Privacy Officer (2024973)

Are you a person of compassion? An advocate for justice? Someone who stands up for the rights of the vulnerable and speaks out for the marginalized, the exploited and the forgotten?  Do you believe in our calling as Christians to welcome the least of these and love our neighbor?
If you answered ‘yes’, to any of the above, World Relief, and millions of people around the world need you.
At this pivotal moment in time, we are rapidly expanding and growing our team to meet the increasing needs of our world. We are looking for people who want to use their gifts and talents to make a real and tangible difference in our world and the lives of the suffering.  If you’re looking for a purpose-driven career in which you can grow your talents, while also standing up for the rights of the vulnerable, we want you to join us today.  ORGANIZATION SUMMARYWorld Relief is a global Christian humanitarian organization whose mission is to boldly engage the world’s greatest crises in partnership with the church. The organization was founded in the aftermath of World War II to respond to the urgent humanitarian needs of war-torn Europe. Since then, for 80 years, across 100 countries, World Relief has partnered with local churches and communities to build a world where families thrive and communities flourish.
Today, organizational programming focuses on humanitarian and disaster response, community strengthening and resilience, and refugee & immigrant services and advocacy.

This position is reliant upon funding and may be subject to modification or termination based on resource availability.

POSITION SUMMARY:World Relief seeks a Privacy Officer who will be responsible for the development, implementation, and maintenance of the organizational policies regarding data privacy, in accordance with federal and state law. The role will manage the overall privacy strategy, monitor, audit, and document compliance and ensure staff are adequately trained and follow written policies and procedures with focus on (but not limited to) healthcare privacy.  In the event of a breach, oversee the review, reporting, documentation and mitigation of the incident as per relevant legal obligations.  

ROLE & RESPONSIBILITIES:

• Develop implement, and maintain corporate privacy policies and procedures.
• Develop and deliver data privacy training and guidance to staff, considering language and literacy needs.
• Provide training and guidance to staff regarding data privacy. 
• Conduct regular and ongoing privacy risk assessments and legal-compliance audits using WR’s risk assessment systems and cycles, evaluating compliance with HIPAA, Confidentiality of Substance Use Disorder Patient Records (42 CFR Part 2) and all other applicable state and federal regulations. 
• Identify potential areas of privacy vulnerability and risk. 
• Develop corrective action plans for resolution of problematic issues and guidance for risk mitigation.
• Collaborate with the Security Officer to ensure protection of electronic protected health information (ePHI) in compliance with both federal and state law, and where necessary define steps to mitigate any identified risks. 
• Investigate and track privacy incidents as they arise, reporting inappropriate access and/or disclosure of protected health information according to the Health Insurance Portability and Accountability Act (HIPAA) privacy rules.
• Coordinate, convene, and report progress to and recommendations for changes to the internal intradepartmental Privacy Advisory Group. 
• Collaborate with IT, HR, Legal, and local offices, including IT personnel contracted by local offices, to ensure recommendations for change are approved, understood, and implemented fully. 
• Keep abreast of the changing landscape of privacy laws and best practices, updating the relevant policies and procedures and communicate these changes accordingly.
• Monitor and ensure compliance follow-up with staff for the documentation platform for detailed documentation of staff training, and other privacy compliance requirements for staff working in roles where HIPAA compliance is required (currently about 25 staff with annual growth in the next three years of 5 to 10 staff per year).
• Oversee and manage data breach response and investigation in collaboration with the Security Officer.
• Oversee third-party vendors for privacy compliance

JOB REQUIREMENTS:

• Mature and personal Christian faith
• Committed to the mission, vision, and values of World Relief
• Desire to serve and empower the Church to impact vulnerable communities
• Able to affirm and/or acknowledge World Reliefs Core Beliefs, Statement of Faith, Christian Identity and National Evangelicals For the Health of The Nation document
• Subject matter expert on laws, regulations, policies, and procedures relating to the protection of private and confidential information, especially HIPAA, Confidentiality of Substance Use Disorder Patient Records (42 CFR Part 2) and other applicable state and federal regulations.   
• Have highly developed written and verbal communication skills
• Sound business judgment on handling sensitive and confidential information.
• Ability to work in diverse settings

PREFERRED QUALIFICATIONS:

• Five years of experience in compliance, privacy role, or equivalent experience is required.
• Relevant certification or training in Information or Health care privacy, information security, healthcare law or related field highly favorable
• Familiar with behavioral health practices is preferred

World Relief offers a competitive benefits package and employee discount program for full-time and part-time employees. World Relief is honored to be recognized with the Gold-level Cigna Healthy Workforce Designation for exceeding the core components of our well-being program including leadership and culture, program foundations and execution, and whole person health. ***Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing. For World Relief staff, strong commitment to the mission, vision, and values of World Relief is essential, and Christian faith is a prerequisite for employment, based upon United States federal guidelines provided in Title VII of the Civil Rights Act of 1964.