Senior Analyst, Privacy

Oscar Health

Oscar Health

IT
Remote
Posted on Saturday, May 4, 2024

Hi, we're Oscar. We're hiring a Sr. Analyst, Privacy to join our Corporate Compliance team.

Oscar is the first health insurance company built around a full stack technology platform and a focus on serving our members. We started Oscar in 2012 to create the kind of health insurance company we would want for ourselves—one that behaves like a doctor in the family.

About the role

The Privacy Senior Analyst assists with privacy incident response and investigations, under the direction of leadership, for tasks involving Protected Health Information (PHI) and PII. You will be support to a Privacy advisor as it relates to privacy risks, trends, and root-cause issues to allow Oscar to improve management of healthcare data for Oscar Members in all markets.

You will report to the Manager, Privacy.

Work Location:

Oscar is a blended work culture where everyone, regardless of work type or location, feels connected to their teammates, our culture and our mission.

If you live within commutable distance to our New York City office (in Hudson Square), our Tempe office (off the 101 at University Dr), or our Los Angeles office (in Marina Del Rey), you will be expected to come into the office at least two days each week. Otherwise, this is a remote / work-from-home role.

You must reside in one of the following states: Alabama, Arizona, California, Colorado, Connecticut, Florida, Georgia, Illinois, Iowa, Kentucky, Maine, Maryland, Massachusetts, Michigan, Minnesota, New Hampshire, New Jersey, New Mexico, New York, North Carolina, Ohio, Oregon, Pennsylvania, Rhode Island, South Carolina, Tennessee, Texas, Utah, Vermont, Virginia, Washington, or Washington, D.C. Note, this list of states is subject to change. #LI-Remote

Pay Transparency:

The base pay for this role in the states of California, Connecticut, New Jersey, New York, and Washington is: $88,800 - $116,550 per year. The base pay for this role in all other locations is: $79,920 - $104,895 per year.. You are also eligible for employee benefits, participation in Oscar’s unlimited vacation program and annual performance bonuses.

Responsibilities

  • Communicate with team members concerning the importance of protecting Protected Health Information (PHI) and other sensitive information including Personally Identifiable Information (PII).
  • With guidance, conduct investigations into reported or observed violations.
  • With guidance, you will support Privacy issues and initiate appropriate actions to ensure potential incidents are investigated thoroughly and observing company policies and applicable laws and regulations.
  • Support all required breach determination and notification processes under HIPAA and applicable state breach rules and requirements in collaboration with others on the Privacy team and internal partners (IT Security, Legal).
  • Proficiently draft multiple communications, including notification letters, risk assessments, incident response reports and regulatory responses.
  • Help create Privacy Training & Awareness materials
  • Help solution Privacy issues and concerns across the enterprise
  • Contribute toPrivacy projects at the direction of Privacy management
  • Compliance with all applicable laws and regulations
  • Other duties as assigned

Qualifications

  • Bachelor’s degree or equivalent years of work experience
  • 2+ years of experience in healthcare privacy programs, including incident and breach investigations and responses.
  • 2+ years of experience using metrics to improve programs
  • 2+ years of experience with HIPAA and other federal and state Privacy laws and regulations applicable to the healthcare industry.
  • 2+ years of experience of comprehensive Privacy investigation experience
  • 2+ years experience using Microsoft Office/Google Workspace applications

Bonus Points

  • Privacy Certification from the International Associate of Privacy Professionals (IAPP) or equivalent certification
  • Experience documenting and implementing policies, procedures and guidelines
  • Technical experience, including the ability to understand the technology landscape, identify opportunities, and overcome technical obstacles
  • Proven ability to navigate complex Privacy issues and identify solutions
  • Experience supporting a data privacy, security or equivalent function directly or indirectly for a large, regulated and matrixed organization
  • Project/program management experience
  • Experience directly or indirectly with IT Security, Compliance or similar function
  • Experience with privacy principles and privacy operations))

This is an authentic Oscar Health job opportunity. Learn more about how you can safeguard yourself from recruitment fraud here.

At Oscar, being an Equal Opportunity Employer means more than upholding discrimination-free hiring practices. It means that we cultivate an environment where people can be their most authentic selves and find both belonging and support. We're on a mission to change health care -- an experience made whole by our unique backgrounds and perspectives..

Pay Transparency:

Final offer amounts, within the base pay set forth above, are determined by factors including your relevant skills, education, and experience.

Full-time employees are eligible for benefits including: medical, dental, and vision benefits, 11 paid holidays, paid sick time, paid parental leave, 401(k) plan participation, life and disability insurance, and paid wellness time and reimbursements.

Reasonable Accommodation:

Oscar applicants are considered solely based on their qualifications, without regard to applicant’s disability or need for accommodation. Any Oscar applicant who requires reasonable accommodations during the application process should contact the Oscar Benefits Team (accommodations@hioscar.com) to make the need for an accommodation known.