Job Summary
This position is responsible for privacy policy development and maintenance; auditing; monitoring compliance with University policy and applicable federal and state laws and regulations; and coordinating investigation and reporting of privacy and data security incidents for the Utah Resource for Genetic and Epidemiologic Research RGE . The position will assist in the design of privacy policy education training and awareness activities for research.
Responsibilities
Policies and Procedures 25 Assist in the development and maintenance of policies and procedures related to privacy in research. Analyze and evaluate emerging privacy trends and implementation of policy and regulatory requirements. Assist the research community in understanding and implementing privacy policies and procedures. Serves as a resource on privacy issues for the Office of Research Integrity and Compliance staff and committees. Collaborate with other compliance and quality assurance groups across the institution for awareness and review of privacy policies and procedures. Consult with internal and external stakeholders on privacy policies and issues Training 25 Responsible for training faculty staff and students in best practices for research privacy. Lead a Research Education (REd) privacy course at least once per semester. Implements other training activities and promotes awareness of information privacy. Compliance and Auditing 50 Review research applications for compliance with privacy policies and procedures. Review internal and external data agreements to ensure consistency with approved applications. Conduct audits of projects to evaluate compliance with privacy policies and procedures. Work with study teams and data security staff to investigate and complete reports involving data privacy and security incidents. Review reports to determine noncompliance with relevant privacy policies and procedures. Assist with documenting certification of data disposition and compliance at the termination of data agreements and/or research projects.
Minimum Qualifications
Bachelors degree in Business Public Administration Healthcare Administration Information Systems Management or a related field or equivalency (one year of education can be substituted for two years of related work experience) is required; and five years of progressive experience in computing privacy and information security including experience with internet technology and privacy and security issues.
Required Experience:
IC