Developing and implementing an effective legal compliance program.Proactively auditing processes, practices and documents.

DUTIES & RESPONSIBILITIES:

• Responsible for the effective deployment of the organizational HIPAA policy
• Responsible for developing, implementing and maintaining the HIPAA Compliance Program within the account
• Responsible in ensuring that privacy policies and procedures are communicated and understood by the team
• Responsible for effective incident management practices within the scope of HIPAA
• Responsible for identifying the risks associated with the identified assets and development of appropriate controls for its mitigation
• Assesses the adequacy and coordinates the implementation of specific information security within the area of responsibility
• Ensures protection of individual assets and ensure understanding of the team on the security processes and control
• Conducts periodic checks and reconciliation of people assets (User IDs, Voice IDs, Headcount and Access withdrawal) and check if these assets are properly accounted for
• Conducts periodic spot checks on implementation of Information Security and Floor Management (ISFM)
• Conducts regular updates on the organizational policies and procedures
• Report security incidents as quickly as possible
• Monitors significant changes in the exposure of information assets to major threats
• Encourage the members of his team to report any observed or suspected security weaknesses in, or threats to systems or services

General Safety and Security

• Protects the organization?s assets by upholding the principles of the Quality Information Security Management System (QISMS)
• Ensures confidentiality, integrity, and availability of information critical to fulfilling the organization?s business functions
• Remain compliant with the relevant business, local and international regulatory and legislative requirements particularly the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health Act (HITECH) as appropriate

COMPETENCY REQUIREMENTS:

With Basic Competency Level in ff.:

1.             Product Knowledge

With Moderate Competency Level in ff.:

1.             Process Improvement

2.             Conflict Management

3.             Discipline Management

With Expert Competency Level in ff.:

1.             Customer Service Orientation

2.             Communication Skills (Spoken)

3.             Communication Skills (Written)

4.             Computer Literacy

5.             Sense of Urgency

6.             Job Knowledge

7.             Passion for Excellence

8.             Working in Teams / Interpersonal Skills

9.             Work Organization

10.          Analytical Skills

11.          Reasoning Skills

12.          Problem Solving  

OTHER REQUIREMENTS:

Reports to: 

Compliance Manager, Senior Director or Program Head

Education and/or Experience:

Completed a 3 or 4-year university degree, preferably Mass Communication, Psychology, Education, or Management. Alternatively completed a 2-year university or a technical degree with 3+ years of Inbound Customer Service Call Experience

3 years call center experience

Certificates, Licenses, Registrations:

None

Work environment:

The work environment is professional office workplace. Business casual attire.

Physical demands:

Requires evening or graveyard work

May require overtime, weekend, or holiday work depending on business needs.

Work demands:   

• Reports to office but may require work at home set-up

• The work environment consists of designated work area at home
• Home internet service provider with minimum of 10-15 mbps upload/download speed
• Smart mobile phone compatible with UEM Client usage

• Able to establish, implement and continuously improve the quality information security policies assigned to him/her
• Able to establish structure and procedures to protect classified information
• Able to report information security related incidents without any delay to the right authority. Example: All information-related incidents, losses, weaknesses and software/hardware malfunctions, breaches of confidentiality
• Actively participates during training, orientation and awareness programs pertaining to QISMS