GENERAL SUMMARY: Reports directly to the Deputy Information Privacy Officer (DIPO) or the Manager Information Privacy Services. The Lead Privacy Specialist will support the mission of the Henry Ford Health Information Privacy & Security Office’s (IPSO) Privacy Compliance Program to effectively prevent and/or detect violations of HIPAA, HITECH and other State, Federal, and International laws, regulations and Henry Ford Health policies, procedures, and standards of conduct. In addition, the Lead Privacy Specialist serves the privacy team and / or line of business lead for daily operations, investigations, and breach response activities. This position requires professional discretion due to the highly sensitive nature of work performed. PRINCIPLE DUTIES AND RESPONSIBILITIES: Primary Responsibility 1. Liaison for privacy in assigned business unit(s). 2. Responsible for ensuring adherence to applicable State, Federal, and International privacy laws and related Henry Ford Health policies and procedures for assigned business units. 3. Represents the Information Privacy Program in their assigned Business Units’ Operational Compliance Council as it functions to address compliance with applicable regulations. Participates in Business Unit leadership meetings as needed to address compliance and regulatory issues. 4. Leads monitoring and auditing activities for assigned business unit (s) and coordinates action to respond to identified risks and violations. 5. Develops and conducts role-based education and training of assigned business unit employees on privacy regulations and Henry Ford Health policies and procedures. 6. Applies investigative techniques and audits to validate privacy breach occurrences. 7. Conducts risk assessments to determine breach notification responsibilities to patients and the Office for Civil Rights. 8. Consults with individuals and family members to obtain sensitive information and communicate investigative results while ensuring a successful customer experience and service recovery. 9. Manages and documents all privacy incidents utilizing the System-wide case management solution to ensure accurate documentation and reporting. 10.Provides business unit CEO or other senior leaders information regarding privacy program initiatives and status of business unit’s privacy compliance and breach incidents. 11.Serves as internal privacy risk consultant to the audit and risk management team for vendor and project risk assessments. 12.Collaborates with other departments, such as legal counsel, human resources, IT, and HIM to maintain organization compliance with Federal, State, and International laws regarding privacy, security, and protection of information resources. 13.In cooperation with Human Resources, ensures compliance with privacy policies and consistent application of sanctions for failure to comply with privacy policies for all employees, extended workforce, and business associates. 14.Performs other privacy related projects or duties as assigned. Operational Lead 1. Functions as a first line resource for direction, oversight, and support for the daily operations of the information privacy services team members and/or line of business. 2. Conducts quality audits on team member activity including but not limited to privacy case documentation, investigative process, corrective action recommendations and breach reporting. 3. Assists with the development of policies and procedures as needed. 4. Develops and maintains desk level procedures related to Information Privacy Services Team functions. 5. Identifies and prescribes educational webinars, reading, regulatory updates to keep team abreast of regulatory requirements. 6. Maintains IPSO Privacy intranet webpage for Henry Ford Health/HAP. 7. Leads the incident response team to investigate and correct violations of privacy standards, confidentiality, or information security. Ensures remedial action, corrects current problems, and takes all available steps to prevent future problems. EDUCATION/EXPERIENCE REQUIRED: • Bachelor's Degree required. • Five (5) or more years of experience in Privacy and/or Compliance or equivalent experience in Quality, Audit, Human Resources, HIM, Provider or Customer Relations or other related work. • Healthcare experience required. • Working knowledge of privacy laws (i.e., HIPAA, HITECH, GLB, etc.), access and release of information. • Proven ability to communicate professionally and effectively in written and oral format, along with the ability to think analytically and solve problems as required. • Experience in investigative techniques and ability to investigate complex privacy issues. • Must have the experience or the ability to work effectively in a large, geographically diverse system. CERTIFICATIONS/LICENSURES REQUIRED: CHPC or J.D. – Required. Must meet or exceed core customer service responsibilities, standards and behaviors as outlined in the Henry Ford Health Customer Service Policy and summarized below: - Communication - Ownership - Understanding - Motivation - Sensitivity - Excellence - Teamwork - Respect Must practice the customer skills as provided through on-going training and in-services. Must possess the following personal qualities: - Be self-directed - Be flexible and committed to the team concept - Demonstrate teamwork, initiative, and willingness to learn - Be open to new learning experiences - Accepts and respects diversity without judgment - Demonstrates customer service values PHYSICAL DEMANDS/WORKING CONDITIONS: Normal office environment with minimal exposure to noise, dust, or extreme temperatures. Additional Information + Organization: Corporate Services + Department: Ascension Information Privacy + Shift: Day Job + Union Code: Not Applicable Additional Details This posting represents the major duties, responsibilities, and authorities of this job, and is not intended to be a complete list of all tasks and functions. It should be understood, therefore, that incumbents may be asked to perform job-related duties beyond those explicitly described above. Overview Henry Ford Health partners with millions of people on their health journey, across Michigan and around the world. We offer a full continuum of services – from primary and preventative care to complex and specialty care, health insurance, a full suite of home health offerings, virtual care, pharmacy, eye care and other health care retail. With former Ascension southeast Michigan and Flint region locations now part of our team, Henry Ford’s care is available in 13 hospitals and hundreds of ambulatory care locations. Based in Detroit, Henry Ford is one of the nation’s most respected academic medical centers and is leading the Future of Health: Detroit, a $3 billion investment anchored by a reimagined Henry Ford academic healthcare campus. Learn more at henryford.com/careers . Benefits The health and overall well-being of our team members is our priority. That’s why we offer support in the various components of our team’s well-being: physical, emotional, social, financial and spiritual. Our Total Rewards program includes competitive health plan options, with three consumer-driven health plans (CDHPs), a PPO plan and an HMO plan. Our team members enjoy a number of additional benefits, ranging from dental and eye care coverage to tuition assistance, family forming benefits, discounts to dozens of businesses and more. Employees classified as contingent status are not eligible for benefits. Equal Employment Opportunity/Affirmative Action Employer Equal Employment Opportunity / Affirmative Action Employer Henry Ford Health is committed to the hiring, advancement and fair treatment of all individuals without regard to race, color, creed, religion, age, sex, national origin, disability, veteran status, size, height, weight, marital status, family status, gender identity, sexual orientation, and genetic information, or any other protected status in accordance with applicable federal and state laws.