Sr. Privacy Analyst

About SCAN

SCAN Group is a not-for-profit organization dedicated to tackling the most pressing issues facing older adults in the United States. SCAN Group is the sole corporate member of SCAN Health Plan, one of the nation's leading not-for-profit Medicare Advantage plans, serving more than 285,000 members in California, Arizona, Nevada, and Texas. SCAN has been a mission-driven organization dedicated to keeping seniors healthy and independent for more than 40 years and is known throughout the healthcare industry and nationally as a leading expert in senior healthcare. SCAN employees are a group of talented, passionate professionals who are committed to supporting older adults on their aging journey, while also innovating healthcare for seniors everywhere. Employees are provided in-depth training and access to state-of-the-art tools necessary to do their jobs, as well as development and growth opportunities. SCAN takes great pride in recognizing our team members as experts in their fields and rewarding them for their efforts. If you are interested in becoming part of an organization that is innovating senior healthcare visit www.thescangroup.org, www.scanhealthplan.com, or follow us on LinkedIn; Facebook; and Twitter.

The Job

The Senior Privacy Analyst plays a pivotal role in ensuring compliance with healthcare privacy regulations across a multi-state health plan and healthcare system such as HIPAA, HITECH, CMIA and other applicable laws and standards. This position is responsible for evaluating, developing, and implementing privacy policies and practices, conducting risk assessments, managing incident investigations, and providing expert guidance to teams across the organization to safeguard sensitive health information and confidential data. The ideal candidate will have strong analytical skills, regulatory expertise, and experience collaborating with cross-functional teams to support the organization's privacy and compliance objectives.

You Will

Privacy Program Oversight:

• Support the development, implementation, and maintenance of SCAN's privacy program,policies, and procedures
• Ensure compliance with HIPAA, HITECH and other applicable federal, state and industry privacy regulations

Risk Assessments and Audits:

• Conduct regular privacy risk assessments to identify vulnerabilities and recommend mitigation strategies
• Participate in internal audits and collaborate with internal/external auditors to address compliance with gaps

Incident Management:

• Investigate and manage privacy incidents, breaches, or complaints, ensuring timely reporting and remediation in compliance with regulatory requirements
• Prepare and maintain breach notification documents and data bases

Policy Development and Training:

• Develop and update privacy-related policies, guidelines, and procedures
• Create and deliver training materials to educate employees on privacy standards and best practices

Monitor and Reporting:

• Develop and maintain proactive auditing and monitoring program
• Monitor regulatory developments and industry trends to ensure organizational policies remain up-to-date
• Generate reports and metrics to track compliance with privacy standards and identify areas for improvement

Data Sharing and Agreements:

• Understand Business Associate Agreements, data-sharing agreements, and other relevant contracts to ensure regulatory compliance
• Collaborate with legal team to address non-standard agreements or high-risk engagements

Your Qualifications

• Bachelor's Degree or equivalent experience
• Certified Information Privacy Professional (CIPP/US or CIPP/HC), Certified Healthcare Privacy Compliance (CHPC), HCISSP preferred
• At least 5 years of experience in healthcare privacy or related field
• Strong knowledge of HIPAA, HITECH, and other privacy regulations
• Demonstrated experience managing privacy incidents and conduct privacy risk assessments
• Excellent analytical, organizational, and problem-solving skills
• Strong interpersonal or communication skills, with the ability to collaborate effectively across teams
• Familiarity with healthcare operations, electronic health records (EHR), and data protection technologies
• Experience with Privacy-by-Design and integrating privacy principles into business processes
• Ability to manage multiple projects in a fast-paced environment while meeting deadlines
• Technical expertise - Advanced analytical skills
• Problem Solving - Basic problem-solving skills
• Communication - Good communication and interpersonal skills

What's in it for you?

• Base Pay Range: $106,200 to $169,900 annually
• An annual employee bonus program
• Robust Wellness Program
• Generous paid-time-off (PTO)
• 11 paid holidays per year, 1 floating holiday, birthday off, and 2 volunteer days
• Excellent 401(k) Retirement Saving Plan with employer match
• Robust employee recognition program
• Tuition reimbursement
• An opportunity to become part of a team that makes a difference to our members and our community every day!

We're always looking for talented people to join our team! Qualified applicants are encouraged to apply now!

At SCAN we believe that it is our business to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects our community through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more.

SCAN is proud to be an Equal Employment Opportunity and Affirmative Action workplace. Individuals seeking employment will receive consideration for employment without regard to race, color, national origin, religion, age, sex (including pregnancy, childbirth or related medical conditions), sexual orientation, gender perception or identity, age, marital status, disability, protected veteran status or any other status protected by law. A background check is required.

#LI-JB1 #LI-Hybrid