The Senior Privacy Officer is the face of privacy internally and externally. The individual fulfills a vital role in the company. He or she will work closely with the Management team to ensure Alberta Blue Cross operates in compliance with applicable privacy and data security laws and regulations, customer contracts and industry best practices. The Senior Privacy Officer guides, advises and recommends the creation and revision of corporate privacy policies and procedures; coordinates privacy training of all staff; manages internal and external privacy inquiries and complaints; and supports the Governance, Risk and Compliance Committee on current and emerging issues facing Alberta Blue Cross.
DUTIES AND RESPONSIBILITIES:
- Develops and implements privacy related strategies for the corporation and supports the strategic direction of Alberta Blue Cross.
- Builds strong working relationships with internal and external stakeholders.
- Shares and collects information from internal and external sources to ensure decision-making reflects a comprehensive view of privacy issues.
- Provides day-to-day advice, guidance and support on privacy to the Executive and management team across departments on regulatory compliance, corporate policies and industry best practices.
- Maintains the privacy training program for new and current employees and provides additional specific training to departments or project teams as needed.
- Communicates privacy best practices via corporate communications channels.
- Stays current with privacy legislation, best practices and industry trends affecting Alberta Blue Cross business practices and customer expectations.
- Works with personnel who are involved in the disclosure of personal information to ensure the organization’s policies and procedures comply with privacy laws.
- Works closely with Legal Counsel and key departments to ensure the organization’s forms and privacy notices are compliant with privacy laws.
- Works with Human Resources and Legal Counsel to ensure there is a consistent application of sanctions for failure to comply with privacy policies for all employees.
- Leads the corporate Privacy Issues group.
- Participates in professional development initiatives and acquires and maintains appropriate privacy certification.
SKILLS AND KNOWLEDGE:
- A minimum of six years of experience managing a complex, corporate privacy program.
- A related undergraduate degree.
- International Association of Privacy Professionals (IAPP) certification – CIPP/C and/or CIPM, PACC Professional Certification, Health Information Management Certification or equivalent.
- Knowledge of privacy principles and practices, legislation and investigative processes, ideally related to the core business processes in the health benefits industry.
- Superior information gathering, analytical and decision-making and organizational capabilities with a proven track record in paying high attention to detail.
- Excellent interpersonal skills to lead cross-functional teams to resolve challenges.
- Ability to maintain focus on multiple projects while multi-tasking or working under tight deadlines.
- Ability to work independently or as part of a team.
- Possess strong written and verbal communication skills.