Information Protection Consultant - HCA Healthcare
Nashville, TN 37203
About the Job
Description
Introduction
Do you have the career opportunities as a(an) Information Protection Consultant you want with your current employer? We have an exciting opportunity for you to join HCA Healthcare which is part of the nation's leading provider of healthcare services, HCA Healthcare.
Benefits
HCA Healthcare, offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:
- Comprehensive medical coverage that covers many common services at no cost or for a low copay. Plans include prescription drug and behavioral health coverage as well as free telemedicine services and free AirMed medical transportation.
- Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans (accident, critical illness, hospital indemnity), auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.
- Free counseling services and resources for emotional, physical and financial wellbeing
- 401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service)
- Employee Stock Purchase Plan with 10% off HCA Healthcare stock
- Family support through fertility and family building benefits with Progyny and adoption assistance.
- Referral services for child, elder and pet care, home and auto repair, event planning and more
- Consumer discounts through Abenity and Consumer Discounts
- Retirement readiness, rollover assistance services and preferred banking partnerships
- Education assistance (tuition, student loan, certification support, dependent scholarships)
- Colleague recognition program
- Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence)
- Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.
Learn more about Employee Benefits
Note: Eligibility for benefits may vary by location.
Our teams are a committed, caring group of colleagues. Do you want to work as a(an) Information Protection Consultant where your passion for creating positive patient interactions is valued? If you are dedicated to caring for the well-being of others, this could be your next opportunity. We want your knowledge and expertise!
Job Summary and Qualifications
Position Summary
The Information Protection Consultant plays a critical role with the development and support of HCA Healthcare’s enterprise-wide Information Protection and Security Program (IPS), as well as the Company’s compliance, governance, and strategy relative to information protection. The Consultant interacts extensively with leadership and business owners across the enterprise and provides consultative support on all privacy and security related matters.
Major Responsibilities:
- Assists in managing the strategic planning process including key enterprise initiatives to develop a clear vision of the department’s objectives and to address all regulatory requirements related to privacy and security.
- Assists in the development and executes the company privacy risk assessment strategy to review business processes and evaluate privacy controls necessary to protect sensitive information.
- Identifies, minimizes and mitigates legal and regulatory privacy and security compliance risks.
- Assists in the review and analysis of proposed and final regulatory reform at the federal and state(s) levels (e.g., HIPAA, CCPA, CPRA, Data Protection Laws, 21st Century Cures Act, Information Blocking).
- Directs third party vendor compliance reviews and due diligence efforts relative to external data release to minimize and mitigate risks to the organization.
- Leads inquiries from external regulatory agencies (e.g., Office of Civil Rights) relative to compliance-related investigations based on the government’s provision of technical assistance.
- Leads the pre- and post- due diligence privacy review process for new acquisitions and divestitures by completing milestones timely and creating and executing detailed work plans.
- Leads enterprise-wide policy and procedure development and support.
- Responds to senior-level/advanced enterprise-wide inquiries submitted to centralized support mailboxes managed by IPS.
- Contributes to the selection of relevant topics and drafting monthly awareness and ad-hoc communications.
- Assists with review and approval of privacy and security related training materials (e.g., Be the Hero, Annual Code of Conduct, New Employee Orientation).
- Acts as a privacy subject matter expert relative to the application of the HIPAA Privacy Rule, HITECH Act, and company policies and procedures.
- Develops strategic working relationships across all lines of business and project partners as necessary to identify, evaluate, and reduce privacy and security risks.
- Enter any content that you want to repeat, including other content controls. You can also insert this control around table rows in order to repeat parts of a table.
Other/Special Qualifications:
- Proven experience in information security, privacy, risk management, and privacy and security regulations (e.g., HITECH, HIPAA).
- A proven track record in creating and maintaining strong business relationships.
- Excellent written and verbal communications skills; interpersonal and collaborative skills; creative and strategic thinker with strong analytical skills; the ability to communicate privacy, security, and risk-related concepts to technical and non-technical audiences; persuasive, encouraging, motivating and inspiring.
- Independent, yet collaborative; respected by peers and others.
- High degree of initiative, dependability, and the ability to work with minimal supervision.
- Adaptable and flexible, with the ability to handle ambiguity and sometimes changing priorities.
- Completes other duties as assigned.
- Practices and adheres to the “Code of Conduct” philosophy and “Mission and Value Statement.”
- Professional demeanor, appearance, and positive attitude.
Education & Experience:
- Bachelor's degree and 7 years experience required or 14+ years of proven experience in privacy and security (e.g., HIPAA, HITECH) or other similar federal healthcare legislation in lieu of degree. Required or equivalent combination of education and/or experience
Licenses, Certifications, & Training:
- CHP, RHIA, RHIT, HCISPP, CISSP Preferred
Knowledge, Skills, Abilities, Behaviors:
- Service and Quality Excellence: Ability to demonstrate an uncompromising commitment to delivering exceptional care to create an unmatched value proposition for our patients.
- Honor our Mission and Values: Ability to build trust and act with authenticity to cultivate a culture of integrity, inclusion, and mutual respect.
- Attain and Leverage Strategic Relationships: Ability to develop and strengthen collaborative relationships with both internal and external stakeholders to advance the care of our patients and the growth of HCA.
- Lead and Develop Others: Ability to lead others to accomplish organizational goals and objectives; provide meaningful coaching and mentoring to increase the capabilities of individuals and teams and drive employee engagement.
- Communicate with Impact: Ability to deliver information in a clear, concise, and compelling manner to effectively engage others and achieve desired results.
- Achieve Success through Change: Ability to identify opportunities for improvement and innovation, remove barriers and resistance, and enable desired behaviors.
- Drive Execution and Financial Results: Ability to commit to the success and financial wellbeing of HCA by challenging others to excel and hold themselves and others accountable for achieving results.
We are comprised of affiliated hospitals, physician practices and other sites of care across the United States and United Kingdom. The Sarah Cannon Cancer Network is transforming cancer care through integrated services and cutting-edge technologies. Our physicians can develop leading oncology programs to advance science and patient care. Providing physician-led patient care offers our doctors access to a national network of experts. This is where multidisciplinary teams come together with a goal of delivering seamlessly coordinated, quality cancer care. Through a united network of globally recognized oncology specialists, we collaborate and share best practices. We address each aspect of the cancer journey, from screening and diagnosis through treatment and survivorship, to advance our shared mission: Above all else, we are committed to the care and improvement of human life.
HCA Healthcare has been recognized as one of the World's Most Ethical Companies® by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.
"Bricks and mortar do not make a hospital. People do."- Dr. Thomas Frist, Sr.
HCA Healthcare Co-Founder
If you are looking for an opportunity that provides satisfaction and personal growth, we encourage you to apply for our Information Protection Consultant opening. We promptly review all applications. Highly qualified candidates will be contacted for interviews. Unlock the possibilities and apply today.
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.