Enable job alerts via email!
Senior Privacy Impact Assessment Specialist - Remote / Telecommute
Cynet Systems Inc
Toronto
Remote
CAD 80,000 - 120,000
Full time
Today
Be an early applicant
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Create a job specific, tailored resume for higher success rate.
Job summary
Cynet Systems Inc is seeking a Senior Privacy (PIA) Specialist to enhance their privacy program. This role involves developing privacy policies, conducting impact assessments, and providing advisory support to various teams. Applicants should have significant experience in health privacy as well as knowledge of relevant legislation, such as PHIPA. Strong analytical and communication skills are essential for the success in fostering a culture of privacy.
Qualifications
- Minimum of 3 years’ health privacy experience conducting privacy impact assessments (PIAs).
- Minimum 5 years’ direct operational level privacy experience preferably in health sector.
- Familiarity with PHIPA regulations required.
Responsibilities
- Develop privacy policies and procedures.
- Conduct privacy impact assessments for complex initiatives.
- Provide privacy advisory and support to business teams.
Skills
Analytical skills
Communication skills
Problem-solving abilities
Stakeholder engagement
Time management
Education
University undergraduate or master’s degree in health, policy, IT, security, law or related discipline
Job description
Job Description:
Responsibilities:
Responsibilities:
- Develop privacy policies and procedures.
- Conduct privacy impact assessments for medium to high complex initiatives and/or implement mitigations activities in response to recommendations from PIAs.
- Identify and assess privacy risks.
- Provide privacy advisory and support to business teams.
- Lead and/or participate on client, regional or provincial committees or project teams as the privacy Subject Matter Expert (SME).
- Identify privacy requirements.
- Develop strong relationships with various internal and external stakeholders to foster a culture of privacy.
- Respond and provide advice and legislative interpretation for information and access requests, consent management requests, complaints, or inquiries, appeals and privacy issues under the PHIPA.
- Support privacy program projects and activities to improve the efficiency and effectiveness of the Privacy Office.
- Other duties as required.
- Over the duration of the engagement, the Senior Privacy (PIA) Specialist will support work already in progress to implement mitigations plans in response to open PIAs related to home and community care, and the Client and Related Health Information System (CHRIS) that supports this sector.
- Support development of risk assessments and identification of other privacy considerations related to client team deployment and transfer of records.
- Work with the project and product teams and/or CHRIS tenants on risk mitigation of PIA findings as required under PHIPA.
- Develop policies and procedures to support CHRIS use for home and community care modernization.
- Support work related to update and/or developing new agreements.
- Support onboarding and analysis of privacy readiness assessments.
- Support development of governance models to support ongoing CHRIS privacy operations/collaboration with client team's.
- Knowledge of current policy/legislation will be critical to ensure that we are collecting the relevant information.
- Conducting/Completing Privacy Impact Assessments and associated documentation.
- Providing Privacy consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives related to home and community care modernization and client team deployment.
- Developing risk mitigation plans.
- Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements.
- Reviewing and advising on agreements, including data sharing agreements.
- Developing privacy requirements for new or changing projects.
- Completion of a university undergraduate or master’s degree in health, policy, IT, security, law or a related discipline.
- Demonstrated knowledge and experience of access and privacy requirements and practices, preferably related to the health and public sectors.
- Excellent knowledge of privacy and security conce Points, trends, and issues.
- This will include an understanding of their impact on business processes, as well as skill with interpretation and communication of principles and compliance requirements.
- Analytical skills to understand the current and future access and privacy implications of policies, decisions, and business initiatives.
- Experience with conducting and/or providing oversight for Privacy Impact Assessments including developing privacy requirements, risk mitigation plans, corporate policies and developing and/or delivering training content.
- Working knowledge of digital health technologies and information security industry standards.
- Excel in a fast-paced and project focused environment.
- Exceptional analytic and creative problem-solving abilities.
- Good understanding of related disciplines, such as IT system design, policy development (privacy or security), business architecture, legal processes, Freedom of Information administration, business analysis, risk management, project management.
- Knowledge of Information Technology concePoints and processes that impact the protection of personal information, including (but not limited to) Internet tools, system interfaces, information security, information architecture and data flows.
- Excellent communication skills both verbal and written, and strong stakeholder engagement skills.
- Time management, with the ability to manage tight deadlines and prioritize multiple projects .
- Minimum of 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects: 20 Points
- Minimum 5 years’ direct operational level privacy experience preferably in a health sector and/or IT environments: 20 Points
- Minimum 5 years' experience drafting and reviewing privacy requirements for data sharing agreements: 20 Points
- Minimum 5 years’ experience developing privacy policies and procedures, requirements, or controls: 20 Points
- Familiarity with the Personal Health Information Protection Act (PHIPA), and it’s related requirements for Health Information Network Providers (HINP) and Electronic Service Providers (ESP): 20 Points
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
