Senior Analyst, Privacy (Remote)

Senior Privacy Analyst

Millennium Physician Group

Full Time (Monday-Friday)

LOCATION

The Senior Privacy Analyst will be responsible for assisting Mosaic Health's leadership and various teams, including Information Technology, Security, Legal, Product, Marketing/Engagement, and Customer Success, in addressing data privacy issues. This role will specifically support the assigned business unit by managing data subject access requests, processing health information release requests, responding to privacy incidents, conducting privacy impact assessments, implementing privacy by design principles throughout the product and service lifecycle, and supporting related workstreams for the execution of various policies and training initiatives.

Essential Duties and Responsibilities include the following. Other duties may be assigned.

• Partner with leadership and key stakeholders to support and advance data privacy compliance
initiatives.
• Participate in discussions (conference, meetings, etc) on complex privacy issues with customers,
regulators, and internal teams.
• Ensure compliance with HIPAA Privacy Rules and other applicable privacy laws and regulations.
• Develop, implement, and maintain privacy policies and procedures, including: Authorization and monitoring of access, use, and disclosure of patient information; Processes to maintain compliance with privacy, confidentiality, and data protection laws; Incident response procedures for suspected privacy and security breaches.
• Monitor regulatory changes, industry trends, and enforcement actions to advise leadership on
emerging risks and compliance standards.
• Maintain expertise in key privacy laws and regulations such as HIPAA, GDPR, CCPA, VCDPA, CPA,
CTDPA, TCPA, CAN-SPAM, FTC guidelines, and relevant state laws.
• Collaborate cross-functionally with management, HR, Legal, Clinical, Technology, Business
Development, and Customer Support teams to ensure a unified approach to privacy compliance.
• Promote and maintain visibility of the privacy program through effective communication and
awareness campaigns within the organization.
• Lead initiatives related to client privacy inquiries, data mapping, and risk assessments.
• Support quarterly and annual reporting activities, including: Employee access to information systems; Regulatory reporting to HHS/OCR and state agencies; Data Subject Access Request and PHI release reporting; SOC2, HITRUST, and NCQA compliance reporting.
• Demonstrate excellent guest service to internal team members and patients.
• Perform other related duties as assigned.

Qualifications
• Bachelor's degree in health information management, Healthcare Administration, Compliance, Legal
Studies, or a related field; Master's degree preferred.
• Professional certifications such as CHPC, CHP, CIPP/US, or equivalent are highly desirable.
• 4+ years' experience in privacy compliance, preferably within healthcare or a multi-state physician
group environment.
• Experience working in multi-site healthcare delivery organizations.
• Strong knowledge of HIPAA, HITECH, and relevant state privacy laws and regulations.
• Proven experience in privacy incident investigations, breach assessments, and regulatory reporting.
• Excellent analytical, organizational, communication, and stakeholder engagement skills.
• Familiarity with EMR/EHR systems (e.g., Athena, NextGen) and healthcare IT privacy challenges.
• Strong interpersonal skills with the ability to collaborate effectively across departments and influence
without direct authority.
• Demonstrated ability to handle confidential information with discretion and professionalism.
• Ability to work independently in a fast-paced, cross-functional environment.

Benefits:

• 3 weeks PTO & 7 paid holidays
• Medical, Dental, Vision
• Employer Paid Basic Life & Short Term Disability coverage (goes into effect after 1 year of full-time employment)
• 401(k) with match
• Employee Wellness
• Other Employee Discount programs like Tickets at Work and cell phone discounts
• Other benefits: Dependent Care FSA, Voluntary Life, Long Term Disability, Critical Illness, Pet Insurance, and more

See Full Job Description for more details

Why Millennium?

Millennium Physician Group is one of the largest comprehensive primary care practices with healthcare providers throughout Florida.

At Millennium Physician Group, you will find an organization that focuses on family and building a strong network of people to care for the communities we serve. We are always searching for employees who have a strong customer service attitude, fantastic teamwork skills and a willing smile ready to share.

Our promise is to provide you with the tools to do your job successfully, as well as providing a team atmosphere that empowers you to seek better ways to deliver care to our patients and their families. We also promise to care for you as an individual, and help you grow in your role with Millennium Physician Group.

If you are interested in joining an organization that puts an emphasis on team work and family, then Millennium Physician Group is the right choice.