Risk Management, Privacy and Policy Manager

Job Description

Join our mission-driven team as the Risk Management, Privacy, and Policy Manager , collaborating closely with our General Counsel & Chief Legal, Risk, and Privacy Officer and team to safeguard patient data, mitigate risks, and shape vital policies in a fast-paced hospital environment.

Play a key role in ensuring compliance, protecting privacy, and driving healthcare excellence through innovative strategies that impact both patients and staff.

Key Responsibilities

Develops and manages Halton Healthcare’s enterprise risk management (ERM) program by working closely with Halton Healthcare’s senior leaders, director, managers, staff and the Healthcare Insurance Reciprocal of Canada (HIROC).

The ERM program will include :

• a central risk register a repository for organizational risks;
• a process for risk identification, trending, and mitigation;
• an Executive Leadership Team (ELT) oversight and ownership process;
• a reporting process for ELT, applicable Board committees, and the Board of Directors; and
• a process in place for annual review and refreshment of the program.
• Manages privacy and freedom of information activities for Halton Healthcare, including the maintenance of and adherence to Halton Healthcare policies and practices addressing the privacy, confidentiality, and security of personal information and personal health information in compliance with applicable legislation including the Personal Health Information Protection Act (PHIPA) and the Freedom of Information and Protection of Privacy Act (FIPPA).
• Provides advice and guidance to ensure the organization develops and maintains a comprehensive privacy of personal health information program through the Halton Healthcare Privacy Office, including :
• privacy training for all staff and physicians;
• regular privacy audits completed and appropriately investigated;
• appropriate handling of FIPPA requests according to required legislative processes;
• investigation and management of privacy complaints and breaches, working in collaboration with programs and Human Resources;
• reporting privacy breaches to the IPC when required by legislation;
• consultation and advice to staff and physicians on privacy-related matters; including conducting or managing privacy impact assessments;
• provides advice in development and implementation of new components to privacy program in response to critical issues.
• Remains knowledgeable with current and emerging issues and trends in legislation and practices relating to privacy of personal information, personal health information and shared electronic patient records systems.
• Develops and manages a corporate policy program and provides support to Halton Healthcare leadership in development, maintenance, and approval of corporate policies.
• Provides policy consultation and advice to staff, physicians and leadership throughout the organization through the development and implementation of the Corporate Policy program including :
• coordinating the development, maintenance and review of corporate policies to mitigate, manage and reduce risk while protecting the well-being of patients, staff and affiliates;
• supporting Halton Healthcare leaders in developing and reviewing the policies of which they are the owners; and
• monitoring sectoral developments, legal issues, trends and policies;
• providing input and insights into appropriate organizational policy directions; and
• ensuring compliance with legislative requirements and Ministry directives for Halton Healthcare while promoting our culture of quality and safety.

Qualifications

• Minimum of five (5) years of knowledge and understanding of risk management principles and processes. Advanced consultation, investigation, and assessment skills are required.
• Undergraduate Degree in Business, Health Sciences or Public Administration, Risk Management, or equivalent experience. Law Degree an asset.
• Knowledge of privacy in a healthcare environment including OHA Risk Management Certificate or a Certificate of Fellowship in Risk Management (CRM, FRM) preferred.
• Knowledge of freedom of information in the broader public sector.
• Understanding relevant legislative requirements, e.g., PHIPA, FIPPA,
• Ability to apply legislation to situations that arise.
• Advanced investigation, coaching, negotiation, and advising skills.
• Awareness and understanding of external health care environment and governmental priorities and processes.
• Experience managing and leading projects with various stakeholders.
• Ability to build strong and influential internal relationships and networks with senior leaders, professional staff and employees.
• Ability to work with varied external partners such as legal counsel, insurers, the Information Privacy Commissioner.
• Excellent writing and editing skills, with attention to detail.
• Excellent interpersonal, listening, speaking, presenting, facilitation skills.

Additional Information

Date Posted : October 28, 2024

Internal Applicants due by : November 4, 2024

Halton Healthcare is an equal opportunity employer who is committed to integrating diversity, equity and inclusion throughout our operations, policies and culture.

If you are passionate about what you do, motivated by a job well done, and as committed to excellence, quality and patient satisfaction as we are, we'd like to hear from you.

Please attach your current resume directly to this posting.

We thank all those who apply but only those individuals selected for further consideration will be contacted.

Halton Healthcare is committed to providing accommodations for applicants with disabilities. In accordance with the Accessibility for Ontarians with Disabilities Act and the Ontario Human Rights Code, Halton Healthcare will provide accommodations throughout the recruitment and selection process.

If you require an accommodation, we will work with you to meet your accommodation needs to ensure your equal participation.

All new hires must be fully compliant with our Vaccination Policy as a condition of employment with Halton Healthcare. Successful applicants will be required to provide proof of vaccination or proof of a documented medical exemption as part of the hiring process.

All personal information is collected under the authority of the Freedom of Information and Protection of Privacy Act.