As a core part of the Corporate Compliance Department, MSKs Privacy team is committed to safeguarding the privacy of our patients information and to promoting the highest standards of ethics and integrity in all we do. We work closely with our colleagues across departments to help MSK achieve its overall mission of conquering cancer!
We seek an Institutional Compliance Manager who has broad experience managing a privacy program, supporting institutional strategic initiatives and day to day business operations.
Supervise and guide a team of Compliance Specialists performing a variety of functions, ensuring that department goals are met within established timeframes.
Manage all aspects of MSKs privacy incident response, from intake to notifications.
Develop and maintain standard operating procedures for the privacy program.
Manage process of responding to individual rights requests and patient concerns, ensuring compliance with regulatory timelines.
Interface with administrative, clinical and research staff throughout the institution, acting as a go-to resource for questions on how to apply MSK privacy policies.
Participate in the development of an annual privacy program workplan based on a risk assessment and other factors.
Ensure timely and effective monitoring activities, including audits of user access to clinical systems and other applications that store PHI, to detect and prevent misconduct and address key risks.
Provide (and train team members to provide) engaging training sessions on MSK privacy policies to clinical, research, and administrative departments across MSK.
Collaborate closely with partner departments across MSK to develop and enhance policies governing MSKs use of personal data (PHI, PII).
Assist in refining the operations of the privacy program to address evolving domestic and global data protection laws and regulatory frameworks.
A seasoned professional with an established track record of translating regulatory requirements into practical and meaningful elements while supporting business strategy.
A people leader who positively influences others and gets results.
A good decision-maker, with proven success at making timely decisions that keep the organization moving forward.
Focused on continuous improvement, knowing the most effective and efficient processes to optimize workflow.
Capable of maneuvering through complex policy, process, and people-related organizational dynamics.
Adept at planning and prioritizing work to meet commitments aligned with organizational goals.
Possess excellent problem-solving abilities and superior communication skills.
A minimum of 7 years of privacy compliance experience, including at least 4 years managing a team.
Demonstrated knowledge of and experience with HIPAA privacy regulations, including breach notification requirements.
Experience with GDPR and other U.S. or global privacy frameworks is strongly preferred.
Experience working in a healthcare setting strongly preferred.
CIPP/US, CIPP/E and/or CIPM or other relevant privacy certification highly desirable.
Internal Number: 2021-50201
About Memorial Sloan-Kettering Cancer Center
As one of the world's premier cancer centers, Memorial Sloan-Kettering Cancer Center is committed to exceptional patient care, leading-edge research, and superb educational programs. The close collaboration between our physicians and scientists is one of our unique strengths, enabling us to provide patients with the best care available today as we work to discover more effective strategies to prevent, control, and ultimately cure cancer in the future. Our education programs train future physicians and scientists, and the knowledge and experience they gain at Memorial Sloan-Kettering has an impact on cancer treatment and the biomedical research agenda around the world.