"Alerted.org

Privacy Incident Response Coordinator

Print (https://www.governmentjobs.com/careers/iowa/jobs/newprint/4940353)

Apply



Privacy Incident Response Coordinator

Salary

$78,041.60 - $120,036.80 Annually

Location

Des Moines - 50319 - Polk County, IA

Job Type

Full-time

Job Number

25-03100

Agency

400 Health & Human Services – Compliance and Administration

Opening Date

05/14/2025

Closing Date

5/29/2025 11:59 PM Central

LinkedIn Tag

#LI-POST

Point of Contact

Kelsey Feller - [email protected]

+ Description

+ Benefits

+ Questions

Job Description

The Iowa Department of Health and Human Services (HHS), Division of Compliance, Bureau of Data Privacy and Strategy is seeking a Privacy and Security Incident Response Coordinator (Executive Officer 3) to join our team!

This team has gained a unique lens by serving the entire agency and working with data owners within each Division. This team works hard to bring the concepts of quality improvement to all of its work, to identify creative solutions to help all Iowa HHS team members best serve Iowans, and to facilitate collaborations and partnerships across the entire Iowa HHS agency and other State of Iowa agencies. We’re looking for a new team member to help us with these goals!

Iowa HHS Privacy and Security Incident Response Coordinator

Under the direction of the Bureau Chief, the Iowa HHS Privacy and Security Incident Response Coordinator will serve in an informal leadership role to lead data privacy incident response, provide guidance on HIPAA Security Rule adherence, and advise on agency decision-making related to National Institute of Standards and Technology (NIST) privacy and security standards. This position is the lead data security officer within Iowa HHS and serves as the agency contact with the State of Iowa HIPAA Security Officer (State Chief Information Security Officer) within the Department of Management and the federal Department of Health and Human Services Office of Civil Rights, as required by law to operate a state Medicaid program and other HIPAA covered programs. This team member will lead agency-wide privacy incident response efforts, draft breach notifications, report to federal regulators, handle large-scale privacy breaches, and develop privacy response policies.

This position includes the following tasks:

Data Incident Response

• Leadership Role: Manage all Iowa HHS privacy and security incident responses, including potential

and actual breaches of confidential information.

• Primary Contact: Act as the main advisor for Iowa HHS staff on potential and actual privacy

breaches of confidential information.

• Incident Review: Assess privacy incident reports from Iowa HHS staff, HHS contractors, agency

partners, and business associates. Determine appropriate actions, including initiating incident response

teams, issuing breach notification letters, or reporting to federal regulatory bodies.

• Collaboration: Collaborate with the Iowa Department of Management to report suspected information

security incidents or breaches, interpret necessary actions, and determine if a privacy incident has

occurred. Partner with the State of Iowa Chief Information Security Officer to develop and implement

joint procedures between information security and privacy functions.

• Breach Notifications: Draft and approve breach notification letters required by law for HIPAA

breaches, 42 CFR Part 2 breaches, and Iowa Code 715C breaches.

• Federal Reporting: Oversee the reporting of privacy and security incidents to all HHS regulators,

including the Federal Department of Health and Human Services, Office of Civil Rights. Serve as the

lead agency contact for HIPAA investigations conducted by the federal Office of Civil Rights.

Compile and provide documentation required for investigations and represent Iowa HHS during calls

and site visits.

• CMS Reporting: Report privacy incidents concerning CMS dually eligible individuals to the Federal

Department of Health and Human Services as required by law.

• Incident Response Leadership: Lead, coordinate, facilitate, and manage privacy incident response

during large-scale incidents or breaches involving 500 or more Iowans.

• Interagency Coordination: Liaise with other divisions within the agency and other state agencies to

coordinate the incident response process. This includes coordination across all Business Associates of

HHS.

• Policy and Plan Development: Develop, implement, and evaluate incident response policies and

procedures for Iowa HHS, including collaboration procedures with the Department of Management on

privacy and security incidents.

• Tracking and Metrics: Maintain tracking and performance metrics on privacy incidents for Iowa

HHS. Inform leadership about root causes and current issues.

• Advisory Role: Advise leadership on opportunities for improvement related to privacy incident

response.

Iowa HHS HIPAA Security Liaison

• HIPAA Security Oversight: Serve as the agency's principal authority on the requirements and

contents of the HIPAA Security Rule. Provide leadership with critical information to ensure adherence

to contractual agreements with the Iowa Department of Management.

• HIPAA Security Status Assessment: Maintain comprehensive knowledge of Iowa HHS's current

adherence status regarding the HIPAA Security Rule, utilizing input from the Iowa Department of

Management.

• Vendor Security Requirements: Oversee the completion of all business associates with the Vendor

Security Questionnaire (VSQ) requirements, ensuring review and approval by Iowa Department of

Management.

• IT Initiative Guidance: Advise leadership on decision-making and resource allocation for IT

initiatives impacting the agency’s ability to follow the HIPAA Security Rule.

• Interdepartmental Collaboration: Foster strong working relationships with the Iowa HHS Privacy

Officer and Legal Counsel to resolve issues related to the protection of Iowans' private and confidential

information.

• DOM-DOIT Liaison: Act as the primary liaison between Iowa HHS and the Iowa Department of

Management security team, ensuring alignment on security needs and initiatives.

• Federal Law Monitoring: Stay informed about federal changes impacting the HIPAA Security Rule

and ensure Iowa HHS's adherence to these updates.

Iowa HHS Privacy and Security Regulatory Coordinator

• Serve as the lead agency expert on privacy and security requirements and recommendations of the

National Institute of Standards and Technology (NIST), providing detailed information on

requirements.

• Advise leadership on essential contract elements with the Iowa Department of Management to ensure

conformance with NIST standards, when applicable.

• Maintain thorough knowledge of Iowa HHS’s current adherence status with NIST standards, utilizing

input from the Iowa Department of Management.

• Guide leadership on decision-making and resource allocation for IT initiatives affecting the agency’s

status with following NIST standards.

• Oversee privacy and security agreements with federal agencies to access confidential data from entities like the Social Security Administration and other federal eligibility hubs.

• Collaborate with the Iowa HHS Privacy Officer and Legal Counsel to determine the appropriate use

and disclosure of information received through federal agency agreements.

Perform other duties as assigned.

Benefits

Working for the State of Iowa comes with its perks. In addition to a competitive salary, you'll enjoy a

comprehensive benefits package designed to support your well-being and professional growth:

+ Health, Dental, and Vision Coverage:Health and dental insurance packages to keep you and

your family healthy at a low cost with outstanding coverage!

+ Paid Time Off:Take time to recharge with paid time off, including vacation (96 hours/year to

begin, increasing with years of service), sick leave (144 hours/year), and paid holidays (9

days/year).

+ Retirement Plans:Participate in retirement plans such as IPERS (employees contribute 6.29%

and the State of Iowa contributes 9.44%) as well as our Retirement Investors Club (RIC),

Employer Sponsored Retirement Plan (the State of Iowa matches dollar for dollar up to

$75/month).

+ Flexible Spending Accounts:Take advantage of flexible spending accounts for medical and

dependent care expenses.

+ Insurance Coverage:Benefit from life insurance and free long-term disability insurance for added peace of mind.

+ Employee Assistance Program:Access resources and support through our Employee

Assistance Program for personal and professional challenges.

+ Employee Discount Programs:Enjoy discounts on a variety of goods and services through our

employee discount programs.

For additional information on benefits click here.

Click hereto see how we compare with other employers or offers by using our Total Compensation Calculator.

Background Checks

Applicants will be required to complete a background check to be considered for this position.

The State of Iowa is an EEO/AA Employer

HHS values those with “lived experience” and encourages adults who were fostered as youth, foster parents, and/or parents who were in the DHS system to apply. Minorities, women, persons with disabilities and veterans are encouraged to apply (Hearing and Speech Impaired – Relay Iowa 1-800-735-2942 TDD).

Our agency uses E-Verify to confirm the employment eligibility of all newly hired employees. To learn more about E-Verify, including your rights and responsibilities, please visit www.dhs.gov/E-Verify.

Minimum Qualification Requirements

Applicants must meet at least one of the following minimum requirements to qualify for positions in this job classification:

1) Graduation from an accredited four-year college or university with a degree in any field, and experience equal to five years of full-time professional-level work in program administration, program development, program operations, or management.

2) A total of nine years of education and/or full-time experience (as described in number one), where thirty semester hours of accredited college or university course work in any field equals one year of full-time experience.

3) All of the following (a, b, and c):

a. Three years of full-time professional-level work experience in program administration, program development, program operations, or management; and

b. A total of four years of education and full-time experience (as described in part a), where thirty semester hours of accredited college or university course work in any field equals one year of full-time experience; and

c. A total of two years of graduate-level education and full-time experience (as described in part a), where twenty-four semester hours of accredited graduate college or university course work in a public-service-related area (e.g., public or business administration, social work, public health, law, education, engineering) equals one year of full-time experience. Graduation from the Iowa Certified Public Manager Program is also equivalent to one year of full-time experience or education.

4) Current, continuous experience in the state executive branch that includes twelve months of full-time work as an Executive Officer 2 or two years of full-time work as an Executive Officer 1 or comparable specific management-level position.

For additional information, please click on thislink to view the job description. (https://das.iowa.gov/sites/default/files/hr/documents/class\_and\_pay/JobClassDescriptions/ExecutiveOfficer3-00712-90712.pdf)

Why Choose the State of Iowa?

At the heart of our commitment to excellence is a dedication to our most valuable asset – our employees. Discover the outstanding benefits that set us apart as an employer of choice.

Our Robust Benefits Package Includes:

Competitive Compensation:

Enjoy a competitive salary that reflects directly on your skills and expertise.

Keep in mind, your wage is just one part of your total compensation. Unlock the complete value of your employment with the State of Iowa by using our user-friendlyTotal Compensation Calculator (https://das.iowa.gov/media/3773/download?inline) .Gain insights into your comprehensive annual compensation, including salary and State-provided benefits.

