This is an interesting little video that reminds you just how easily HIPAA can be violated in the average clinical setting. Any of these look familiar?

According to a new survey preventing patient data security breaches is the number one priority for the majority of healthcare IT decision makers but it also shows that some are still struggling to comply with all security regulations.

The 2010 Healthcare IT Survey is a study carried out by Zoomerang,  an online services provider on behalf of Imprivata, a company that develops enterprise authentication and access management solutions and is based in Lexington, Mass. The survey was conducted amongst 600 decision-makers across hospitals in the U.S. and Canada.

80% of respondents said that securing patient information from unauthorized access and data breaches is a top priority in their organization and 76 percent claim breach of confidential HIPAA protected information or unauthorized access to various clinical applications as their greatest security concerns. A full 97% of those surveyed said their organizations planned on spending more on IT security in 2010 than they did in 2009.

And the HITECH act it seems is only complicating things for those in healthcare IT.

Challenges cited by respondents for complying with the HITECH Act included employee education (46 percent), costly updates (43 percent) and meeting deadlines (37 percent). Nineteen percent of respondents said they themselves do not understand the HITECH Act.

Read the full survey report here

Still looking for a new HIPPA related job? Once again we have been hitting the job boards nationwide to bring you ten of the best available this week.

Healthcare HIPPA / EDI Systems Analyst

Company:           Regence

Base Pay:             N/A

Location:              Tacoma, Washington

Employee Type:               Full-Time

Industry:              Managed Care

Are you an innovative and motivated Systems Analyst looking for an opportunity to be part of a forward thinking company working to change the health care system? If you can embrace being part of this change then we want you to take a look at Regence.

We’re looking for a Systems Analyst who is able to work in a team environment for the development, maintenance and delivery of applications systems. You’ll have the opportunity to use your business, design, analytical and interpersonal skills in your daily work to develop solutions.

Read more about this position here

Compliance & Privacy Manager

Company:           University of Louisville Hospital

Job Type:             Management

QA – Quality Control

Location:              US-KY-Louisville

Employee Type:               Full-Time

The Compliance/Privacy Manager oversees the development and implementation of and adherence to corporate-wide privacy principles, policies and practices. The Compliance/Privacy Manager is responsible for coordinating all corporate activities with privacy implications, as well as monitoring all of the organization’s services and systems to assure meaningful privacy practices. The Compliance/Privacy Manager also advocates and protects patient privacy by serving as a key privacy advisor for patients, handling disputes or complaints relating to privacy issues.

Read more about this opportunity here

Clinical Documentation Specialist

Location:              San Antonio Community Hospital

999 San Bernardino Road

Upland, CA 91786

Shift/Schedule: FT- 7a-3:30p

Education: Bachelor’s Degree in related field required. License/Certifications: Current CA RN license. CDS certification is encouraged but not required. Experience: Five years of recent experience in a clinical healthcare setting.

Knowledge and Skills: Must possess a high level of clinical knowledge regarding the patient population served in order to participate collaboratively with all members of the care team. Works with minimal supervision. Must be able to communicate verbally and written to individuals of varying educational levels.

Position Summary: Assists with improving the overall quality and completeness of physicians clinical documentation of diagnosis and procedures using terminology integral to HIPAA related transaction sets, primarily in inpatient and observation admissions.

Read more about this position here

South Carolina Sales Consultant

Company: Medsecurepro

Location: Columbia, SC

Rapidly growing company seeks experienced sales representatives for medical sales in South Carolina territories. Sales activity involves sales of web-based HIPAA secure patient management and communication systems, EMR/EHR programs,HR online training programs as well as media campaign programs. Consultants will cover all medical practices in territory including family practice and any medical specialty practice, dental, optometrists, veterinarian, and chiropractic practices.

