RQ09375 - Privacy Impact Assessment (PIA) Specialist -

MUST HAVES:

10+ years of experience in the following:

• Understanding of policy development to lead or participate in the development of options and strategies on information management and privacy protection
• Managing privacy risks in the collection, use and disclosure of Personal Health Information (PHI)
• Demonstrated experience and competency to identify and evaluate emerging privacy issues, changes, and trends in current and future that impact government policy directions
• Demonstrated experience and competency to prepare comprehensive reports, options analyses, briefing materials and presentations and propose responses on privacy issues

Experience and Skill Set Requirements

Technical Skills - 50%

10+ years of experience in the following:

Privacy impact assessment methodologies, tools and techniques

Application of threat and risk analysis principles, program analysis, business analysis

Understanding of policy development to lead or participate in the development of options and strategies on information management and privacy protection

Practical knowledge of information technology concepts and processes that impact the protection of personal information (i.e. information management, knowledge management, intellectual property/copyright, information technology and electronic service delivery channels)

Practical knowledge of broad political, legal, fiscal, social and governance dimensions to ensure that privacy principles, directives, notices and directions are considered in the development of new programs/initiatives

Managing privacy risks in the collection, use and disclosure of Personal Health Information (PHI)

Leading end-to-end operational risk assessments, selecting risk methodologies, identifying privacy compliance gaps, priorities, dependencies and redundancies, and recommending process remediation or simplification

Implementing information privacy best practices.

Core Skills and Experience

10+ years of experience in the following: 35%

Demonstrated experience and competency to resolve complex issues, identify options and make recommendations

Demonstrated experience and competency to analyze policy proposals to assess / identify I&IT business implications and develop strategic policy planning options and impact analyses for clients

Demonstrated experience and competency to acquire and apply relevant legislation, regulations and directives to ensure proposed initiatives conform to legislation

Demonstrated experience and competency to identify and evaluate emerging privacy issues, changes, and trends in current and future that impact government policy directions

Experience in program analysis/evaluation techniques to assess the impact of proposed, or new/changed policies/fiscal or governance arrangements for new programs

Demonstrated experience and competency to prepare comprehensive reports, options analyses, briefing materials and presentations and propose responses on privacy issues

Experience in consultation and negotiation to gain support for policy and program initiatives

Demonstrated experience and competency to develop effective relationships with senior management and stakeholders

Strong oral and written communications and principles and methods, to draft papers, reports, options analyses, correspondence, briefing notes, speeches, and materials.

General Skills 10%

Demonstrated strong leadership and people management skills

Exceptional analytical, trouble-shooting, problem solving and decision-making skills

Demonstrated strong interpersonal, verbal and written communication, and presentation skills

Proven troubleshooting and critical thinking experience

Demonstrated ability to apply strong listening skills to facilitate issue resolution

Effective consulting skills to engage with all stakeholders with proven track record for building strong working relationships

Strong interpersonal, facilitation and negotiation skills with ability to build rapport with stakeholders and drive negotiations to a successful outcome

Excellent customer service skills, including tact and diplomacy to ensure client needs are managed effectively

A motivated, flexible, detail-oriented and creative team player with perseverance, excellent organization and multi-tasking abilities, and a proven track record for meeting strict deadlines

Public sector Experience - 5%

5+ years of experience working with federal/provincial/broader public-sector healthcare providers

Previous Public Sector experience and familiarity with the privacy and de-identification guidelines set by IPC, Government of Ontario IT Standard (GO-ITS), Public Sector Corporate Policy on Protection of Personal Information, and Public Sector Corporate Policy on Record Keeping

Knowledge of Public Sector Enterprise Architecture artifacts (or similar), processes and practices, and ability to produce technical documentation that comply with industry standard practices

In-depth knowledge of industry standard such as Project Management Institute (PMI)

Knowledge of Public Sector I&IT project management methodologies

Knowledge and experience with Public Sector or Broader Public-Sector health related projects

Knowledge and understanding of Ministry policy and IT project approval processes and requirements

Experience adopting and adhering to Public Sector Unified I&IT Project Methodology, Public Sector Enterprise Architecture and Public Sector Gating process, and Public Sector Standard Systems Development Methodologies

Experience with large complex IT Health-related projects

Experience with GO-ITS Digital Health standards, and internal branch standards would be an asset.

FSIN