Job Description:
• Support investigations of suspected privacy incidents and breaches involving protected health information and other sensitive data under the direction of senior team members.
• Gather facts, review available records, and coordinate with business partners to help determine scope, root cause, and required follow-up actions.
• Assist with incident documentation, client support materials, and internal communications related to privacy matters, with senior review for complex issues.
• Maintain investigation records, evidence, and the privacy incident log in accordance with retention requirements.
• Identify patterns and recurring issues from incidents, including those involving new technologies or process gaps, and escalate trends to senior team members.
• Support day-to-day privacy operations, including privacy reviews, documentation, issue tracking, and follow-up activities across the organization.
• Assist with privacy risk analyses involving sensitive data, business processes, and new or changing technologies.
• Review data flows, system use cases, and operational activities to help identify privacy risks and escalation needs.
• Help maintain privacy logs, intake records, issue trackers, and program documentation with a high degree of accuracy and organization.
• Contribute to reviews involving digital tools, workflow automation, analytics platforms, and AI-enabled solutions to help ensure privacy requirements are considered early in the design and implementation process.
• Monitor regulatory, industry, and technology developments and summarize practical implications for the privacy team.
• Support the continuous improvement of templates, workflows, trackers, and checklists used in privacy operations and governance activities, with an eye toward efficiency, usability, and scalability.
• Contribute to privacy policies, standards, training materials, and internal guidance documents.
Requirements:
• Bachelor's degree, or equivalent combination of education and relevant experience.
• 2–4 years of professional experience in privacy, compliance, healthcare operations, information governance, information security, risk, or a related analytical, operations, or technology-focused role.
• Working knowledge of privacy principles, data handling expectations, and risk awareness in regulated or data-intensive environments.
• Demonstrated ability to produce clear, organized written documentation such as case notes, issue summaries, policy drafts, reports, or research findings.
• Strong written and verbal communication skills, including the ability to explain technical or regulatory topics to non-technical audiences.
• Sound judgment, discretion, and the ability to handle sensitive information.
• Interest in professional development and willingness to pursue privacy certification such as CIPP/US, CIPM, CHPC, or related credentials.
Benefits:
• Bonus Incentives
• Paid Certifications
• Tuition Reimbursement
• Comprehensive Benefits
• Career Advancement