Healthcare Privacy Analyst

As a leading financial services and healthcare technology company based on revenue SS&C is headquartered in Windsor Connecticut and has 27000 employees in 35 countries. Some 20000 financial services and healthcare organizations from the worlds largest companies to small and mid-market firms rely on SS&C for expertise scale and technology.

Job Description

Job Title: Healthcare Privacy Analyst

Locations: Kansas City MO Hybrid 6x a month (Hiring locally only)

Get To Know Us:

We are seeking a Healthcare Privacy Analyst to strengthen SS&C Healths privacy program and support our HITRUST certification objectives. This role should have a deep understanding of the HITRUST CSF framework as well as other relevant privacy frameworks such as HIPAA NIST ISO 27001 and GDPR. You will provide expert guidance and oversight on privacy policies procedures and controls while advising on data governance principles privacy impact and risk assessments. The successful candidate will work under the direction of the SS&C Health Privacy and Security Officer focusing on protecting patient health information (PHI) across our claims processing software and services while ensuring compliance with healthcare privacy regulations.

Why You Will Love It Here!

• Flexibility: Hybrid Work Model and Business Casual Dress Code including jeans
• Your Future: 401k Matching Program Professional Development Reimbursement
• Work/Life Balance: Flexible Personal/Vacation Time Off Sick Leave Paid Holidays
• Your Wellbeing: Medical Dental Vision Employee Assistance Program Parental Leave
• Wide Ranging Perspectives: Committed to Celebrating the Variety of Backgrounds Talents and Experiences of Our Employees
• Training: Hands-On Team-Customized including SS&C University
• Extra Perks: Discounts on fitness clubs travel and more!

What You Will Get To Do:

Privacy Program Management

• Support the implementation and maintenance of comprehensive privacy policies and procedures under Privacy and Security Officer oversight

• Advise on HITRUST certification by ensuring privacy control requirements are met and documented
• Conduct privacy impact assessments (PIAs) for new systems processes and data flows
• Provide guidance on privacy incident response and breach notification processes
• Support preparation for future HITRUST AI certification with focus on AI privacy controls

HIPAA Compliance & Risk Assessment

• Ensure organizational compliance with HIPAA Privacy Rule and state privacy laws
• Conduct regular privacy risk assessments and gap analyses
• Review and advise on Business Associate Agreements (BAAs) and data use agreements
• Identify opportunities to strengthen the privacy program

Data Governance & Protection

• Development of data mapping and data flow diagrams.
• Advise on data handling procedures for healthcare information
• Provide guidance on data access and minimum necessary requirements for claims processing systems
• Review PHI access controls user provisioning and role-based permissions
• Collaborate with IT security on encryption anonymization and de-identification processes
• Review vendor privacy practices and third-party data sharing arrangements

Regulatory Affairs & Documentation

• Stay current with evolving healthcare privacy regulations and industry best practices
• Maintain detailed documentation of privacy controls and compliance activities
• Coordinate with legal counsel on privacy matters and regulatory inquiries
• Support internal and external audit activities related to privacy compliance

What You Will Bring:

• Bachelors degree in Healthcare Administration Information Systems or related field
• Minimum 3-5 years of experience in healthcare privacy and compliance
• Previous involvement with SOC2 Type 2 HIPAA audits or privacy compliance assessments
• Knowledge of pharmacy benefit management and prescription processing
• Previous experience with HITRUST ISO 27001 or similar compliance frameworks
• Understanding of artificial intelligence and machine learning privacy implications

• Comprehensive understanding of HIPAA Privacy and Security Rules
• Knowledge of state privacy laws and healthcare regulations
• Understanding of healthcare business processes and incident response processes

Certifications (Preferred)

• Certified Information Privacy Professional/US (CIPP/US)
• Certified Healthcare Privacy and Security (CHPS)
• Fellow of Information Privacy (FIP)

Thank you for your interest in SS&C! If applicable to further explore this opportunity please apply directly with us through our Careers page on our corporate website: explicitly requested or approached by SS&C Technologies Inc. or any of its affiliated companies the company will not accept unsolicited resumes from headhunters recruitment agencies or fee-based recruitment services.