Rq05817 - Privacy Impact Assessment (Pia) Specialist - Senior

We would like to present to you a new job opportunity and I think you may find it interesting.

If you are interested kindly send the following documents to by Tuesday, July 25 at 10:00 AM EST if that interests you and matches your profile.

Without mandatory documents, we cannot submit a candidate.

• Updated Resume in word format (Mandatory)
• Skills Matrix and References (Mandatory)
• Expected hourly rate (Mandatory)

Job Title: RQ05817 - Privacy Impact Assessment (PIA) Specialist - Senior

Client: Ontario Health

Work Location:777 Bay Street, Toronto, Ontario, Hybrid

Estimated Start Date: 2023-10-02

Estimated End Date: 2024-03-29

#Business Days: 123.00

Extension: Probable after the initial mandate

Hours per day or Week: 7.25 hours per day

Security Level: CRJMC

If you are interested to learn more about this opportunity, please check it out on our career site or If not please feel free to send over any names or forward this email to anyone who may be interested.

(Click above for Skill matrix and for more details)

Must haves:

• Minimum of 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects
• Familiarity with the Personal Health Information Protection Act (PHIPA), and it’s related requirements for Health Information Network Providers (HINP) and Electronic Service Providers (ESP)
• Minimum 5 years’ direct operational level privacy experience preferably in a health sector and/or IT environment
• Minimum 5 years' experience drafting and reviewing privacy requirements for data sharing agreements
• Minimum 5 years’ experience developing privacy policies and procedures, requirements, or controls

Description

Responsibilities:

• Conduct privacy impact assessments for medium to high complex initiatives and/or implement mitigations activities in response to recommendations from PIAs
• Provide privacy advisory and support to business teams
• Identify and assess privacy risks
• Support privacy program projects and activities to improve the efficiency and effectiveness of the Privacy Office
• Identify privacy requirements
• Develop privacy policies and procedures
• Lead and/or participate on OH, regional or provincial committees or project teams as the privacy Subject Matter Expert
• Develop strong relationships with various internal and external stakeholders to foster a culture of privacy
• Other duties as required
• Respond and provide advice and legislative interpretation for information and access requests, consent management requests, complaints, or inquiries, appeals and privacy issues under the PHIPA

Deliverables include, but are not limited to:

• Reviewing and advising on agreements, including data sharing agreements
• Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements
• Developing privacy requirements for new or changing projects
• Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives related to home and community care modernization and OHT deployment
• Developing risk mitigation plans
• Conducting/Completing Privacy Impact Assessments and associated documentation

Desired Skills:

• Knowledge of Information Technology concepts and processes that impact the protection of personal information, including (but not limited to) Internet tools, system interfaces, information security, information architecture and data flows
• Demonstrated knowledge and experience of access and privacy requirements and practices, preferably related to the health and public sectors
• Experience with conducting and/or providing oversight for Privacy Impact Assessments including developing privacy requirements, risk mitigation plans, corporate policies and developing and/or delivering training content
• Completion of a university undergraduate or master’s degree in health, policy, IT, security, law or a related discipline
• Knowledge and ability to interpret of Ontario’s Personal Health Information Protection Act, 2004 (PHIPA)
• Good understanding of related disciplines, such as IT system design, policy development (privacy or security), business architecture, legal processes, Freedom of Information administration, business analysis, risk management, project management
• Exceptional analytic and creative problem-solving abilities
• Time Management, with the ability to manage tight deadlines and prioritize multiple projects
• Working knowledge of digital health technologies and information security industry standards
• Excellent knowledge of privacy and security concepts, trends, and issues. This will include an understanding of their impact on business processes, as well as skill with interpretation and communication of principles and compliance requirements
• Excel in a fast-paced and project focused environment
• Excellent Communication skills both verbal and written, and strong stakeholder engagement skills
• Knowledge and ability to interpret Ontario’s Freedom of Information and Protection of Privacy Act (FIPPA)
• Analytical skills to understand the current and future access and privacy implications of policies, decisions, and business initiatives

Experience And Skill Set Requirements

Criteria

Criteria Details

Criterion Maximum Rating

Minimum 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium high complexity projects

25

Minimum 5 years’ direct operational level privacy experience in a health sector and/or IT environment or both

20

Minimum 5 years’ experience in developing privacy policies and procedures, requirements, or controls

20

Minimum 5 years’ experience drafting and reviewing privacy requirements for data sharing agreements

25

Familiarity with the Personal Health Information Protection Act (PHIPA), and requirements related to Health Information Network Provider (HINP) and Electronic Service Provider (ESP).

10

Total

100%

Powered by JazzHR

5b0Iy4h1Xe