RQ00177 – Privacy Impact Assessment (PIA) Specialist – Senior

Job title:

RQ00177 – Privacy Impact Assessment (PIA) Specialist – Senior

Company

S M Software Solutions

Job description

This opening is for Privacy Impact Assessment (PIA) Specialist – Senior and the Closing Date and time will be Monday, September 30 at 1:30 P.M. EST.
Job Title: RQ00177 – Privacy Impact Assessment (PIA) Specialist – Senior
Client: Supply Ontario
Work Location: 525 University Avenue, Ontario
Job Type: Hybrid
Start Date: 2024-10-15
End Date: 2025-03-31
#Business Days: 145.00
Hours per day or Week: 7.25 hours per day (5 Days)To check the detailed description and matrix visit our website:We’re excited to invite you to join our company’s WhatsApp group dedicated to for new job postings. Your insights and contributions would be incredibly valuable. Please use the link below to join: https://chat.whatsapp.com/DwVITx9uaiELQflTDdCv33 We look forward to your participation!”
(NOTE: Share required documents to [email protected] . Candidates are also free to reach out or share any references.
Mandatory document: * Resume in word format.

• Kindly provide your expected hourly rate.
• Kindly provide attached Qualification Matrix.
• Kindly Provide your Work Authorization.
• Kindly share with us your LinkedIn Profile ID.

Must haves:

• Minimum of 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects
• Minimum 5 years’ direct operational level privacy experience preferably in a health sector and/or IT environment with familiarity in Application Programming Interface (API) functionality and management
• Minimum 5 years’ experience drafting and reviewing privacy requirements for legal and data sharing agreements

Description
Background Information:

• The Senior Privacy (PIA) Specialist will act as a dedicated privacy subject matter expert to assist with supporting privacy matters related to a number of key Information Technology projects that include Patients before Paperwork (PB4P) initiatives, enterprise business intelligence tools, and cloud migration.
• Ontario Health is seeking a Privacy resource to ensure that Ontario Health maintains compliance with its legal and contractual privacy obligations and builds privacy into the design of projects that involve personal health information (PHI), thus reducing risk for the organization and protecting the trust and privacy of individuals who’s PHI we manage.

Responsibilities:

• Conducting/Completing Privacy Impact Assessments and associated documentation
• Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives
• Identify and assess privacy risks, including developing risk mitigation plans
• Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements
• Reviewing and advising on agreements, including data sharing agreements
• Developing privacy requirements for new or changing projects
• Providing privacy advisory and support to business teams
• Other duties as required

Desired Skills:

• Demonstrable knowledge of project management; Knowledge and understanding of Project Management’s Institute’s Project Management Body of Knowledge is an asset
• Minimum 5 years’ experience developing privacy policies and procedures, requirements, or controls
• Familiarity with the Personal Health Information Protection Act (PHIPA), and its related requirements for Health Information Network Providers (HINP) and Electronic Service Providers (ESP)
• Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows
• Experience working on and delivering multiple projects
• Demonstrated project management software skills and experience e.g. MS Project, MS Teams etc.
• University undergraduate or graduate degree in Health, Computer Science, Engineering, Law, Security, or a related discipline from a recognized institution or equivalent experience – desired
• Familiarity with Prescribed Entities (PEs) or Prescribed Persons (PP) under the Personal Health Information Protection Act (PHIPA), and their related requirements, is an asset
• Familiarity with audit logging and Security Information and Event Management (SIEM) technology is an asset
• Familiarity with technical data protection controls and technology such as encryption and tokenization is an asset
• Knowledge and understanding of Accessibility for Ontarians with Disability Act (AODA) and related regulations and standards is an asset

Deliverables:

• Over the duration of the engagement, the Senior Privacy (PIA) Specialist will support work already in progress, as well as new work on Privacy Impact Assessments;
• Work with the project and product teams on risk mitigation of PIA findings as required under PHIPA;
• Support work related to update and/or developing new agreements;
• Other duties as required. Note that knowledge of current privacy and data protection policy and legislation, especially Ontario’s Personal Health Information Protection Act (PHIPA), will be critical to ensure success.

Evaluation Criteria:

• Minimum 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects. : 20 Points
• Minimum 5 years’ direct operational level privacy experience in a health sector and/or IT environment or both. : 20 Points
• Minimum 5 years’ experience in developing privacy policies and procedures, requirements, or controls.: 20 Points
• Minimum 5 years’ experience drafting and reviewing privacy requirements for data sharing agreements.: 15 Points
• Familiarity with the Personal Health Information Protection Act (PHIPA), and requirements related to Health Information Network Provider (HINP) and Electronic Service Provider (ESP).: 10 Points
• Familiarity with Application Programming Interface (API) functionality and management.: 7.5 Points
• Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows: 7.5 Points
• Total 100 points

Notes
This position is currently listed as “Hybrid”. The resource under this request will be required to work onsite as per Hiring Manager sole discretion.
Ontario Health assets including laptops and related equipment cannot be removed from the province of Ontario without prior written approval from Ontario Health.
Location: Hybrid – up to 3 days a week onsite
Public Sector Experience: Preferred HealthcarePowered by JazzHR

Expected salary

Location

Toronto, ON

Job date

Mon, 30 Sep 2024 02:14:11 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (hiring-jobs.com) you saw this job posting.