Privacy Advisor, Auditing and Incident Management - Surrey, Canada - Fraser Health

Fraser Health

Verified Company

Surrey, Canada

3 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Salary range:
The salary range for this position is CAD $ $53.

20 / hour Why Fraser Health?:
Fraser Health continues to be recognized as one of BC's Top Employers, are you someone who is passionate about making a difference in the lives of others?

Fraser Health is the second largest health system in Canada with over 45,000 staff, medical staff and volunteers, and is the largest of five regional health authorities in British Columbia, providing hospital and community-based health services to nearly 2 million people in Metro Vancouver and the Fraser Valley.

We are looking for applicants with;

Bachelors Degree in Health Administration, Law or another discipline (Business or Computer Science, Human Resources
Completion of an Information Access and/or Protection of Privacy Certificate is an asset (CIPP/C, CIPT, CIPM, or CAPPA)
57 years' experience working in a regulated field
Or an equivalent combination of education, training and experience

Curious to learn what it's like to work here?
Connect with us

Connect with us on our Careers social channels where you'll learn about exciting opportunities, get career tips from our recruiters, and meet some of your future team members You can also visit us on Indeed and Glassdoor.

Instagram | Facebook | LinkedIn | Twitter

Effective October 26th, 2021, all new hires to Fraser Health will need to have full COVID 19 vaccination (have received a full series of a World Health Organization "WHO" approved vaccine against infection by SARS-COV2, or a combination of approved WHO vaccines). Please note this applies to all postings, and individual medical exemptions must be approved by the Provincial Health Officer._

Detailed Overview:

Supporting the Vision, Values, Purpose and Commitments of Fraser Health including service delivery that is centered around patients/clients/residents and families:

Reporting to the Manager, Privacy Auditing and Incident Management, the Advisor carries out Fraser Health's (FH) day to day privacy auditing activities and leads privacy incident investigations and responses.

The Advisor develops and maintains a systematic, risk based auditing program that monitors access to Fraser Health's clinical information systems based on relevant legislation, best practice auditing and privacy standards and Office of the Privacy Commissioner (OIPC) orders and requirements.

Leads the intake and investigation of privacy incidents including the development of tools and processes that ensure compliance with the Freedom of Information and Protection of Privacy Act (FIPPA).

Assesses the appropriateness of and supports notification to affected individuals and the OIPC where privacy breaches have been confirmed to have occurred.

The Advisor develops privacy educational materials, policies and procedures, responds to privacy consultation requests and supports other areas of the Information Access and Privacy team as directed by the Manager.

The Advisor will develop and support comprehensive, transparent tracking and filing processes that enable periodic and ad hoc reporting within the department and to Fraser Health Executive leadership.

Responsibilities:

Provides counsel to FH leadership and employees on BC's Freedom of Information and Protection of Privacy Act (FIPPA) compliance and best practices; represents FH and the head of the public body in formal complaint process with the Office of the Information Privacy Commissioner for BC, as assigned by the Manager.
Develops, delivers and evaluates ongoing education, communication plans and other risk response measures related to privacy of personal information principles, policies and awareness based on ongoing analysis of privacy incident files and trends.
Leads the audit process of the electronic health record by conducting specific, routine and/or random audits of access to electronic health information; Identifies potentially inappropriate accesses and opens privacy incident investigations.
Is a knowledge leader on and manages the team's information privacy audit software system, by supporting, developing and maintaining the business processes necessary to ensure effective privacy controls and compliance with BC's Freedom of Information and Protection of Privacy Act (FIPPA).
Leads investigations of privacy incidents in order to determine if a breach has occurred and the appropriate response, based upon potentially inappropriate accesses identified during auditing and privacy incident reports submitted to the department.
Assesses need to notify affected individuals and the OIPC, supports notification processes and liaises with the OIPC to report on follow up as necessary.
Develops and/or recommends strategies to ensure the secure access and utilization of electronic health information systems while maintaining the privacy of personal health information; identifies, researches and recommends innovative approaches for information capture, storage and retri