HIPAA Compliance Manager

  • Company:
    Larimer County
  • Location:
  • Salary:
    negotiable / month
  • Job type:
  • Posted:
    1 day ago
  • Category:


Larimer County has an exciting brand new opportunity for a self-assured professional who can act as a team player and business partner with our variety of county departments to take our current HIPPA policies, implementation, and program maintenance to the next level. This position will allow you to work with an array of different individuals across the organization while developing and steering this important program forward.


The HIPPA Compliance Manager (HCM) oversees the development, implementation, maintenance of, and adherence to privacy policies and procedures regarding the safe use and handling of protected health information (PHI) in compliance with federal and state HIPAA regulations. This person will be responsible for researching available resources, ensuring updates to any County to policies or procedures in response to changes in regulatory requirements, providing training and communicating changes to appropriate County staff, and serving as the County’s HIPAA Privacy and Security Officer.

Specific responsibilities of this position include but are not limited to:

  • Establishes, coordinates, and leads the Privacy Oversight Committee compromised of employees across the organization who handle HIPAA covered data.
  • Assists departments in updating HIPAA policies and documents practices.
  • Updates, maintains, and ensures compliance with the County’s policies related to HIPAA and Privacy compliance. 
  • Performs privacy risk assessments and related compliance monitoring initiatives.
  • Ensures that the County maintains appropriate privacy and confidentiality consent, authorization forms, and information notices and materials that reflect the County’s policies and regulatory requirements.
  • Implements a process for receiving, documenting, tracking, investigating, and acting on all complaints concerning breaches in privacy policies and procedures.
  • Consults with counsel, as necessary, to address legal compliance concerns, collaborate with Senior Management and Human Resources to implement consistent accountability and disciplinary action strategies in cases of compliance standard violations. Cooperates with the U.S. Department of Health and Human Services Office for Civil Rights, State regulators, and/or other legal entities as appropriate.
  • To see the complete job description for this position plus the physical requirements,


  • Six (6) years of experience with privacy laws (e.g., General Data Protection Regulation and California Consumer Privacy Act), the Foreign Corrupt Practices Act, false claims and consumer protection laws, laws regulating medical devices and the healthcare space generally (e.g., HIPAA, HITECH, 21st Century Cures), and anti-kickback and Stark laws.
  • Supervisory experience preferred.
  • Experience in program development/management and/or training preferred.
  • Bachelor’s degree from an accredited college or university required. Major coursework in health care administration or a related field may be preferred.
  • Masters or Juris Doctorate degree may be preferred.
  • Certified HIPAA Privacy Security Expert (CHPSE)® designation required, if not certified at the time of hire, the employee must become certified within one year of hire. The employee must maintain Certified HIPAA Privacy Security Expert (CHPSE)® designation or a higher level of certification for the duration of employment.
  • An offer of employment is contingent upon the successful completion of a pre-employment drug screen and background check. As marijuana is an illegal substance under federal law, testing positive for marijuana (medical or otherwise) or any other substance for which the county tests, will result in the contingent offer of employment being revoked. A successful completion of the drug screen is defined as obtaining a negative result.
  • All application components must be submitted by 11:59 PM MT on the closing date listed.