• HIPAA Privacy and Contracts Specialist

    Job Locations US-IL-Aurora
    Posted Date 3 months ago(3 months ago)
    # of Openings
  • Overview




    Looking for a way to influence the health and healthcare of many?


    If so, we’d love to hear from you! Our mission-driven organization is focused on theTriple Aim - Better Health, Better Healthcare and Lower Costs to individuals and their families who participate in our health plans.


    UNITE HERE HEALTH serves 100,000+ workers and 220,000 covered lives in the hospitality and gaming industry nationwide. Our desire to be innovative and progressive drives us to develop impactful programs and benefits designed to engage our participants in managing their own health and healthcare. Our vision is exciting and challenging. Please read on to learn more about this great opportunity!



    Key Attributes:


    • Integrity – Must be trustworthy and principled when faced with complex situations
    • Ability to build positive work relationships – Mutual trust and respect will be essential to the collaborative relationships required
    • Communication – Ability to generate concise, compelling, objective and data-driven reports
    • Teamwork – Working well with others is required in the Fund’s collaborative environment
    • Diversity – Must be capable of working in a culturally diverse environment
    • Continuous Learning – Must be open to learning and skill development.  As the Fund’s needs evolve, must be proactive about developing new areas of expertise
    • Lives our values – Must be a role model for the Fund’s BETTER Culture and Mission (Better, Engage, Teamwork, Trust, Empower, Respect)



    The purpose of this position is to develop, review, update, and maintain Health Insurance Portability and Accountability Act (HIPAA) privacy compliance procedures. This position will investigate HIPAA privacy threats and violations and maintain organizational compliance documents. In addition, this position will review and negotiate vendor and administrative contracts.


    • HIPAA responsibilities would account for 65% of daily duties
    • Contract responsibilities would account for 35% of daily duties
    • Reviews Business Associate Agreements (BAAs), oversees maintenance of BAAs, educates employees on when they are needed and field questions related to them

    • Reviews, negotiates, and drafts a large volume of healthcare delivery vendor contracts and administrative contracts
    • Receives, documents, tracks, and investigates HIPAA-related complaints and incidents; prepare reports, findings and recommendations.
    • Responds to workforce member queries regarding appropriate uses and disclosures of protected health information (PHI); ensures consistent application of policies in response to such queries and consistent documentation of such requests

    • Develops new and modifies current security and privacy awareness and compliance training, including online refresher, new-hire HIPAA training and in person training
    • Performs ongoing activities to audit and monitor compliance with the organization’s policies and procedures, contractual obligations, individual privacy rights, and federal and state privacy and security regulations
    • Develops and updates HIPAA policies, forms and processes required to afford participants their privacy rights to ensure alignment with industry, operational and regulatory changes
    • Collaborates with the HIPAA Security team regarding privacy issues related to the use and development of new information systems and technologies containing protected health information
    • Works across all departments and offices to identify privacy risks, trends, vulnerabilities, and researches solutions for risk mitigation
    • Collaborates with organizational stakeholders and senior management to ensure consistent application of privacy laws and regulations and to resolve common privacy issues
    • Maintains current knowledge of privacy regulations, including contractual and operational issues involving HIPAA and other regulations and laws affecting a national healthcare company, and assisting businesses and regions to adapt business practices when necessary to ensure compliance
    • Conducts research on privacy laws, policy issues, pending privacy legislation, and proposals to develop, manage and implement privacy plans for specific operational risks
    • Supports the Privacy Officer with participation on committees, task forces and working groups, by gathering information for, or providing advice, opinions, recommendations, or ideas to the Privacy Officer
    • Provides reports on a regular basis to keep the Privacy Officer apprised of the operation and progress of compliance efforts
    • Performs other duties as assigned within the scope of responsibilities and requirements of the job
    • Performs Essential Job Functions and Duties with or without reasonable accommodation


    Years of Experience and Knowledge

    • 4 ~ 6 years of experience, or related compliance experience, working with HIPAA and state privacy laws, including health plan and healthcare provider operations, required.
    • 4 ~ 6 years of experience reviewing and negotiating contracts

     Education, Licenses, and Certifications

    • Bachelor's degree in a related field or equivalent work experience required
    • Juris Doctorate preferred


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed