Privacy Analyst (Hybrid) - Faculty Practice Plan

Washington University in St. LouisBaltimore, MD
$53,100 - $90,600Hybrid

About The Position

Responsible for managing all HIPAA incidents, privacy complaints, and reports of suspected inappropriate access to our clinical applications. Serves as an expert on HIPAA Privacy and provides guidance to workforce members on HIPAA related questions, concerns or incidents.

Requirements

  • Bachelor’s degree or combination of education and/or experience may substitute for minimum education.
  • No specific certification/professional license is required for this position.
  • No specific work experience is required for this position.
  • Audit Management
  • Clinical Care
  • Conducting Investigations
  • Electronic Health Records (EHR)
  • A driver's license is not required for this position.

Nice To Haves

  • Certified in Healthcare Compliance (CHC) - Health Care Compliance Association (HCCA)
  • Certified in Healthcare Privacy and Security (CHPS) - American Health Information Management Association (AHIMA)
  • Certified in Healthcare Privacy Compliance (CHPC) - Health Care Compliance Association (HCCA)
  • Registered Health Information Administrator (RHIA) - American Health Information Management Association (AHIMA)
  • Data Compilation
  • Deadline Management
  • Epic EHR
  • Health Care
  • Healthcare Auditing
  • Health Information
  • HIPAA Regulations
  • Microsoft Office
  • Nursing Fundamentals
  • Oral Communications
  • Working Independently
  • Written Communication

Responsibilities

  • Assumes primary responsibility for the initial screening of, timely investigation, triaging and documentation of HIPAA incidents and complaints.
  • Conducts thorough and comprehensive investigations, including data gathering, analysis, interviews, report writing and initiation of corrective action.
  • Ensures timely assessment of incidents to include documentation of risk assessments and breach notification.
  • Manages our privacy monitoring program focused on access to our clinical applications in conjunction with our vendor partner, Fair Warning.
  • Performs timely review of the alerts and conducts thorough and comprehensive investigations, including data gathering, user interviews performed in coordination with Human Resources, analysis of access patterns and documentation of findings.
  • Recommends corrective action and sanctions in conjunction with Human Resources.
  • Ensures timely assessment of alerts to include documentation of risk assessments and breach notification.
  • Serves as an expert on the HIPAA Regulation, University privacy and security policies and procedures and privacy and security resources.
  • Advises workforce members on application of above to specific scenarios in a timely fashion.
  • Assists HIPAA Privacy Educator with developing and promoting activities intended to foster privacy awareness and knowledge across the entire enterprise.
  • Conducts on-site privacy monitoring of clinical areas and business units and performs desk audits to ensure compliance with regulations and policies.
  • Works collaboratively with departments to implement corrective action plans if indicated.
  • Creates and maintains dashboard reporting on HIPAA Privacy Office activities to document adherence to the HIPAA Regulations. Dashboard includes reported incidents, privacy monitoring alerts, disclosures, breaches, sanctions, training and patient’s acknowledgement of the offer of Notice of Privacy Practice.
  • Serves as a resource to departmental HIPAA liaisons, including providing orientation to new liaisons, maintaining resources and an updated liaison contact list and offering frequent reminders and education.
  • Assists patients in exercising their patient privacy rights, including amending their medical records, receiving an accounting of the disclosures of their medical records, requesting restrictions on access to their medical records and other rights related to patient privacy.
  • Works collaboratively with BJC compliance and other covered entities to investigate HIPAA incidents.

Benefits

  • Up to 22 days of vacation, 10 recognized holidays, and sick time.
  • Competitive health insurance packages with priority appointments and lower copays/coinsurance.
  • Free Metro transit U-Pass for eligible employees.
  • Eligible employees with a defined contribution (403(b)) Retirement Savings Plan, which combines employee contributions and university contributions starting at 7%.
  • Wellness challenges, annual health screenings, mental health resources, mindfulness programs and courses, employee assistance program (EAP), financial resources, access to dietitians, and more!
  • 4 weeks of caregiver leave to bond with your new child.
  • Family care resources are also available for your continued childcare needs.
  • Adult care resources.
  • Covers the cost of tuition for you and your family, including dependent undergraduate-level college tuition up to 100% at WashU and 40% elsewhere after seven years with us.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service