Sr Privacy Analyst

The client intends to contract a Senior Privacy Analyst. The Senior Privacy Analyst will work closely with eHealth and Virtual Health Innovation programs/projects and stakeholders to provide advice and support on a diverse range of complex, multi-stakeholder health information privacy issues that are transforming the eHealth landscape and support the delivery of key eHealth systems and contribute to client eHealth and Virtual Health Innovation initiatives. The Senior Privacy Analyst will assist in ensuring organizational compliance with relevant privacy legislation, specifically, e-Health Act and Personal Information Protection Act ('PIPA').

What you'll be doing:

• Conduct current state assessment of privacy needs through engagement with client and communities.
• Develop procedures for the client electronic health solution; ensuring the procedures are in keeping with the client directives and mandates, the BC Provincial and Canadian privacy standards and legislation.
• Advise how client can customize privacy policies. Design, deliver, and support privacy-related training, resources, and change management for EMR communities.
• Provide privacy-related knowledge transfer to project and operations team.
• Develop Privacy EMR Toolkit/framework that includes: Governance, Accountability, Requirements, Legislation, and Evaluation.
• Conduct a Risk Assessment Workshop.

What you need to have:

• Graduate from an accredited Canadian Health Information Management program and certified through the Canadian Health Information Management Association or
• Bachelor's degree in a related field.
• Previous recent and relevant experience in a Privacy role which is normally attained over a period of four years.
• Certified Information Privacy Professional/Canada (CIPP/C) Certification will be considered an asset.
• Experience conducting privacy impact assessments will be considered an asset.
• Technical Knowledge & Skills:
• Shows a strong understanding of risk management frameworks and concepts.
• Shows strong business, analytical, research, presentation, writing, and communication skills.
• Experienced in managing privacy incidents, breaches, and investigations.
• Knowledge and experience in developing and defining privacy requirements with respect to privacy legislation.
• Has direct operational level privacy experience, preferably in a health sector and/or IT environment with respect to:
• e-Health Act
• Freedom of Information and Protection of Privacy Act (FIPPA)
• Personal Information Protection Act (PIPA)
• Understands the Canadian Standards Association Privacy code (CSA) and the impact and obligations arising from legislation/CSA code on the various individuals and organizations managing personal and personal health information in the health care system broadly.

Knowledge:

• Familiarity and ability to interpret and apply BC's information privacy laws (e-Health Act, Personal Information Protection Act, Freedom of Information and Protection of Privacy Act) and their respective regulations and related jurisprudence.
• Knowledge of electronic medical records and electronic health records.
• Knowledge of health terminology standards.
• Knowledge of Risk countermeasures as they pertain to privacy.
• Knowledge of privacy compliance requirements, tools, and measures.
• Knowledge of privacy-enhancing best practices.
• Knowledge of records management systems.
• Knowledge of computerized client database systems.
• Solid understanding of legislation and trends relevant to the health service provider sector.