Manager, Privacy - Genetic Testing (Remote) in Secaucus, NJ at Quest Diagnostics

Date Posted: 11/3/2022

Job Snapshot

  • Location:
    500 Plaza Drive
    Secaucus, NJ
  • Date Posted:
    11/3/2022
  • Function
    Administration
  • Job Family
    Compliance
  • Remote
    Remote
  • Position Type
    Regular Full-Time
  • Shift
    Day

Job Description

Working with members of the Privacy Office, provide advice and counsel to business teams, and provide compliance support on all aspects of U.S. federal and state privacy laws and regulations.  Knowledge of HIPAA/HITECH required, as well as familiarity with state privacy and data protection laws, global data protection laws (primarily GDPR and PIPEDA), marketing and/or general data privacy protection principles. Experience in the genetics testing industry, with knowledge of privacy principles and laws applicable to genetic testing, highly desirable. ​Assist in refining and standing up new data protection readiness programs necessitated by evolving global data protection laws and regulatory frameworks.

The Ideal candidate will be based out of our Secaucus, NJ  or Collegeville, PA site  (Hybrid) however we are open to Remote work as well. 

Duties and Responsibilities:

•         Assist with development, implementation and maintenance of privacy and data protection policies and standard operating procedures for HIPAA, state privacy laws, GDPR, and other emerging domestic and global privacy laws.

•         Advise business and provide support on matters relating to privacy, informed consent, and genetic testing. ​

•         Intake, investigate, notify and respond to OCR, state regulatory and patient inquiries regarding PHI and PII incidents and breaches.  Direct appropriate mitigation and training.

•         Provide guidance on HIPAA compliance in electronic communications.

•         Work with cross functional business and legal teams to ensure alignment between privacy laws and regulations and business imperatives, including by developing practical solutions.

•         Analyze data privacy and protection incidents and breaches to determine trends and develop tailored training and solutions.

•         Provide periodic reporting of incidents, breaches, resolutions and trends to relevant stakeholders.    

•         Manage process of responding to individual rights requests, ensuring compliance with regulatory timelines.

•         Stay abreast of new privacy and data protection requirements and assess their impact on existing operations; modify policies and procedures accordingly and collaborate with business teams to promote alignment between requirements and policies and procedures. 

•         Work collaboratively with privacy and compliance team on day-to-day occurrences

•         Assist in department initiatives and special projects.

•         Work with Legal to interpret regulations, assist with and manage a variety of tasks, projects, and processes.

•         B.S. or equivalent required, M.S. or J.D. strongly preferred

•         CIPP/US, CIPP/E and/or CIPM or other relevant privacy certification highly desirable

•         7+ years in a law firm or healthcare company working on HIPAA privacy and security issues

•         5+ years addressing compliance regulations, state privacy laws and regulations, or other legal matters

•         Specialized knowledge of GDPR, CCPA,  and other emerging privacy laws and regulations

•         Experience with design, implementation and maintenance of privacy compliance policies, procedures and programs;

•         Demonstrated ability to translate regulatory requirements into practical and actionable elements while supporting business strategy.

•         Experience providing guidance on the effective development and implementation of privacy controls.

•         Experience in performing privacy risk assessments and ongoing privacy compliance monitoring activities.

•         Demonstrated project management experience

•         Ability to work independently and collaboratively

•         Cognitive ability to observe and interpret information, assess data, make an assessment and recall details as needed

•         Sitting or standing for long periods of time as routinely found in an office environment

•         Demonstrable track record of making informed decisions despite ambiguity, prioritizing and delivery measurable results in a fast-paced environment

•         Effective communication (verbal and written), research, drafting, proofreading, planning, organizational and computer skills.

•         Strong interpersonal skills; ability to interact professionally with colleagues, customers and patients

•         Ability to maintain composure under pressure

•         Ability to follow through, meet deadlines, maintain the highest level of confidentiality, anticipate requirements and build relationships

•         Must be resourceful and creative with a roll-up your sleeves mentality

•         Self-motivated and results-oriented

•         MS Office and other business applications, including Microsoft Excel and Powerpoint