Read more about this opportunity here

Health Information Exchange Architect

Company: IBM

Location: Topeka, KS

BM is looking for a Health Information Exchange Architect. Incumbent will: 1) Provide architectural and development expertise to cross-disciplinary team of IBM functional and technical Consultants, IT Architects and IT Specialists working with client for its HIPAA ASC X12 5010 initiative. 2) Lead technical team in working with client to identify, architecting, design and develop its HIPAA ASC X12 5010 solution Harvest metrics, lessons learned and otherwise help to refine a repeatable approach that can be applied to other IBM clients. 3) Work with Project Manager to carry out project management tasks. 4) Experience with products and technologies commonly encountered in the Healthcare industry, particularly for Claims, such as EDI, ESB, COBOL, Websphere products, and BI, EAI and ETL tools.

Read more about this HIPAA job here

Healthcare IT Auditors HIPAA, HITRUST, HITECH

Location Dallas, TX

FULLTIME

Pay Rate: 90,000 – 120,000

Our client is consulting firm specializing Healthcare risk advisory services, which encompasses IT Audit for the healthcare industry. They help their Healthcare clients with information security and the increasing risks and liabilities facing the Healthcare Industry. They do HITRUST Common Security Framework (CSF) assessment and gap analyses, and are experts in protecting their clients’ healthcare information while managing risks and compliance with other regulations such as HIPPA, the HITECH act and PCI. We are looking for a few solid Senior Level IT Audit Consultants, and Manager Level Consultants with a strong background in Audit for the Healthcare industry.

Learn more about these positions here

HIPAA System Analyst Leader

City: MENANDS

State: New York

Country: USA

Company Name: CSC

This candidate will work on HIPAA implementation, issues remediation, and will assist in the development of the Privacy and Security Policies and Procedures. Understanding of the HIPAA Privacy Regulation is key for this position. In addition, the candidate will follow various organizational listserv, such as NCPDP, X12N, DISA, NMEH, Wedi-SNIP and others. Some travel will be required to work with the industry groups and standards development organizations in the development of HIPAA Implementation Guides and technical reports, as well as to attend HIPAA Privacy and Security forums.

Read more about this position here

Director of Privacy & Records Mgmt

Healthcare Services – Fortune 500

Houston, TX

We are representing a Healthcare Services provider experiencing one year revenue growth of 10% and cumulative seven year revenue growth of 220%.

Responsibilities of Director of Privacy:

Responsible for administrating, monitoring, and testing Health Insurance Portability Accountability Act (HIPAA), record management, and research compliance programs. Monitors record management policies and procedures to evaluate their effectiveness.  Supports and adheres to the Code of Ethics and Business Standards.

Learn more about this opportunity here

Electronic Health Record Analyst

Location: Cleveland, Ohio, United States

Under the direction of the Supervisor of HIM Services, the EHR Analyst analyzes patient care information in the Electronic Health Record (EHR) and interacts with Providers, Administrators and other CCF personnel regarding EHR corrections and provides reliable tracking mechanics for changes to the EHR. Works with ITD to resolve identified problems and make corrections to the EHR, coordinates resolutions of patient amendment requests under HIPAA, prepares statistical reports for Medical Records Committee and other Administrative Committees. Provides end-user training and develops end -user documentation in the HIM Section. Provides implementation and project management assistance through all phases of the development cycle. Ensures EHR compliance with JCAHO and all levels of regulatory guidelines. Makes recommendations as appropriate in regard to impact on patient care, patient safety, and physician and patient satisfaction.

Learn more about this position here

IT Compliance, Controls Integration Project Manager

Kaiser Permanente Information Technology (KPIT)

Oakland, CA

At the Program Management Consultant Specialist level within Controls Integration you will be responsible for providing advanced compliance program management for IT Compliance. In addition, you will provide analytical, feasibility, business case and executive summary skills needed to form highly reliable risk management strategies to meet various compliance requirements.

Learn more about this job here

A reworking of the Go Go’s classic ’80s anthem with a HIPAA twist…

If a patient were to ask you not to reveal their private information to anyone at all do they have that right under the HIPAA laws?

HIPAA privacy regulations have always given individuals the right to request restrictions on how health care providers use or disclose their information, but until recently, health care providers have always had the discretionary power to say “no” to these requests if they felt it would impair their ability to properly treat their patient or to get paid by the insurance companies.

However the HITECH amendments recently proposed to supplement the HIPAA laws change that, to a certain degree at least.