Health and Wellness:

Prioritize your well-being with our comprehensive health plans, including medical, dental, and vision coverage. Enjoy the peace of mind knowing that the State of Iowa covers 90% of the premiums, providing you and your loved ones with excellent coverage at a remarkably low cost.

Retirement Planning:

We are proud to offer the Iowa Public Employees Retirement System (IPERS). A defined benefit plan, IPERS benefits are guaranteed for life, meaning once you retire, you will receive the same monthly benefit for the remainder of your life (once vested). We invest in your long-term financial well-being, so you can retire with peace of mind.Click here to learn more about IPERS (https://ipers.org/members) .

Paid Time Off:

Life is unpredictable, and at the State of Iowa, we understand the importance of work-life balance. Our leave policies, including paid holidays, vacation, and sick leave with unlimited accrual, ensure you have the flexibility you need for personal and family matters.

Professional Development:

Elevate your career with continuous learning opportunities. We support your growth through training programs, workshops, and tuition reimbursement.

Employee Assistance Program (EAP):

We care about your well-being beyond the workplace. Access confidential counseling, resources, and support through our Employee Assistance Program.

Diversity and Inclusion:

Be part of a diverse and inclusive workplace that embraces all backgrounds and perspectives. We believe diversity is a strength that drives innovation.

Join Us - Elevate Your Career:

Ready to elevate your career with the State of Iowa?Click here (https://iowa.attract.neogov.com/recruitment/p/benefits) to explore more about our unparalleled benefits and discover what makes us unique. Your success is our priority!

01

Do you understand that the answers to all of the following questions must be truthful, honest, and accurate to the best of your ability? Please read all questions and answers thoroughly and make sure you understand them completely.Ensure the answers to your questions match the information filled out on your application and the attachments you have uploaded. If the answers to your questions are inconsistent with your application information or uploaded attachments, you will be given zero points for the question.Knowingly misrepresenting the facts when submitting any information related to an application, examination, certification, appeal, or any other facet of the selection process will result in your disqualification from this application and future employment with the state of Iowa.

+ Yes - I understand and agree.

+ No

02

PLEASE READ CAREFULLY

Have you filed a registration statement pursuant to the federal Foreign Agents Registration Act of 1938, as amended, 22 U.S.C. §611 et seq?

+ No - I have NOT filed a registration statement pursuant to the federal Foreign Agents Registration Act of 1938, as amended, 22 U.S.C. §611 et seq

+ Yes - I HAVE filed a registration statement pursuant to the federal Foreign Agents Registration Act of 1938, as amended, 22 U.S.C. §611 et seq

03

Have you graduated from a four-year college or university? IF YES - How many years do you have of full-time professional-level work in program administration, program development, program operations, or management?

+ Not applicable

+ No experience in the identified areas

+ Less than one year experience in the identified areas

+ One year to less than three years of experience in the identified areas

+ Three years to less than five years of experience in the identified areas

+ Five or more years of experience in the identified areas

04

How many years do you have of COMBINED full-time work experience (described in Number One) AND/OR undergraduate college education? 30 semester hours of undergraduate education equals one year of experience.

+ No education and/or experience in the identified areas

+ Less than three years of education and/or experience in the identified areas

+ Three years to less than six years of education and/or experience in the identified areas

+ Six years to less than nine years of education and/or experience in the identified areas

+ Nine years or more of education and/or experience in the identified areas

05

Have you graduated from the Iowa Certified Public Manager Program? IF YES - How many years do you have of COMBINED full-time work experience (described in Number One) AND/OR undergraduate college education? 30 semester hours of undergraduate education equals one year of experience.

+ Not Applicable - I have not graduated from the Iowa Certified Public Manager Program

+ No education and/or experience in the identified areas

+ Less than three years of education and/or experience in the identified areas

+ Three years to less than six years of education and/or experience in the identified areas

+ Six years to less than eight years of education and/or experience in the identified areas

+ Eight years or more of education and/or experience in the identified areas

06

How many years do you have of combined GRADUATE level (post bachelor's degree) course work in a public-service-related area (e.g., public or business administration, social work, public health, law, education, engineering) AND/OR full-time professional-level work experience in program administration, program development, program operations, or management? 24 semester hours equals one year of experience. Applicants can only count up to 48 semester hours (two years) of post graduate level course work and must have a minimum of three years of the required experience.

+ No experience and/or post graduate level course work in the identified areas

+ Three years to less than five years of education and/or experience in the identified areas

+ Five years or more of education and/or experience in the identified areas

07

If you are a CURRENT employee for the State of Iowa (executive branch) how many years of full-time experience in the classification of Executive Officer 1 do you have?

+ Not applicable

+ Six Months but less than one year in the classification of Executive Officer 1

+ One year but less than two years in the classification of Executive Officer 1

+ Two years or more in the identified in the classification of Executive Officer 1

08

If you are a CURRENT employee for the State of Iowa (executive branch) how many months of full-time experience in the classification of Executive Officer 2 do you have?

+ Not applicable

+ 12 months or less in the classification of Executive Officer 2

+ 12 months or more in the classification of Executive Officer 2

Required Question

Employer

State of Iowa

Apply

Please verify your email addressVerify Email