Privacy Director - Long Beach, United States - Advanced Medical Management, Inc.

Advanced Medical Management, Inc.
Advanced Medical Management, Inc.
Verified Company
Long Beach, United States

1 week ago

Mark Lane

Posted by:

Mark Lane

beBee recruiter
Description

THE POSITION

Company:
Advanced Medical Management, Inc. (AMM)


Title:
Director - Privacy


Location:
Long Beach, CA


Reporting Lines:
The Chief Compliance and Ethics Officer (the CCEO)


ABOUT AMM


AMM's mission is to offer flexible administrative healthcare services that improve patient health, obtain profitability, maintain independence, and achieve 5-Star Quality.

Our core values of Integrity, Collaboration, and Quality have driven our evolution from a physician practice management company to an Independent Physician Association (IPA) management company and fiscal intermediary administering and servicing a variety of commercial and government agency clients.


THE ROLE


As a member of AMM's Compliance and Ethics team, the Director - Privacy fulfills a vital component of our mission.

They are responsible for leading the Company's Compliance & Ethics Program (the Program) privacy initiatives.

Rigorous patient privacy protections are essential to fulfilling the expectations of AMM's key stakeholders, including patients and their families and government agencies, and AMM is committed to exceeding those expectations.

The Program is led by AMM's CCEO, who reports to AMM's Chief Executive Officer (CEO) and the AMM Board, and who oversees and manages the AMM Compliance Committee, consistent with industry best practices.

The Director - Privacy is expected to exemplify the Company's culture and core values.

This is a leadership role that requires sound and risk-aware judgment, productive collaboration across the Company, and demonstrated success in leading a team of in-house privacy professionals.


ESSENTIAL DUTIES & RESPONSIBILITIES


The following description provides an overview of primary responsibilities for this director position; it should not be interpreted as all-encompassing.


General Responsibilities

  • Ensures that the CCEO is timely informed of all significant privacy developments.
  • Works closely with the CCEO to facilitate the Program's privacy initiatives.
  • Undertakes to remain informed of relevant developments and trends in healthcare compliance and ethics by, among other things, attending seminars, reviewing professional
journals, and actively participating in professional organizations, and leverages that insight and knowledge to enhance the Program.

Privacy-Specific Responsibilities

  • Leads the development of the Privacy Program, and is responsible for ensuring that the Privacy Program is properly structured and has sufficient resources with the requisite expertise and experience.
  • Promotes Health Insurance Portability and Accountability Act of 1996 (HIPAA) awareness and compliance amongst the AMM Board, CEO, Executive Leadership Team, vendors, volunteers, and all Company employees through personal conduct and leadership.
  • Serves as the Corporate Privacy Officer pursuant to the HIPAA Privacy Rule.
  • Monitors the development and applicability of state data privacy and consumer protection laws and regulations.
  • Ensures that the Privacy Program develops and maintains the key administrative, technical, and physical controls, elements, and functions set forth in applicable regulatory and enforcement agency guidance, including the standards enunciated by U.S. Department of Health and Human Services.
  • Annually reviews and updates policies and procedures intended to protect patient health information to ensure compliance with changes in law or regulation.
  • Develops and administers annual training and education on HIPAA, applicable state laws and regulations, and the Company's related policies and procedures.
  • Intentionally establishes a collaborative relationship with the Chief Information Officer (CIO), as well as Information Technology personnel, on matters including information security and the electronic medical record.
  • In collaboration with the CIO, conducts an annual security risk assessment and presents the findings to the AMM Compliance Committee.
  • Collaborates with the CIO to develop a business continuity plan and a disaster recovery service.
  • As appropriate, collaborates with outside counsel to ensure the Company has and maintains appropriate privacy and confidentiality consent, authorization, and notice forms.
  • Identifies areas of privacy vulnerabilities and risk areas and develops both preventive measures and corrective action plans and provides general guidance for how to avoid or handle similar situations in the future.
  • Responsible for maintaining a system for tracking and enforcing Business Associate Agreements executed with vendors.
  • Collaborates with the CIO to conduct tabletop exercises to prepare the Company and its leaders in the event of a cybersecurity breach.
  • Performs or oversees required routine breach assessments, documentation, and mitigation and reports observations and findings to the CCEO.
  • In collaboration with the General Counsel, ensures that breach notification obligations are timely fulfilled.
  • In
More jobs from Advanced Medical Management, Inc.
See all jobs of Advanced Medical Management, Inc.