Privacy Compliance Analyst

What You’Ll Do

In a few words… Abarca is igniting a revolution in healthcare.  We built our company on the belief that with smarter technology we are redefining pharmacy benefits, but this is just the beginning…

The Privacy Analyst is responsible for supporting Abarca Health’s privacy program, with a focus on safeguarding Protected Health Information (PHI) across our systems and operational workflows. This role includes conducting privacy investigations, supporting HIPAA compliance efforts, collaborating with Information Security, and leading privacy education and awareness initiatives. The analyst will work across teams to ensure compliance with regulatory and contractual privacy requirements, including Business Associate Agreements (BAAs). This role ensures that our privacy practices meet industry standards and evolving healthcare regulations.

The fundamentals for the job…

• Conduct investigations of potential privacy incidents, document findings, and lead the development and execution of corrective action plans.
• Collaborate closely with the Information Security team to evaluate and manage privacy-related aspects of security incidents.
• Support ongoing HIPAA compliance efforts, including risk assessments, audits, and implementation of mitigation strategies.
• Review, update, and help enforce HIPAA privacy policies and procedures (P&Ps).
• Develop and deliver HIPAA training programs and educational materials, including staff bulletins and awareness campaigns.
• Monitor and oversee compliance with Business Associate Agreements (BAAs), ensuring contractual obligations are met and documented.
• Ensure timely and accurate client notifications in accordance with contractual obligations defined in BAAs.

What we expect of you 

The Bold Requirements…

• Conduct investigations of potential privacy incidents, document findings, and lead the development and execution of corrective action plans.
• Collaborate closely with the Information Security team to evaluate and manage privacy-related aspects of security incidents.
• Support ongoing HIPAA compliance efforts, including risk assessments, audits, and implementation of mitigation strategies.
• Review, update, and help enforce HIPAA privacy policies and procedures (P&Ps).
• Develop and deliver HIPAA training programs and educational materials, including staff bulletins and awareness campaigns.
• Monitor and oversee compliance with Business Associate Agreements (BAAs), ensuring contractual obligations are met and documented.
• Ensure timely and accurate client notifications in accordance with contractual obligations defined in BAAs.
• Excellent oral and written communication skills.
• We are proud to offer a flexible hybrid work model which will require certain on-site work-days (Puerto Rico Location Only)
• This position requires availability to work in a specified time zone or working schedule, accommodating the business needs of our clients and team members.\
• This position may require availability for on-call hours, including evenings, weekends, and holidays, to promptly address emergent issues or provide necessary support as dictated by operational demands (if applicable).

Nice To Haves…

• Certified in Healthcare Compliance (CHC) Healthcare Privacy Compliance (CHPC), Certified Information Privacy Professional (CIPP/US), or Certified Information Privacy Technologist (CIPT).
• Knowledge of privacy frameworks such as NIST Privacy Framework or ISO 27701.
• Experience working in a Pharmacy Benefit Management (PBM) environment or with claims processing platforms.

Physical Requirements…

• Must be able to access and navigate each department at the organization’s facilities.
• Sedentary work that primarily involves sitting/standing.

At Abarca we value and celebrate diversity. Diversity, equity, inclusion, and belonging are guiding principles of Abarca and ensure Abarca’s workforce reflects the communities it serves.  We are proud to provide equal employment opportunities to all employees and applicants for employment and prohibit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, medical condition, genetic information, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

 Abarca Health LLC is an equal employment opportunity employer and participates in E-Verify.  “Applicant must be a United States’ citizen or Permanent Resident. Abarca Health LLC does not sponsor employment visas at this time”

 The above description is not intended to limit the scope of the job or to exclude other duties not mentioned. It is not a final set of specifications for the position. It’s simply meant to give readers an idea of what the role entails.

#Li-Hybrid #Li-Jd1