Description
Background Information:
The Senior Privacy (PIA) Specialist will act as a dedicated privacy subject matter expert to assist with supporting privacy matters related to a number of key Information Technology projects that include Patients Before Paperwork (PB4P) initiatives, enterprise business intelligence tools, and cloud migration.
...
Ontario Health is seeking a Privacy resource to ensure that Ontario Health maintains compliance with its legal and contractual privacy obligations and builds privacy into the design of projects that involve personal health information (PHI), thus reducing risk for the organization and protecting the trust and privacy of individuals whose PHI we manage.
Responsibilities:
Conducting/Completing Privacy Impact Assessments and associated documentation
Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives
Identify and assess privacy risks, including developing risk mitigation plans
Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements
Reviewing and advising on agreements, including data sharing agreements
Developing privacy requirements for new or changing projects
Providing privacy advisory and support to business teams
Other duties as required
Location: Remote
Deliverables
• Over the duration of the engagement, the Senior Privacy (PIA) Specialist will support work already in progress, as well as new work on Privacy Impact Assessments;
• Work with the project and product teams on risk mitigation of PIA findings as required under PHIPA;
• Support work related to update and/or developing new agreements;
• Other duties as required. Note that knowledge of current privacy and data protection policy and legislation, especially Ontario’s Personal Health Information Protection Act (PHIPA), will be critical to ensure success.
Additional Terms
Ontario Health assets including laptops and related equipment cannot be removed from the province of Ontario without prior written approval from Ontario Health.
Assignment Type: This position is currently listed as "Hybrid". The resource under this request will be required to work onsite as per Hiring Manager sole discretion.
Knowledge Transfer Details:
· The Candidate will ensure full knowledge transfer is provided to the Ontario Health team before end of engagement. Some of this might occur at the end of the engagement but will also be shared as information is obtained/consolidated. Key deliverables will be shared with team, using an approved format.
· The Candidate must provide all related documentation as part of Knowledge transfer protocol. Documents will be reviewed by the appropriate leads and signed off by manager/director.
· The candidate will work collaboratively with Ontario Health team throughout the assignment and ensure key deliverables, milestones, and documentation are shared.
· A walkthrough of any demos, development, etc. will be required before end of engagement, as required.
Advantages
Good compensation working on projects that will make a difference to the people of Ontario.
Responsibilities
Description
Background Information:
The Senior Privacy (PIA) Specialist will act as a dedicated privacy subject matter expert to assist with supporting privacy matters related to a number of key Information Technology projects that include Patients Before Paperwork (PB4P) initiatives, enterprise business intelligence tools, and cloud migration.
Ontario Health is seeking a Privacy resource to ensure that Ontario Health maintains compliance with its legal and contractual privacy obligations and builds privacy into the design of projects that involve personal health information (PHI), thus reducing risk for the organization and protecting the trust and privacy of individuals whose PHI we manage.
Responsibilities:
Conducting/Completing Privacy Impact Assessments and associated documentation
Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives
Identify and assess privacy risks, including developing risk mitigation plans
Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements
Reviewing and advising on agreements, including data sharing agreements
Developing privacy requirements for new or changing projects
Providing privacy advisory and support to business teams
Other duties as required
Location: Remote
Deliverables
• Over the duration of the engagement, the Senior Privacy (PIA) Specialist will support work already in progress, as well as new work on Privacy Impact Assessments;
• Work with the project and product teams on risk mitigation of PIA findings as required under PHIPA;
• Support work related to update and/or developing new agreements;
• Other duties as required. Note that knowledge of current privacy and data protection policy and legislation, especially Ontario’s Personal Health Information Protection Act (PHIPA), will be critical to ensure success.
Additional Terms
Ontario Health assets including laptops and related equipment cannot be removed from the province of Ontario without prior written approval from Ontario Health.
Assignment Type: This position is currently listed as "Hybrid". The resource under this request will be required to work onsite as per Hiring Manager sole discretion.
Knowledge Transfer Details:
· The Candidate will ensure full knowledge transfer is provided to the Ontario Health team before end of engagement. Some of this might occur at the end of the engagement but will also be shared as information is obtained/consolidated. Key deliverables will be shared with team, using an approved format.
· The Candidate must provide all related documentation as part of Knowledge transfer protocol. Documents will be reviewed by the appropriate leads and signed off by manager/director.
· The candidate will work collaboratively with Ontario Health team throughout the assignment and ensure key deliverables, milestones, and documentation are shared.