Now, when a patient is paying for their own treatment out of their own pocket, or another private individual is footing the bill and they request that you share none of their information you must comply with their wishes.

The patient will also have the right to make their request on a visit by visit basis. For instance if you (or the medical practitioner you work for) regularly sees a patient for a certain complaint that is covered by his or her insurance but then opts to pay out pocket for a non-covered treatment they have the right to request that you share none of the details of the treatment they paid for themselves with anyone, including their health insurance company.

More headaches? Maybe. Tracking which patient procedures can be shared and which cannot may prove cumbersome. But the extra effort will be worth it in the long run to ensure your diligent efforts to remain HIPAA complaint are not derailed.

Cheryl James, a nurse in Michigan was fired for violating HIPAA regulations last week –because of remarks she posted on her Facebook page.

Like many Michigan residents she was upset when a local policeman was shot to death pursuing a suspect. She actually treated the killer as a part of her duties as a nurse at Oakwood Hospital in Detroit. Problem was she then posted that fact on her Facebook status – sort of.

Her first message revealed that she came face-to-face with a cop killer and hoped he rotted in hell. She also posted another one that her now former employers won’t discuss. They let her go from her job citing that she had violated HIPPA regulations by disseminating protected health information about a patient on a public forum (ie Facebook)

The nurse plans to fight her termination as she feels she did no such thing. According to her “ I am familiar with HIPPA. I did not give out any of his information. I did not give out his name. I did not mention the hospital. I did not give out his condition,” James said. “I did not violate HIPAA”

Who do you think is in the right here? Click here to watch Ms. James ‘interview with Fox 2 Detroit

We found some great new opportunities for HIPAA professionals this week. Is one of them right for you? Read on to find out.

HIPAA EDI Technical Lead

Company: CNSI

Status: Full Time, Employee

Job Category: IT/Software Development

Gaithersburg, MD

Job Duties/Responsibilities:

1. Be the Technical and Functional Lead for the HIPAA/EDI loading sub system that primarily deals with loading of X12 HIPAA transactions and generation of appropriate X12 responses.

2. Assign and monitor tasks to the team. This includes defect fixes and enhancements.

3. Be the functional point of contact for the client

4. Monitor daily operational cycles

5. Update and get approval on Design Documents

6. Conduct code review of changes

Learn more about this job here

VistA (EDI, HIPAA) Technical Analyst

Company:           Robert Half Technology

Location:              US-CO-AURORA

Base Pay:             $40.00 – $42.00 /Hour

Employee Type: Contractor

Industry: Computer Hardware/Computer Software

Robert Half Technology’s client in Aurora, CO is looking for a VistA (VA-specific EMR tool) analyst for a 6+ month contract. Robert Half Technology’s client in Aurora, CO is looking for a VistA (VA-specific EMR tool) for a 6+ month contract. All positions require direct, hands on experience with analysis of and documentation of technical and functional requirements for enhancement of VA VistA software.

Read more about this job here

Associate Director of Regulatory Compliance

Location: Dayton, OH (map it!Map it! )

Base Pay:$130,000 /Year

Other Pay:25% Bonus + Relocation

Employee Type: Full-Time

Industry: Pharmaceutical

This position is located in Dayton, OH with a leading healthcare firm.  Salary will be 130K with 25% bonus and relocation.  Position reports to the Sr. Dir of Reg. Affairs.

Job Summary: Provide leadership for a comprehensive corporate compliance program to ensure organizational compliance with federal and state regulatory and accreditation requirements to include relationship management and program advocacy with CMS and state regulatory agencies, incorporation of new requirements into plan operations and monitoring plan performance against requirements.  Serve as the XXX HIPAA Privacy Compliance Officer.

Learn more about this job here

Part Time Client Service Rep for Medical Records-ROI

iod incorporated

Location Jacksonville, NC 28541

Employee Type: Part-Time

Industry: Healthcare – Health Services

iod incorporated, a leader in release of information for medical records, is seeking a PART TIME Client Service Rep to process medical records at a hospital facility.

