed job description and the opportunity to demonstrate why you are the best candidate for this position.

Please direct questions to jobs@primecareny.org.