Assists with the implementation of a regulatory compliance program in a department or clinic. May participate in the development and revision of compliance program policies, procedures, and/or protocols. Conducts and documents internal audits as directed. Works to implement a corrective action plan as needed. Assists with preparation for external audits. May lead interactions with regulatory agencies on defined matters. Ensures completeness and timely submission of all compliance documentation. Develops and implements training sessions. Provides staff guidance on complex compliance issues. Writes regulatory reports for management, including developing agenda and drafting committee documents. Maintains compliance documentation. May provide guidance to and/or oversee the work of entry level compliance staff. Handles annual registration with federal agencies. Assists with the management of special projects and research assignments.
About the Unit
The Office of Corporate Compliance (OCC) is committed to promoting conduct that is responsible, ethically sound, and compliant with applicable law. The OCC fosters a corporate culture of ethical behavior and integrity in all matters related to compliance with the laws and regulations that govern the delivery and billing of health care. The OCC administers a Health Care Integrity Program (HCIP) that places particular emphasis on compliance with billing, coding, and documentation requirements. Additionally, the OCC, through the HIPAA Privacy Program, supports compliance with the privacy and security standards set forth in the Health Insurance Portability and Accountability Act of 1996. Finally, the OCC actively participates in research compliance and conflict of interest management initiatives.
HIPAA Privacy Program:
HIPAA Privacy initiatives include investigations of privacy complaints, identification of privacy reviews and information system access audits to be performed based on the Office for Civil Rights and Health and Human Services Guidance publications as well as internal protocols, and development of policies, guidances and tools to help employees. The program also contributes to the enhancements of existing compliance initiatives by developing new methods to identify areas of privacy risk and developing best practices for risk reduction and remediation. Customers include patients, faculty, senior leadership, clinical and non-clinical staff, and students at the University of Chicago Medical Center and Biological Sciences Division.
Unit Job Summary
Senior HIPAA Privacy Analyst: Serves as a Manager to lead and support the HIPAA Privacy Program mission by receiving and responding to patient/employee inquiries, conducting, and reporting on department reviews and audits, managing privacy and information security complaints and investigations, staying abreast of current judicial trends related to HIPAA compliance regulations such as privacy, security, and the national provider identifier program, responding to hotline calls, delivering HIPAA related presentations/training, and creating guidances, training, and other documents for the Intranet and workforce education initiatives.
Education
Bachelor's degree required.
Experience
A minimum three year of relevant (i.e. project management, HIPAA, information systems, or compliance) experience required.
Demonstrated experience in data mining, analysis and report development required.
Experience accomplishing goals on time and within budget required.
Academic medical center and/or health care consulting experience preferred.
Competencies
Ability to read large volumes, understand underlying concepts and place in context required.
Ability to research and solve problems independently with minimal direction required.
Ability to work on multiple projects, respond to shifting priorities, meet deadlines and function efficiently in a fast-paced environment with frequent interruptions required.
Ability to articulate difficult concepts with confidence required.
Ability to lead work teams through change processes required.
Capacity to become proficient in use of database software and other technology required.
Ability to complete timely and accurate records required.
