Institutional Compliance Manager (Privacy Operations) | Memorial Sloan-Kettering Cancer Center - Military Veterans

at HERC - Metro New York & Southern Connecticut

New York, New York

We Are: As a core part of the Corporate Compliance Department, MSKs Privacy team is committed to safeguarding the privacy of our patients information and to promoting the highest standards of ethics and integrity in all we do. We work closely with our colleagues across departments to help MSK achieve its overall mission of conquering cancer! We seek an Institutional Compliance Manager who has broad experience managing a privacy program, supporting institutional strategic initiatives and day to day business operations. You will: Supervise and guide a team of Compliance Specialists performing a variety of functions, ensuring that department goals are met within established timeframes. Manage all aspects of MSKs privacy incident response, from intake to notifications. Develop and maintain standard operating procedures for the privacy program. Manage process of responding to individual rights requests and patient concerns, ensuring compliance with regulatory timelines. Interface with administrative, clinical and research staff throughout the institution, acting as a go-to resource for questions on how to apply MSK privacy policies. Participate in the development of an annual privacy program workplan based on a risk assessment and other factors. Ensure timely and effective monitoring activities, including audits of user access to clinical systems and other applications that store PHI, to detect and prevent misconduct and address key risks. Provide (and train team members to provide) engaging training sessions on MSK privacy policies to clinical, research, and administrative departments across MSK. Collaborate closely with partner departments across MSK to develop and enhance policies governing MSKs use of personal data (PHI, PII). Assist in refining the operations of the privacy program to address evolving domestic and global data protection laws and regulatory frameworks. You are: A seasoned professional with an established track record of translating regulatory requirements into practical and meaningful elements while supporting business strategy. A people leader who positively influences others and gets results. A good decision-maker, with proven success at making timely decisions that keep the organization moving forward. Focused on continuous improvement, knowing the most effective and efficient processes to optimize workflow. Capable of maneuvering through complex policy, process, and people-related organizational dynamics. Adept at planning and prioritizing work to meet commitments aligned with organizational goals. Possess excellent problem-solving abilities and superior communication skills. You Have: A minimum of 7 years of privacy compliance experience, including at least 4 years managing a team. Demonstrated knowledge of and experience with HIPAA privacy regulations, including breach notification requirements. Experience with GDPR and other U.S. or global privacy frameworks is strongly preferred. Experience working in a healthcare setting strongly preferred. CIPP/US, CIPP/E and/or CIPM or other relevant privacy certification highly desirable. #LI-POST

New York, New York

The Higher Education Recruitment Consortium (HERC) is a national nonprofit network of higher education and affiliated employers, committed to institutional collaboration, creating diverse workplaces, and assisting dual career couples. Searching for a job in higher ed? Our job board hosts over 30,000 faculty and staff jobs at workplaces that value diversity, equity, and inclusion. Set up your job seeker account today at: For our member institutions, we offer recruitment and retention resources, vibrant regional networks, and a new online community of practice, HERConnect. All of our resources can help you advance inclusive excellence at your institution.

Similar jobs