Title: Privacy Specialist
Onsite/Remote/Hybrid: REMOTE
The Privacy Specialist will report to and work with the Sr. Director – Privacy to lead and support key privacy initiatives within the Global Privacy Office (GPO). This person will provide oversight for a variety of privacy projects that support the enterprise privacy compliance program and McKesson Business Units (BUs).
The Privacy Specialist contributes to the development of GPO goals and objectives and works closely with members of the GPO, the Digital & Data Assets legal team, Business Unit Compliance teams, Cybersecurity, Human Resources, Internal Audit, and other business colleagues to support and monitor the implementation of privacy programs.
The Privacy Specialist will operate independently with minimal direction while serving as a key resource to the business units and the GPO. This role provides resolutions to a diverse range of complex problems through the development of enterprise privacy controls and guidance to BUs on the implementation of those privacy controls, while focusing on gaining continual education around privacy frameworks, principles, and changing regulations.
Duties and Responsibilities Include:
- Review and evaluate the life cycle of confidential and sensitive data, including the collection, storage, use, transfer, retention, and destruction of information.
- Assist stakeholders in navigating the compliance organization and resources.
- Research current privacy industry standards.
- Perform privacy awareness activities such as training, developing, and maintaining privacy-related communications.
- Lead and/or participate on BU working groups.
- Develop privacy controls, policies, standards, guidelines, and operating procedures and make compliance recommendations.
- Coordinate and/or review responses for privacy-related inquiries from internal stakeholders.
- Gather, organize, and quantify privacy metrics, surveys and questionnaire responses.
- Identify risks and escalate privacy compliance concerns appropriately.
Minimum Requirements
- 4+ years of professional work experience in health care privacy, compliance and/or the management of privacy projects and programs
Critical Skills
- Experience in privacy with an emphasis on HIPAA
- Strong analytical skills with the ability to issue spot for risk
- Extremely organized with an emphasis on attention to detail to track progress in a systematic manner and multiple priorities at one time
- Effective interpersonal, communication and presentation skills, both written and orally, including the ability to communicate at all organizational levels
- Ability to facilitate meetings with multiple parties and BUs and keep appropriate stakeholders properly informed within all levels of management
- Responds to communication timely, proactively and positively
- Reputation for exercising the highest integrity
- Flexibility to adjust to changing priorities and tolerance for ambiguity
- Ability to work under pressure and established deadlines
- Proficient with Smartsheet, Microsoft Excel, Word, PowerPoint and Outlook
Education
- Bachelor's Degree required. Preference given to those with healthcare or legal background.
Certifications/Licensure
- CIPP and/or PMP certification desired
Physical requirements
- Typical office environment
- Occasional travel
Must be authorized to work in the US. Sponsorship is not available for this position.