Team Leader - Access to Information & Privacy

KEY FUNCTION: 

Provide general direction/mentorship to the Privacy and Access to Information Analysts to ensure compliance with legislation and adherence to industry standards by supporting the Privacy and Information Security practices of HSN as both a Health Information Custodian (HIC) and Health Information Network Provider (HINP).                  

REPORTING:   

Under the general direction of the Manager, Access to Information and Privacy.

DUTIES:

1. Provide subject matter expertise, coordination, leadership support, and quality oversight to the Privacy and Access to Information department; ensure the consistent application of privacy and access processes, accuracy of analytical outputs and documentation, and compliance with applicable policies, procedures, and legislation.
2. Serve as the primary escalation resource for analysts on complex files, technical issues, and interpretation of privacy and access to information legislation.
3. Provide oversight of consultation, guidance, and recommendations related to existing and emerging federal and provincial legislative requirements.
4. Coordinate departmental workflows, including workload distribution and monitoring of task progress to ensure service standards, timelines, and quality objectives are met.
5. Oversee the standardized approach to privacy risk management, including the identification, analysis, documentation, mitigation, and monitoring of privacy and information security risks across HSN and regional partners; manage the privacy risk register and escalate systemic issues to the Manager with recommendations to reduce future risk.
6. Accountable for the organizational response to privacy complaints, investigations, reported privacy and information security breaches, and related corrective action recommendations within HSN and regionally shared information systems.
7. Lead the development, implementation, and maintenance of privacy related policies, materials, work standards, and training programs; promote privacy and information security awareness through training, communications, and educational resources within HSN and associated entities.
8. Develop, lead, and report on Privacy Impact Assessments (PIAs), organizational privacy attestations, and privacy audits and reviews.
9. Assess and evaluate technology-based solutions and information systems to support organizational privacy and access requirements, including Marketed Services and regional or provincial systems.
10. Participate in staff recruitment activities and lead new hire orientation and onboarding training related to privacy and access responsibilities as required.
11. Maintain a working knowledge of Health Information Systems (HIS), supporting networks, and their relationships to internal and external information systems.
12. Oversee the work of others in compliance with the Occupational Health and Safety Act (OHSA), its regulations, and HSN policies.
13. Determine and align improvement projects with HSN’s Strategic Plan; monitor and adjust to achieve goal outcomes.
14. Contribute to learner development by providing academic support, mentorship, preceptorship and supervision as required.
15. Participate in education and training specific to current, relevant federal and provincial health and safety legislation, standards and guidelines.
16. Educate and promote health, safety and wellness in the work place.
17. Represent the department or program on various committees and in meetings as required. 
18. Perform other duties as required. 

QUALIFICATIONS

EDUCATION AND TRAINING: 

1. Minimum of a four (4) year Bachelor’s Degree in Law, Business, Technology, or in a related field, from an accredited university.
2. Certification as a Certified Information Privacy Professional (CIPP) or a related privacy/information security designation is preferred.
3. Ministry of Labour “Worker Health and Safety Awareness in 4 Steps” training certificate is required.

EXPERIENCE: 

1. Minimum of three (3) years’ experience working in a Privacy, Compliance, Risk Management or Information Security department within a health care environment.
   
   

KNOWLEDGE/SKILLS/ABILITIES: 

1. Demonstrated knowledge of Ontario and Canadian privacy laws, including Personal Health Information Protection Act (PHIPA), Freedom of Information and Protection of Privacy Act (FIPPA), and Personal Information Protection and Electronic Documents Act (PIPEDA).
2. Demonstrated ability to interpret and apply legislation, policy, and precedent.
3. Demonstrated knowledge of privacy and information security standards, including Generally Accepted Privacy Principles (GAPP), National Institute of Standards and Technology (NIST), and International Organization for Standardization (ISO).
4. Demonstrated ability to analyze and interpret privacy and information security data.
5. Demonstrated ability to manage conflict and facilitate problem-solving in difficult situations.
6. Demonstrated excellent judgment and proven analytical skills.
7. Demonstrated training, experience or utilization of lean methodology for process improvement.
8. Demonstrated ability to independently identify issues, plan improvements, measure success and continue improvement.
9. Demonstrated excellent computer skills with proficiency in Microsoft Office software (e.g. Word, Excel, Power Point and Outlook) and patient information systems.
10. Demonstrated superior interpersonal and communication skills, both written and verbal.
11. Demonstrated ability to manage routine correspondence, multiple tasks/projects, diversified workload and rapidly changing priorities and challenging deadlines.
12. Demonstrated discretion and maturity when handling confidential information.
13. Demonstrated commitment to the safety of co-workers and patients.
    
    

PERSONAL SUITABILITY: 

1. Successful Criminal Records and Judicial Matters Check (CRJMC) is required.
2. Proven ability to work independently and in a team environment.
3. Demonstrated ability to perform with minimal supervision; to prioritize duties.
4. Demonstrated commitment to ongoing professional development.
5. Demonstrated professionalism in dealing with confidential and sensitive issues.
6. Demonstrated positive work record and excellent attendance record.
7. Ability to meet the physical and sensory demands of the job.
8. Ability to travel between local sites.

Processus de sélection :  Les candidates et les candidats à ce poste seront sélectionnés en fonction de leurs aptitudes, de leurs capacités, de leur expérience et de leurs compétences indiquées dans le curriculum vitæ ou le formulaire de demande dûment rempli. L’hôpital se réserve le droit de mener une entrevue officielle au besoin. Cette annonce concerne un poste vacant. 
 
Horizon Santé-Nord s’engage à offrir des mesures d’adaptation aux candidates et candidats en situation de handicap afin de favoriser leur participation aux étapes du recrutement, de l’évaluation, de la sélection et de l’embauche.

HSN REMERCIE TOUTES LES PERSONNES POSANT LEUR CANDIDATURE.
CEPENDANT, NOUS COMMUNIQUERONS UNIQUEMENT AVEC CELLES RETENUES POUR UNE ENTREVUE.

NOUS N’ACCEPTERONS PAS DE DEMANDES APRÈS LA DATE ET L’HEURE DE CLÔTURE.