As a core part of the Corporate Compliance Department, MSKs Privacy team is committed to safeguarding the privacy of our patients information and to promoting the highest standards of ethics and integrity in all we do. We work closely with our colleagues across departments to help MSK achieve its overall mission of conquering cancer!
We seek an Institutional Compliance Manager who has broad experience managing a privacy program, supporting institutional strategic initiatives and day to day business operations.
Supervise and guide a team of Compliance Specialists performing a variety of functions, ensuring that department goals are met within established timeframes.
Manage all aspects of MSKs privacy incident response, from intake to notifications.
Develop and maintain standard operating procedures for the privacy program.
Manage process of responding to individual rights requests and patient concerns, ensuring compliance with regulatory timelines.
Interface with administrative, clinical and research staff throughout the institution, acting as a go-to resource for questions on how to apply MSK privacy policies.
Participate in the development of an annual privacy program workplan based on a risk assessment and other factors.
Ensure timely and effective monitoring activities, including audits of user access to clinical systems and other applications that store PHI, to detect and prevent misconduct and address key risks.
Provide (and train team members to provide) engaging training sessions on MSK privacy policies to clinical, research, and administrative departments across MSK.
Collaborate closely with partner departments across MSK to develop and enhance policies governing MSKs use of personal data (PHI, PII).
Assist in refining the operations of the privacy program to address evolving domestic and global data protection laws and regulatory frameworks.
A seasoned professional with an established track record of translating regulatory requirements into practical and meaningful elements while supporting business strategy.
A people leader who positively influences others and gets results.
A good decision-maker, with proven success at making timely decisions that keep the organization moving forward.
Focused on continuous improvement, knowing the most effective and efficient processes to optimize workflow.
Capable of maneuvering through complex policy, process, and people-related organizational dynamics.
Adept at planning and prioritizing work to meet commitments aligned with organizational goals.
Possess excellent problem-solving abilities and superior communication skills.
A minimum of 7 years of privacy compliance experience, including at least 4 years managing a team.
Demonstrated knowledge of and experience with HIPAA privacy regulations, including breach notification requirements.
Experience with GDPR and other U.S. or global privacy frameworks is strongly preferred.
Experience working in a healthcare setting strongly preferred.
CIPP/US, CIPP/E and/or CIPM or other relevant privacy certification highly desirable.
Internal Number: 2021-50201
About Memorial Sloan Kettering Cancer Center
At Memorial Sloan Kettering (MSK), we’re not only changing the way we treat cancer, but also the way the world thinks about it. By working together and pushing forward with innovation and discovery, we’re driving excellence and improving outcomes. For the 28th year, MSK has been named a top hospital for cancer by U.S. News & World Report. We are proud to be on Becker’s Healthcare list as one of the 150 Great Places to Work in Healthcare in 2018, as well as one of Glassdoor’s Employees’ Choice Best Place to Work for 2018. We’re treating cancer, one patient at a time. Join us and make a difference every day.