Responsibilities will include but are not limited to answering phones, faxing request, verifying authorizations for HIPAA compliance on release of information requests, scanning medical records and data entry.

Ideal candidates will have previous experience working in a hospital medical record department or medical office. Familiarity with HIPAA guidelines or ability to learn and apply the guidelines is essential. Strong clerical skills in office setting is a must. They will also have excellent communication skills, as well as be organized, professional and service oriented.

Read more about this job here

Medical Records Site Supervisor / Team Lead

Universata, Inc.

Location: Ann Arbor, MI

Employee Type: Full-Time

Industry: Computer Software,Consulting

The Medical Records Site Supervisor will oversee the Release of Information team at local hospitals and clinics as well as the following:

*Supervise site and up to 15 employees with duties such as time management, hiring, training and quality assessment

*Interact with and handle requests submitted by a variety of entities such as individuals, Doctors, Attorneys and insurance companies

*Provide support to all company operations including preparing, scanning and uploading by computer medical requests, authorizations and medical records in accordance with HIPAA

*Provide the hospital and customers with complete professionalism and customer service support daily

Learn more about this position here

Information Security Specialist

St. Mary’s Hospital

Location: Baltimore, MD

Employee Type: Full-Time

Industry: Healthcare – Health Services

St. Mary’s Hospital is working very hard to become the premier healthcare employer in Southern Maryland by creating an environment with only the best in mind. We strive to maintain and develop the best facility, services, and employees. At SMH, our employees are treated as individuals and we maintain an open door policy welcoming.

We are actively looking to hire a qualified Information Security Specialist (ISS) to join our team in Leonardtown, MD.

The Information Security Specialist (ISS) is responsible for determining appropriate security measures and creating and updating policies and procedures that monitor and control access to system resources and data as well as protect the confidentiality, integrity, and availability of critical information and systems. The ISS is responsible for providing significant technical expertise and experience, standards development, program development, risk assessment, reporting, and awareness education related to information security.

Read more about this job here

Compliance Auditor-HIPAA

Company:           Loma Linda University Medical Center, Loma Linda CA

Base Pay:             N/A

Employee Type:               Full-Time

Industry:              Healthcare – Health Services

The Compliance Auditor is primarily responsible for monitoring and auditing established mechanisms and controls to ensure compliance with HIPAA/Compliance requirements. Conducts routine audits that include site audits and walkthroughs; system reviews with the assistance of the Information Systems department, as well as process reviews for the hospital, ancillary services and satellite clinics. Audits against state and federal regulations and guidelines, industry standards, benchmarking data obtained from other academic medical institutions, and internal policies and procedures.

Learn more about this job here

Senior Systems Analyst – HIPAA Transactions

Lewis and Fowler

Location: Denver, CO

Lewis & Fowler has an immediate need for a Systems Analyst with experience in system requirements documents for various EDI HIPAA transactions.  Background requirements also include experience with system mapping documents and analysis specifications.  The successsful candidate should be skilled in using HIPAA implementation guides and setting up 4010 requirements or assisting with the conversion to 5010 requirements.

Learn more about this job here

Sr. Business Systems Analyst

Seagull Global Solutions

Providence, RI

Description:

Experience: 8+ years

1. HIPAA 5010 knowledge

2. HIPAA 4010A experience

3. National Council of Prescription Drugs (NCPDP) version D0 knowledge

4. Prior experience with National Council of Prescription Drug Program (NCPDP) for Retail Pharmacy transactions

5. Prior experience with NCPDP Medicaid Subrogation for Pharmacy Claims

6. HIPAA EDI transactions experience

7. System implementation experience

8. Testing methodology experience * development of plan, schedule, test scenarios, results documentation (System, User, Global Certification)

9. Business Analysis * ability to gather, clarify, and document requirements of project, as well as assist in implementation of requirements

Learn more about this job here

Hipaa Consultant

SysZen

Job Location:  Warren,  New Jersey

Looking for strong Healthcare candidates who are expert in Hipaa Looking for senior level Consultant with Project Management experience performing assessments and managing implementation of the HIPAA Transaction and Code Set requirements.

Leran more about this job here