· A walkthrough of any demos, development, etc. will be required before end of engagement, as required.
Qualifications
Must Haves:
3+ years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects
5+ years’ direct operational level privacy experience with familiarity in Application Programming Interface (API) functionality and management
5+ years' experience drafting and reviewing privacy requirements for legal and data sharing agreements
Public Sector Experience:
Preferred Healthcare
Desired Skills:
Demonstrable knowledge of project management; Knowledge and understanding of Project Management’s Institute’s Project Management Body of Knowledge is an asset
Minimum 5 years’ experience developing privacy policies and procedures, requirements, or controls
Familiarity with the Personal Health Information Protection Act (PHIPA), and its related requirements for Health Information Network Providers (HINP) and Electronic Service Providers (ESP)
Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows
Experience working on and delivering multiple projects
Demonstrated project management software skills and experience e.g. MS Project, MS Teams etc.
University undergraduate or graduate degree in Health, Computer Science, Engineering, Law, Security, or a related discipline from a recognized institution or equivalent experience – desired
Familiarity with Prescribed Entities (PEs) or Prescribed Persons (PP) under the Personal Health Information Protection Act (PHIPA), and their related requirements, is an asset
Familiarity with audit logging and Security Information and Event Management (SIEM) technology is an asset
Familiarity with technical data protection controls and technology such as encryption and tokenization is an asset
Knowledge and understanding of Accessibility for Ontarians with Disability Act (AODA) and related regulations and standards is an asset
Required Experience / Evaluation Criteria:
1. Minimum 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects. : 20 Points
2. Minimum 5 years’ direct operational level privacy experience in a health sector and/or IT environment or both. : 20 Points
3. Minimum 5 years’ experience in developing privacy policies and procedures, requirements, or controls.: 20 Points
4. Minimum 5 years’ experience drafting and reviewing privacy requirements for data sharing agreements.: 15 Points
5. Familiarity with the Personal Health Information Protection Act (PHIPA), and requirements related to Health Information Network Provider (HINP) and Electronic Service Provider (ESP).: 10 Points
6. Familiarity with Application Programming Interface (API) functionality and management.: 7.5 Points
7. Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows: 7.5 Points
Total 100 points
Summary
If interested and qualified for this role, please apply today for immediate consideration!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
Description
Background Information:
The Senior Privacy (PIA) Specialist will act as a dedicated privacy subject matter expert to assist with supporting privacy matters related to a number of key Information Technology projects that include Patients Before Paperwork (PB4P) initiatives, enterprise business intelligence tools, and cloud migration.
Ontario Health is seeking a Privacy resource to ensure that Ontario Health maintains compliance with its legal and contractual privacy obligations and builds privacy into the design of projects that involve personal health information (PHI), thus reducing risk for the organization and protecting the trust and privacy of individuals whose PHI we manage.
Responsibilities:
Conducting/Completing Privacy Impact Assessments and associated documentation
Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives
Identify and assess privacy risks, including developing risk mitigation plans
Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements
...
Reviewing and advising on agreements, including data sharing agreements
Developing privacy requirements for new or changing projects
Providing privacy advisory and support to business teams
Other duties as required
Location: Remote
Deliverables
• Over the duration of the engagement, the Senior Privacy (PIA) Specialist will support work already in progress, as well as new work on Privacy Impact Assessments;
• Work with the project and product teams on risk mitigation of PIA findings as required under PHIPA;
• Support work related to update and/or developing new agreements;
• Other duties as required. Note that knowledge of current privacy and data protection policy and legislation, especially Ontario’s Personal Health Information Protection Act (PHIPA), will be critical to ensure success.
Additional Terms
Ontario Health assets including laptops and related equipment cannot be removed from the province of Ontario without prior written approval from Ontario Health.
Assignment Type: This position is currently listed as "Hybrid". The resource under this request will be required to work onsite as per Hiring Manager sole discretion.
Knowledge Transfer Details:
· The Candidate will ensure full knowledge transfer is provided to the Ontario Health team before end of engagement. Some of this might occur at the end of the engagement but will also be shared as information is obtained/consolidated. Key deliverables will be shared with team, using an approved format.
· The Candidate must provide all related documentation as part of Knowledge transfer protocol. Documents will be reviewed by the appropriate leads and signed off by manager/director.
· The candidate will work collaboratively with Ontario Health team throughout the assignment and ensure key deliverables, milestones, and documentation are shared.
· A walkthrough of any demos, development, etc. will be required before end of engagement, as required.
