Privacy Manager

PURPOSE AND SCOPE:

Manager, Privacy is responsible for the full life cycle management of initiatives that are foundational and essential to building and maintaining of Fresenius Medical Care's privacy program.

PRINCIPAL DUTIES AND RESPONSIBILITIES:

• Engages in a wide range of activities all aimed at supporting Frsenius Medical Care Privacy program, including, the design, drafting, and implementation of policies, controls, best practices and other processes;

• Facilitates the definition of scope, goals and deliverables for defined projects

• Identifies and manages the overall impact assessment process, vendor risk management, and data mapping efforts

• Monitors and reports on the ongoing initiatives of the privacy program, using appropriate tools

• Establishes strong relationships with internal stakeholders from each business unit to monitor and report on progress, resolve issues, and refine control processes as necessary

• Provides ongoing oversight of the privacy training program, while supporting content development for the training program;

• Reviews and triages privacy incidents and requests for access to PHI & PII internally and externally, including ensure accurate compilation of supporting materials.

• Reviews and complies with the Code of Business Conduct and all applicable company policies and procedures, local, state and federal laws and regulations.

• Provides leadership, coaching and development plans for all direct reports to maintain an engaged and productive workforce; partnering with Human Resources on employee matters.

• Technically proficient in the specific department and knowledge of industry practice and business principles. Works on issues of diverse scope where analysis of situation or data requires evaluation of a variety of factors, including an understanding of current business trends. Has a larger range within the department.

• Follows processes and operational policies in selecting methods and techniques for obtaining solutions. Interprets and recommends change to policies and establishes procedures that effect immediate organization(s).

• Decisions have an impact on work processes and outcomes. Erroneous decisions or failure to achieve results will add costs and may impact the short-term goals of the organization.

• Frequently interacts with subordinate supervisors, customers, and/or functional peer group managers, normally involving matters between functional areas, other company divisions or units, or customers.

• Participates and presents at meetings with internal and external representatives. Often leading a cooperative effort among members of a project team.

• Interacts with internal departments and external customers; particularly in problem resolution. Acts as an advisor to subordinate(s) to meet schedules and/or resolve technical problems. Responsible for hiring, coaching and counseling employees, including performance reviews, disciplinary action and terminations.

• Stays current on HIPAA Privacy expertise and develops new areas of expertise regarding Federal and State privacy-related laws, regulations and issues.

• Provides subject matter expertise to Business Unit Ethics and Compliance Officers for privacy investigations, coordinating with the Privacy and Security Officer, the Assistant Security Officer, Divisional Privacy and Security Officers, Business Unit Ethics and Compliance Officers, and legal counsel as appropriate. Leads investigations arising from complaints received by the Office for Civil Rights.

• Provides subject matter expertise to all business units with a focus on clinical privacy support.

• Performs other duties as assigned.

PHYSICAL DEMANDS AND WORKING CONDITIONS:

• The physical demands and work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

SUPERVISION:

• May be responsible for the direct supervision of various levels of Information Security Office staff

EDUCATION:

• Bachelor's Degree required; Advanced Degree desirable

EXPERIENCE AND REQUIRED SKILLS:

• Minimum of 12 years' related experience; or a master's degree with 8 years' experience; or a PhD with 5 years' experience; or equivalent directly related work experience

• 3+ years' supervisory or project/program management experience preferred.

• Proven project management experience, excellent organizational skills, and keen attention to detail;

• Proven track record of working independently

• Experience managing third-party entities as well as communications;

• Experience cross-departmental working groups;

• Knowledge of privacy laws and data security requirements helpful;

• Expert-level writing, data analysis, report drafting and delivery skills;

• Bachelor's degree in business, law, information management or computer science

EO/AA Employer: Minorities/Females/Veterans/Disability/Sexual Orientation/Gender Identity

Fresenius Medical Care maintains a drug-free workplace in accordance with applicable federal and state laws.

THIS IS A REMOTE POSITION WITH OCCASIONAL TRAVEL DUE TO RESPONSIBIILTIES