Home > Minneapolis / St. Paul jobs > Minneapolis / St. Paul accounting/financial

Posted: Saturday, January 13, 2018 7:46 AM

About Blue Cross
For more than 80 years, Blue Cross and Blue Shield of Minnesota has worked to improve the health of all Minnesotans. As a nonprofit organization, we have a long history of making a healthy difference in people's lives and of giving back to the communities we serve. In particular, our industry:leading commitment to veterans, service members and their families helped us to be named the first and only Beyond the Yellow Ribbon health plan company in Minnesota.
We make it easy for you to support veterans groups and other community organizations by providing 20 hours of volunteer paid time off each year - in addition to regular paid time off. The dedication of Blue Cross volunteers has earned us recognition for running one of the most successful corporate food drives in the state; donating nearly 1,500 volunteer hours at Habitat for Humanity worksites; and growing more than 750 pounds of fresh produce at our onsite Community Giving Gardens. Find your place at a company that cares about veterans, our employees, our members and our communities.
Description Summary 13;
This role is responsible for investigating all actual and potential data privacy issues spanning all BCBSMN business units, affiliates and business associates. The Analyst will assess initial allegations; interview witnesses; review all applicable documents, including all applicable policies and regulatory/legal requirements; assess the facts pursuant to HIPAA, HITECH, and State law; conduct a risk assessment; determine breach status; complete a written summary at the conclusion of the investigation, notify individuals and/or regulators and log the incident into BCBSMN Privacy Incident Management database.

In addition to the responsibilities listed below, the Privacy Analyst will participate in and assist with Privacy Department projects and activities and related Program Office projects and activities.
Accountabilities 13;
Incident Management:
:Manage the Privacy Email, Hotline and system generated incident reporting sources (Service Now, INSINQ, etc.)
:Address the high volume of inquiries and incidents from multiple sources : email; hotline; phone, etc.
:Thoroughly investigate, document, remediate, report, notify, close and log all reported privacy incidents.
:Handle matters requiring notification to Health and Human Services, customers / clients, and individually impacted membership.
:Lead, assist and/ or brief leadership on higher profile issues and investigations when required.
Related Functions:
:Track and manage the list of employee groups with unique incident notification, reporting and other privacy related requirements.
:Provide guidance to business leads on the permissible use and disclosure of member and customer information.
:Lead the Privacy aspect of the annual HIPAA Audit Readiness review conducted with Information Security.
:Maintain the Audit Readiness Contact List and other such lists as identified.
:Provide Accounting for Disclosures upon request.
:Provide back:up for Compliance Email and Hotline.
:Prepare of monthly, quarterly and annual reporting related to incident management and key privacy activities.
:Work collaboratively with internal teams for timely reporting of privacy incidents to regulators and/ or clients based on contractual requirements.
:Assist with ad hoc or scheduled reporting for Sr. Management, departments, etc.
:Assist in identifying areas wherein Privacy training may be appropriate.
:Assist in and/or lead the creation of privacy training materials in conjunction with Communications and Information Security.
:Track, document and follow:up on the completion of the enterprise wide privacy training.
Policy and Procedure Maintenance:
:Manage the annual review of the Privacy policies and procedures. (Propose updates, conduct reviews, navi


• Location: Minneapolis / St. paul

• Post ID: 28649522 minneapolis is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2018