Advantages
Good compensation working on projects that will make a difference to the people of Ontario.
Responsibilities
Description
Background Information:
The Senior Privacy (PIA) Specialist will act as a dedicated privacy subject matter expert to assist with supporting privacy matters related to a number of key Information Technology projects that include Patients Before Paperwork (PB4P) initiatives, enterprise business intelligence tools, and cloud migration.
Ontario Health is seeking a Privacy resource to ensure that Ontario Health maintains compliance with its legal and contractual privacy obligations and builds privacy into the design of projects that involve personal health information (PHI), thus reducing risk for the organization and protecting the trust and privacy of individuals whose PHI we manage.
Responsibilities:
Conducting/Completing Privacy Impact Assessments and associated documentation
Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives
Identify and assess privacy risks, including developing risk mitigation plans
Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements
Reviewing and advising on agreements, including data sharing agreements
Developing privacy requirements for new or changing projects
Providing privacy advisory and support to business teams
Other duties as required
Location: Remote
Deliverables
• Over the duration of the engagement, the Senior Privacy (PIA) Specialist will support work already in progress, as well as new work on Privacy Impact Assessments;
• Work with the project and product teams on risk mitigation of PIA findings as required under PHIPA;
• Support work related to update and/or developing new agreements;
• Other duties as required. Note that knowledge of current privacy and data protection policy and legislation, especially Ontario’s Personal Health Information Protection Act (PHIPA), will be critical to ensure success.
Additional Terms
Ontario Health assets including laptops and related equipment cannot be removed from the province of Ontario without prior written approval from Ontario Health.
Assignment Type: This position is currently listed as "Hybrid". The resource under this request will be required to work onsite as per Hiring Manager sole discretion.
Knowledge Transfer Details:
· The Candidate will ensure full knowledge transfer is provided to the Ontario Health team before end of engagement. Some of this might occur at the end of the engagement but will also be shared as information is obtained/consolidated. Key deliverables will be shared with team, using an approved format.
· The Candidate must provide all related documentation as part of Knowledge transfer protocol. Documents will be reviewed by the appropriate leads and signed off by manager/director.
· The candidate will work collaboratively with Ontario Health team throughout the assignment and ensure key deliverables, milestones, and documentation are shared.
· A walkthrough of any demos, development, etc. will be required before end of engagement, as required.
Qualifications
Must Haves:
3+ years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects
5+ years’ direct operational level privacy experience with familiarity in Application Programming Interface (API) functionality and management
5+ years' experience drafting and reviewing privacy requirements for legal and data sharing agreements
Public Sector Experience:
Preferred Healthcare
Desired Skills:
Demonstrable knowledge of project management; Knowledge and understanding of Project Management’s Institute’s Project Management Body of Knowledge is an asset
Minimum 5 years’ experience developing privacy policies and procedures, requirements, or controls
Familiarity with the Personal Health Information Protection Act (PHIPA), and its related requirements for Health Information Network Providers (HINP) and Electronic Service Providers (ESP)
Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows
Experience working on and delivering multiple projects
Demonstrated project management software skills and experience e.g. MS Project, MS Teams etc.
University undergraduate or graduate degree in Health, Computer Science, Engineering, Law, Security, or a related discipline from a recognized institution or equivalent experience – desired
Familiarity with Prescribed Entities (PEs) or Prescribed Persons (PP) under the Personal Health Information Protection Act (PHIPA), and their related requirements, is an asset
Familiarity with audit logging and Security Information and Event Management (SIEM) technology is an asset
Familiarity with technical data protection controls and technology such as encryption and tokenization is an asset
Knowledge and understanding of Accessibility for Ontarians with Disability Act (AODA) and related regulations and standards is an asset
Required Experience / Evaluation Criteria:
1. Minimum 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects. : 20 Points
2. Minimum 5 years’ direct operational level privacy experience in a health sector and/or IT environment or both. : 20 Points
3. Minimum 5 years’ experience in developing privacy policies and procedures, requirements, or controls.: 20 Points
4. Minimum 5 years’ experience drafting and reviewing privacy requirements for data sharing agreements.: 15 Points
5. Familiarity with the Personal Health Information Protection Act (PHIPA), and requirements related to Health Information Network Provider (HINP) and Electronic Service Provider (ESP).: 10 Points
6. Familiarity with Application Programming Interface (API) functionality and management.: 7.5 Points
7. Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows: 7.5 Points
Total 100 points
Summary
If interested and qualified for this role, please apply today for immediate consideration!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more