Manager, Provider Privacy Operations

Role Summary:

The Manager, Provider Privacy Operations serves as a regional privacy and compliance leader supporting Datavant's Provider division, reporting to the Vice President of Provider Privacy Compliance & Strategy. This manager-covering the West region-will oversee a team of Privacy Analysts responsible for ensuring that privacy, data protection, and compliance standards are embedded in daily Provider Operations.

This role combines people leadership, customer engagement, and operational oversight, acting as the primary privacy partner for the corresponding Provider Operations leader. The manager will provide operational oversight and leadership as well as day-to-day supervision of privacy compliance activities within their assigned region. The manager will be responsible for ensuring the consistent execution of privacy incident management and compliance processes across operational units in the Provider division. The manager will also coordinate with cross-functional teams including Legal, Operations, and Security to support risk mitigation, training, and adherence to regulatory and contractual obligations.

This position requires a strong understanding of healthcare privacy law, exceptional communication and presentation abilities, strong organizational and analytical skills, proven ability to lead and develop teams, and a commitment to fostering a culture of compliance and privacy excellence.

Key Responsibilities:

Leadership & Team Management

• Lead, mentor, and develop a team of Privacy Analysts, fostering a culture of accountability, collaboration, and professional growth.
• Manage workload allocation and performance metrics to ensure timely, high-quality resolution of privacy matters.
• Encourage continuous learning through coaching and participation in Datavant's Compliance training and professional development programs.
  
  

Operational Privacy Oversight

• Provide day-to-day leadership for privacy compliance within the assigned region, including incident management, release of information compliance, and customer escalation support.
• Review and approve incident investigations, ensuring completeness, regulatory alignment, and consistency.
• Identify emerging trends, systemic risks, and operational inefficiencies; develop corrective action plans and contribute to root cause analyses.
• Support the creation and standardization of policies, procedures, and privacy controls that align with enterprise-wide compliance frameworks.
  
  

Customer and Partner Engagement

• Serve as the primary privacy liaison for Provider Operations and customers within your region-leading privacy-related discussions, addressing escalations, and building trusted relationships.(minimum 30% travel expectation).
• Manage follow-up actions from Unauthorized Access Disclosure (UAD) incident reports, regulator inquiries, and audit requests, partnering closely with Provider division leadership to drive timely resolution.
• Represent Datavant at regional conferences including health information management (HIM) events, customer meetings, and compliance education forums (minimum 30% travel expectation).
  
  

Cross-Functional Collaboration

• Partner with Legal, Security, and Provider Operations to align Provider division privacy practices with enterprise compliance and data governance standards.
• Support implementation of Datavant's UAD reduction strategy across Provider Operations and in partnership with Provider Product, translating compliance goals into action plans and tactical risk mitigation.
• Provide privacy-by-design and compliance-by-design input for new Provider products, workflows, and customer enhancement requests.

Program Development & Reporting

• Develop and deliver targeted privacy education sessions tailored to operational teams and customer needs.
• Maintain oversight of regional-level privacy incident tracking, analytics, and reporting dashboards; present insights to Compliance leadership.
• Contribute to quarterly business reviews and enterprise compliance reports, providing data-driven updates and recommendations for improvement.
• Supervise and mentor Privacy Analysts across assigned operational zones, ensuring accurate and timely handling of HIPAA incidents and privacy matters.
• Review incident investigations, root cause analyses to ensure completeness, accuracy, and alignment with regulatory standards.
• Serve as an escalation point for complex privacy incidents or high-impact cases, coordinating with Privacy and Compliance leadership and Legal on next steps.
• Monitor privacy incident trends across regions to identify systemic risks and recommend proactive mitigation measures.
• Ensure consistent application of policies, processes, and reporting across the region
• Support the development and execution of regional or functional privacy audits in partnership with the Internal Audit and Compliance teams.
• Collaborate with business units to identify and address privacy risks in daily operations, data handling, and third-party interactions.
• Maintain oversight of data tracking and reporting within the privacy incident management system, ensuring accuracy and completeness.
• Assist in managing communication with customers, clinics, and, when appropriate, affected individuals and regulatory authorities.
• Assist in implementing enterprise privacy and compliance policies within assigned regions.
• Provide privacy-by-design and compliance-by-design guidance to operational teams.
• Support the development and delivery of targeted privacy training programs, reinforcing compliance best practices.
• Recommend enhancements to policies, procedures, and training based on observed trends and root cause analysis.
• Partner closely with Operations, Customer Service, and Legal to maintain alignment on privacy and compliance initiatives.
• Provide zone-level performance metrics and updates Privacy leadership for inclusion in enterprise-wide reporting.
• Represent the Compliance team in cross-functional projects related to data protection, customer reporting, or business process improvements.

Basic Qualifications:

• Bachelor's degree in Health Information Management, Healthcare Administration, or a related field.
• 6+ years of experience in healthcare compliance, privacy, or information governance.
• Minimum 3 years of experience in a leadership, supervisory, or team management role.
• Strong working knowledge of HIPAA, HITECH, and related state and federal privacy laws.
• Demonstrated experience conducting or overseeing privacy incident investigations and root cause analyses.
• Proficiency in privacy incident tracking systems and data reporting tools.
• Excellent analytical, organizational, and communication skills.
• Proven ability to manage multiple priorities and deadlines in a fast-paced environment.
• Strong ethical judgment, attention to detail, and commitment to confidentiality.
• Live in the PST or MNT time zones or be willing to
• Ability to travel up to 30%

Desired Qualifications:

• Master's degree in Health Information Management, Healthcare Compliance, or a related discipline.
• Professional certification such as CIPP/US, CHPC, CHC, or RHIA.
• Experience in a healthcare technology or health data interoperability organization.
• Familiarity with privacy-by-design frameworks and compliance integration in technology environments.
• Experience collaborating with internal audit or regulatory compliance teams.
• Demonstrated success in developing and delivering privacy training or educational materials.
• Strong interpersonal skills with the ability to influence and build relationships across functions and levels.