What are the responsibilities and job description for the UIC Privacy Analyst position at uic?
Position Summary
Reporting to the UIC Privacy Director, the Privacy Analyst contributes to the achievement of University compliance and privacy programs including investigations, corrective action, policy development, monitoring, training, education, and awareness. The Privacy Analyst collaborates with others to prepare internal reports, presentations, and respond to external inquiries.
Duties & Responsibilities
Performs privacy risk assessments, privacy impact assessments, and other required assessments to comply with GDPR, FERPA, HIPAA, PIPL, and others
Partners with the Information Security team to investigate and report inappropriate access and disclosure of personal information
Conducts timely investigations of reported potential privacy and compliance incidents. These incidents may be reported through the Data Loss Prevention tool or other means.
Develops a proposed plan for each assigned investigation, monitoring activity (includes rounds as necessary) and audit which is reviewed with leadership. The plan may include data gathering, running reports, using monitoring software and/or conflict of interest disclosure software, sanctions checking, analyses, interviews, risk assessments, phone calls, meetings with involved parties and assessments of the incident or situation.
Works with Privacy Director to formulate recommendations for corrective action.
Writes reports summarizing the results of the plan, identified risk and recommended corrective action.
Communicates necessary corrective action and follows up to ensure the corrective action has been implemented.
Effectively communicates with units by computer messaging, phone, and in writing
Manages, under the direction of the Privacy Director, the breach letter notification process including drafting the breach letter notification letters and attestations in conjunction with HIPAA and FERPA officials and unit representatives.
Develops monthly privacy and security reminders for the workforce including independent members of the medical staff.
Monitors case load with Privacy and Compliance leadership. Timely notifies immediate Privacy Director of obstacles to completing work and issues identified during investigations and audits.
Maintains current knowledge of applicable federal and state privacy laws and accreditation standards, and monitors advancements in information privacy technologies to ensure organizational adoption.
Provides support to the Director and units in meeting federal and state reporting requirements, including the Office for Civil Rights, regarding breach notification and follow-up investigations.
Perform other related duties and direct special projects as assigned.
Reporting to the UIC Privacy Director, the Privacy Analyst contributes to the achievement of University compliance and privacy programs including investigations, corrective action, policy development, monitoring, training, education, and awareness. The Privacy Analyst collaborates with others to prepare internal reports, presentations, and respond to external inquiries.
Duties & Responsibilities
