UIC Privacy Analyst – Technology Solutions (1029315)
About the University of Illinois Chicago
UIC is among the nation’s preeminent urban public research universities, a Carnegie RU/VH research institution, and the largest university in Chicago. UIC serves over 34,000 students, comprising one of the most diverse student bodies in the nation and is designated as a Minority Serving Institution (MSI), an Asian American and Native American Pacific Islander Serving Institution (AANAPSI) and a Hispanic Serving Institution (HSI). Through its 16 colleges, UIC produces nationally and internationally recognized multidisciplinary academic programs in concert with civic, corporate and community partners worldwide, including a full complement of health sciences colleges. By emphasizing cutting-edge and transformational research along with a commitment to the success of all students, UIC embodies the dynamic, vibrant and engaged urban university. Recent “Best Colleges” rankings published by U.S. News & World Report, found UIC climbed up in its rankings among top public schools in the nation and among all national universities. UIC has over 300,000 alumni, and is one of the largest employers in the city of Chicago.
Benefits eligible positions include a comprehensive benefits package which offers: Health, Dental, Vision, Life, Disability & AD&D insurance; a defined benefit pension plan; paid leaves such as Vacation, Holiday and Sick; tuition waivers for employees and dependents. Click for a complete list of Employee Benefits.
Job Description Heading link
- Performs privacy risk assessments, privacy impact assessments, and other required assessments to comply with GDPR, FERPA, HIPAA, PIPL, and others
- Partners with the Information Security team to investigate and report inappropriate access and disclosure of personal information
- Conducts timely investigations of reported potential privacy and compliance incidents. These incidents may be reported through the Data Loss Prevention tool or other means.
- Develops a proposed plan for each assigned investigation, monitoring activity (includes rounds as necessary) and audit which is reviewed with leadership. The plan may include data gathering, running reports, using monitoring software and/or conflict of interest disclosure software, sanctions checking, analyses, interviews, risk assessments, phone calls, meetings with involved parties and assessments of the incident or situation.
- Works with Privacy Director to formulate recommendations for corrective action.
- Writes reports summarizing the results of the plan, identified risk and recommended corrective action.
- Communicates necessary corrective action and follows up to ensure the corrective action has been implemented.
- Effectively communicates with units by computer messaging, phone, and in writing
- Manages, under the direction of the Privacy Director, the breach letter notification process including drafting the breach letter notification letters and attestations in conjunction with HIPAA and FERPA officials and unit representatives.
- Develops monthly privacy and security reminders for the workforce including independent members of the medical staff.
- Monitors case load with Privacy and Compliance leadership. Timely notifies immediate Privacy Director of obstacles to completing work and issues identified during investigations and audits.
- Maintains current knowledge of applicable federal and state privacy laws and accreditation standards, and monitors advancements in information privacy technologies to ensure organizational adoption.
- Provides support to the Director and units in meeting federal and state reporting requirements, including the Office for Civil Rights, regarding breach notification and follow-up investigations.
- Perform other related duties and direct special projects as assigned.