Senior Analyst, Privacy

Summary

Join Oscar's Corporate Compliance team as a Senior Analyst, Privacy! This role involves assisting with privacy incident response and investigations related to PHI and PII. You will support a Privacy advisor in addressing privacy risks and improving healthcare data management. Reporting to the VP, Chief Privacy Officer & Associate GC, this blended work culture position requires at least two days a week in the office if within commuting distance of NYC, Tempe, or Los Angeles offices; otherwise, it's remote. The role offers competitive pay, benefits, unlimited vacation, and annual performance bonuses. You'll contribute to privacy projects, create training materials, and ensure compliance with all applicable laws and regulations. This position requires a Bachelor's degree or equivalent experience and at least two years of experience in healthcare privacy programs, including incident and breach investigations.

Requirements

• Bachelor's degree or equivalent years of work experience
• 2+ years of experience in healthcare privacy programs, including incident and breach investigations and responses
• 2+ years of experience using metrics to improve programs
• 2+ years of experience with HIPAA and other federal and state Privacy laws and regulations applicable to the healthcare industry and /or consumer privacy and digital privacy laws
• 2+ years of experience of comprehensive Privacy investigation experience

Responsibilities

• Communicate with your team concerning the importance of protecting Protected Health Information (PHI) and other sensitive information including Personally Identifiable Information (PII)
• Conduct investigations into reported or observed violations
• Support Privacy issues and initiate appropriate actions to ensure potential incidents are investigated thoroughly and following company policies and applicable laws and regulations
• Support all required breach determination and notification processes under HIPAA and applicable state breach rules and requirements in collaboration with others on the Privacy team and internal partners (IT Security, Legal)
• Proficiently draft multiple communications, including notification letters, risk assessments, incident response reports and regulatory responses
• Help create Privacy Training & Awareness materials
• Help solution Privacy issues and concerns across the enterprise
• Contribute to Privacy projects at the direction of Privacy management
• Compliance with all applicable laws and regulations
• Other duties as assigned

Preferred Qualifications

• Privacy Certification from the International Associate of Privacy Professionals (IAPP)
• Experience documenting and implementing policies, procedures and guidelines
• Technical skills, including the ability to understand the technology landscape, identify opportunities, and overcome technical obstacles
• Experience navigating complex Privacy issues and identifying solutions
• Experience supporting a data privacy, security or equivalent function directly or indirectly for a large, regulated and matrixed organization
• Project/program management experience
• Experience directly or indirectly with IT Security, Compliance or similar function
• Experience with privacy principles and privacy operations

Benefits

• Medical, dental, and vision benefits
• 11 paid holidays
• Paid sick time
• Paid parental leave
• 401(k) plan participation
• Life and disability insurance
• Paid wellness time and reimbursements