Hybrid - Senior Business Consultant - Health Ministries

• Liaise with PPHS Data Access and Information Privacy for community implementation of privacy and security related processes in the use of eHealth technologies, implementation of legislative instruments, or other health ministry initiatives (eHealth).
• Leads and supports updates to the organizational PIA, which underpins both PPHS and HSHS enterprise level compliance posture.
• Provides sustained privacy and security oversight for a high profile initiative through ongoing monitoring, Intake Form and PIA support on several releases per year, participation in monthly governance meetings, and continuous coordination with the program areas.
• Lead and/or collaborate with a team of professionals to support privacy and security activities such as development of PIAs or security assessments.
• Assess and evaluate potential impact of HIA and privacy and security policies related to the scope of eHealth Support Services in delivering new eHealth technologies.
• Work with the Province to plan and develop privacy and security related material for community Users when implementing new eHealth technologies.
• Develop privacy and security related materials during planning phase of eHealth technology implementations, i.e., pORA template cross-references, development of privacy and security assessments (threat risk assessments) and associated materials.
• Provide assistance related to privacy and security related activities, documentation, and processes.
• Provide other privacy and security assistance to Users in implementing and using the eHealth technologies.
• Coordinate eHealth Services activities across multiple streams / projects to ensure privacy and security related processes are followed in all eHealth Services activities.
• Align eHealth Services privacy and security related processes with HIA and EHR related policies, and any changes to them.
• Ensure that sensitive health and personal information is collected, used, and disclosed in compliance with legislative requirements, and that associated privacy risks are appropriately assessed and mitigated.
• Privacy and security expertise with direct experience and knowledge of Alberta's health information legislation and related requirements is critical to support the ongoing strategic priorities of the Department and Minister.
• Provide support on key departmental priorities to ensure compliance with legislative requirements, including the Departments information management policies, and information and security directives.
• Ensure timely and effective advice on privacy and security issues are provided to program areas and project teams.
• Draft internal PIA training materials for internal use by the Privacy and Security team, Data Access Information Privacy branch and program areas to support current and future PIA development and delivers a half-day instructional session to build internal capability and consistency. This supports improved quality of submissions, reduces rework, and strengthens privacy by design practices across program areas.
• Draft and finalize privacy and security guidance for Responsible AI initiatives, supporting the health ministries adoption of emerging technologies in a manner that is compliant, risk?informed, and aligned with public trust expectations. This work is increasingly critical as AI use expands within health programs.

• Work Location: This will primarily work remotely; however, may be required to attend meetings or work sessions in office on reasonable notice from the Province. At the time of providing such notice, the Province will advise of the expected duration of any such meetings or work sessions. However, time to travel and any associated expenses to and from Edmonton and/or travel within Alberta will be at no cost to the Province. This will typically be once per quarter but may be adjusted depending on business needs. Work must be performed with resource physically located in Canada.

• Data Residency: All data must remain within Canada.

Spirit Omega