Upper Peninsula Health Plan logo

Privacy Associate

Upper Peninsula Health Plan
2 hours ago
Full-time
On-site
Marquette, Michigan, United States
Associate

DATE:  May 6, 2026

POSITION: Privacy Associate

DEPARTMENT: Compliance

RATE: $22.46 per hour, with potential for additional compensation based on qualifications.

POSITION SUMMARY:

The Privacy Associate assists the Compliance and Risk Management Officer (Privacy Officer) with Upper Peninsula Health Plan’s (UPHP’s) privacy program. This position ensures UPHP remains compliant with healthcare privacy rules and regulations.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

1. Follows established UPHP policies and procedures, objectives, safety standards, and sensitivity to confidential information.
 
2. Supports and coordinates day-to-day operations of UPHP’s privacy program; develops, maintains, and revises policies and procedures for the general operation of the privacy program and its related activities to ensure compliance with all rules and regulations.
 
3. Investigates all potential Health Insurance Portability and Accountability Act (HIPAA) breaches by conducting breach risk assessments; provides required notifications to identified parties and federal/state agencies; reviews reported disclosures. 
 
4. Assists with all privacy related audits and inquiries. 
 
5. Assists in developing training related to HIPAA and privacy and ensures that all staff receive initial, annual, and periodic training.
 
6. Collaborates on initiatives with the UPHP Security Administrator.
 
7. Attends conferences, seminars, and continuing education sessions as required.
 
8. Maintains confidentiality of client data.
 
9. Performs other related duties as assigned or requested.

POSITION QUALIFICATIONS:

Education:

Minimum:

Associate degree in business, health information management, healthcare administration, or related field
 

Preferred: 

Bachelor’s degree in business, health information management, healthcare administration, or related field; HIPAA Privacy Officer certification or other relevant privacy/compliance certifications
 

Experience:

Minimum:

One (1) to two (2) years of experience in the health-care setting
 

Preferred: 

Minimum plus experience conducting HIPAA risk assessments, managing privacy incidents, or working directly with regulatory audits or investigations.

 

Required Skills:

Working knowledge of MS Office (Word, Excel, PowerPoint, Access)
Keyboarding proficiency
Excellent human relation and oral, written and presentation skills
Excellent organizational abilities with attention to detail
Strong problem-solving skills; sound business judgment
 

Preferred Skills:

Knowledge of HIPAA regulations, Code of Federal Regulations (CFR) Title 45, and     guidance from the Office for Civil Rights (OCR). 
Familiarity with healthcare privacy and compliance frameworks.
 
The qualifications listed above are intended to represent the minimum skills and experience levels associated with performing the duties and responsibilities contained in this job description. The qualifications should not be viewed as expressing absolute employment or promotional standards, but as general guidelines that should be considered along with other job-related selection or promotional criteria.
 

Physical Requirements:

[This job requires the ability to perform the essential functions contained in the description. These include, but are not limited to, the following requirements. Reasonable accommodations may be made for otherwise qualified applicants unable to fulfill one or more of these requirements]:
 
Ability to enter and access information from a computer
Ability to access all areas of the UPHP offices
Occasionally lifts supplies/equipment
Occasional prolonged standing
Manual dexterity and mobility
 

Working Conditions:

Works in office conditions, but occasional travel may be required
Exposure to situations requiring exceptional interpersonal skills or periods of intense concentration
Subject to many interruptions
Occasionally subjected to irregular hours