Metrocare Services

  • Privacy & Information Security Compliance Manager

    Job Locations US-TX-Dallas
    Posted Date 3 weeks ago(10/23/2018 5:40 PM)
    # of Openings
    Regular Full-Time
  • Overview

    Working for Metrocare isn’t just a job. It’s a career where
    your skills and passion for delivering quality care make
    a positive difference to the individuals that we serve.


    Metrocare is the largest provider of mental health services in Dallas County, serving more than 57,000 adults and children annually.  For more than fifty (50) years, Metrocare has provided an array of services available to people with mental and developmental disabilities. In addition to behavioral health services, Metrocare provides primary care centers for adults and children, accessible pharmacies, housing and supportive social services. Through the Altshuler Center for Education & Research we are advancing mental health beyond Dallas County.


    The Information Security Officer shall operate under the general supervision of the Chief Compliance Officer and oversee ongoing compliance activities relating to Metrocare’s information privacy and security obligations under HIPAA and HITECH. The position will exercise personal judgment and decision-making skill regarding applicable federal and state health information privacy and security laws.



    • Apply and maintain a strong working knowledge of HIPAA, HITECH, Omnibus Rule 2013 and PCI-DSS.
    • Build and maintain positive relationships with key staff of Metrocare’s Information Technology (“IT”) Department.
    • Work with the IT Department to facilitate compliance with the information privacy and security programs, policies and procedures.
    • Assist in the design of and monitor information privacy and security programs for the overall security and integrity of Metrocare’s, information systems and infrastructure.
    • Ensure that Metrocare has implemented the necessary components of the information privacy and security requirements for its operations.
    • Assist the IT Department in properly integrating information security controls into daily workflow.
    • Periodically audit and review workflow to validate information security controls.
    • Conduct and/or facilitate periodic information security risk analysis reviews and develop risk mitigation strategies within Metrocare’s internal networks and contractor or vendor systems.
    • Research applicable hardware and software requirements for information security.
    • Assist in the development and implementation of and provide training in policies, standards, guidelines and security monitoring processes in relation to general control and information security programs.
    • Monitor, track, and analyze all information privacy and security incidents, especially all incidents relating to loss prevention of protected health information (“PHI”)
    • Establish a monitoring and reporting process to ensure that the Chief Compliance Officer and Chief Operating Officer are kept appraised of the effectiveness of information security and problem resolution.
    • Assist with the investigation and response to any compliance reviews or investigations or conducted by the U.S. Department of Health and Human Service’s Office of Civil Rights or other regulatory bodies regarding information privacy and security.
    • Conduct training on HIPAA, HITECH, information security awareness, and other information privacy and security topics.
    • Draft management reports, trends analysis, and policies and procedures relating to information privacy and security
    • Other duties as assigned .



    • Ability to convey a positive, service-oriented attitude.
    • Ability to work both independently and in a team environment.
    • Ability to completely maintain confidentiality and discretion in Metrocare’s information security system and infrastructure.
    • Ability to learn quickly, exercise sound judgment and take initiative
    • Ability to work in a fast-paced environment while demonstrating flexibility, commitment to teamwork and a willingness to change assignments to meet departmental needs as required. 

    EDUCATION: Bachelor’s Degree (Business, Computer Technology, Health Information Technology)



    • At least 5 years of relevant experience in information security with working knowledge about information technology, private health information, patient privacy and confidentiality
    • Working knowledge of the HIPAA, HITECH, PCI-DSS and NIST requirements, industry best practices and protocols for risk assessment and documentation.
    • Proficiency in Microsoft Office Applications, including Word, PowerPoint, Excel and Access
    • At least 3 years experience in coordinating compliance efforts, especially in information privacy and security
    • At least 3 years experience in data analytics, trend analysis, risk analysis and periodic reporting
    • Experience in making disclosures and reporting violations to senior management/leadership and regulatory agencies
    • Demonstrated organization, facilitation, communication and presentation skills 


    • Prior responsibility working in information security for a healthcare organization
    • Experience working in behavioral health or developmental disabilities
    • Certified in Healthcare Privacy Compliance (“CHPC”) or at least be willing to become certified within a year after employment.
    • Certified Information Privacy Professional (“CIPP”) and/or Certified Information Systems Security Professional (“CISSP”) or at least willing to become certified within a year after employment

    Metrocare couldn’t have a great employee-first culture without great benefits.  That’s why we offer a competitive salary, exceptional training and an outstanding benefits package:

    • Medical/Dental/Vision
    • Paid Leave
    • Paid Holidays
    • Employee Assistance Program
    • Retirement Plan, including employer matching
    • Health Savings Account, including employer matching
    • Professional Development Allowance
    • Bilingual Stipend – up to 6% of the base salary
    • Many other benefits

    Equal Employment Opportunity/Affirmative Action Employer


    Tobacco Free Facilities - Metrocare is committed to promoting the health, well-being and safety of Metrocare team members, guests, and individuals and families we serves while on the facility campuses. Therefore, Metrocare facilities and grounds are tobacco-free.


    No calls from staffing agencies or independent recruiters


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed