Hipaa Compliance Officer (management Analyst Iv)

Fairfax, Virginia
$80,764.32 - $134,606.99 Annually
Jun 12, 2021
Jun 26, 2021
Full Time
Job Announcement

Ensures the county's compliance with HIPAA, as well as other federal and state laws and regulations governing health information by overseeing the county-wide HIPAA privacy and security programs. Serve as the county's primary HIPAA Privacy Official responsible for working with agency HIPAA Privacy Officers to implement HIPAA privacy and security regulations and standardize county policy. Serve as the county's primary HIPAA Security Official responsible for HIPAA security program and compliance.

Requires the ability to: write clearly and concisely on complex issues, prepare reports and make oral presentations on findings and recommendations; establish and maintain effective working relationships with others; work effectively under pressure and meet established deadlines; and work independently within established policies, procedures, and guidelines.

Requires thorough knowledge of: HIPAA standards, procedures, and techniques; data analytics; management principles, methods, and practices; along with strong technical knowledge of computer systems. Duties are performed under general supervision.

Note: The assigned functional area(s) of this position are healthcare administration, medical/health records administration or management, auditing, law, and information technology.

The selected applicant's starting annual salary will be in the minimum to midpoint range ($80,764.32 - $107,684.93) of the advertised compensation range. Promotional rules apply for current Fairfax County Government and Fairfax County Public Schools employees

Illustrative Duties

  • Works with agency HIPAA Privacy Officers and Agency Information Security Coordinators to standardize their implementation of HIPAA regulations in the county;
  • Develops, implements and documents privacy and security awareness and privacy training relevant to HIPAA compliance issues for all affected county employees;
  • Works with the County Attorney and Department of Information Technology (DIT) Information Security Office (ISO) to ensure that the county’s HIPAA compliance program policies/procedures conform with HIPAA, the Health Information Technology for Economic and Clinical Health Act (HITECH) and other privacy regulations for practices, procedures and technical implications;
  • Evaluates new systems that contain protected information to ensure compliance to HIPAA policies;
  • Conducts HIPAA Security Risk and privacy assessments of Covered Entity agencies;
  • Reviews breach risk assessments to determine if any incidents are reportable;
  • Receives, conducts and/or coordinates complaints and investigations into violations of HIPAA policy;
  • Completes required compliance reporting to the Federal government;
  • Confers with the DIT regarding the technology aspects of HIPAA and HIPAA investigations regarding the use of technology systems or breaches, and other relevant agency Directors on any subsequent new or modifications and related to HIPAA information privacy;
  • Works with the County Attorney to monitor related legislative activity and communicates county policy and practices changes;
  • Performs other audit/investigation related duties as required;
  • Presents oral and written reports to management, communicating findings and recommendations regarding the adequacy and effectiveness of agency/department compliance to HIPAA; and,
  • Serves as the County’s HIPAA Security Official.

Knowledge, Skills and Abilities

  • Extensive knowledge of HIPAA-related laws and regulations with significant knowledge on developing and implementing policies and procedures;
  • Extensive knowledge of the risk assessment requirements under the HIPAA Security Rule;
  • Ability to make recommendations to help ensure compliance with HIPAA regulations and other relevant information privacy laws related to access and release of protected medical information including data systems security and data administration requirements;
  • Experience with techniques of administrative and organizational systems analysis principles and practices of project planning, monitoring, and evaluation;
  • Experience with the Code of Virginia pertaining to health records;
  • Familiarity with data extraction and analysis software tools and ability to perform data analytics utilizing these tools;
  • Effective interviewing and investigation techniques;
  • Experience using computer software, including word processing, spreadsheet, database and security programs;
  • Ability to implement the security management process standard and implement policies and procedures to prevent, detect, contain, and correct security violations;
  • Ability to verbally communicate in an effective and professional manner and establish and maintain effective working relationships with other County departments and agencies, boards and commissions, and public officials;
  • Ability to organize own and others' work on multiple projects while meeting deadlines;
  • maintain confidentiality of information;
  • Ability to work independently within established policies, procedures, and guidelines;
  • Ability to communicate clearly and concisely in writing with all levels, including senior management.

Employment Standards

Any combination of education, experience, and training equivalent to the following:
(Click on the aforementioned link to learn how Fairfax County interprets equivalencies for "Any combination, experience, and training equivalent to")

Graduation from an accredited four-year college or university with a bachelor's degree in fields related to the assigned functional areas; plus five years of professional work experience within more than one of the assigned functional areas.

Not applicable.

  • Management/supervisory experience.
  • Three or more years of experience working directly with HIPAA compliance and conducting medical privacy and security audits.
  • Demonstrated experience using healthcare systems.
  • Strong data analysis experience, to include the utilization of software applications such as advanced Excel techniquesor similar.
  • Certified HIPAA Professional (CHP), Certified HIPAA Administrator (CHA), Certified HIPAA Security Specialist (CHSS), or Certified HIPAA Compliance Officer (CHCO).

The appointee to the position must satisfactorily complete a criminal background check.
Some local travel is required.

Work is generally sedentary, performed in a normal office environment. All duties performed with or without reasonable accommodations.

Panel interview.

Fairfax County Government prohibits discrimination on the basis of race, color, religion, national origin, sex, pregnancy, childbirth or related medical conditions, age, marital status, disability, sexual orientation, gender identity, genetics, political affiliation, or status as a veteran in the recruitment, selection, and hiring of its workforce.

Reasonable accommodations are available to persons with disabilities during application and/or interview processes per the Americans with Disabilities Act. Contact 703-324-4900 for assistance. TTY 703-222-7314. EEO/AA/TTY.

Similar jobs