Skip to Main Content


Below you will find the details for the position including any supplementary documentation and questions you should review before applying for the opening.  To apply for the position, please click the Apply for this Job link/button.

If you would like to bookmark this position for later review, click on the Bookmark this Job link. If you would like to print a copy of this position for your records, click on the Print Preview link.

If you need to finish applying, click on the Continue this Job Application button.

Please see Special Instructions for more details.

You must submit an on-line application in order to be considered as an applicant for this position. Cover letters may be addressed to the Hiring Committee.

Position Information

Position Information

Position Number 76710
Type of Recruitment External
Position Summary

The HIPAA Privacy Officer is responsible for the university’s HIPAA privacy program, including but not limited to; daily program operations, program development, implementation and maintenance of the policies and procedures, monitoring program compliance, investigating and tracking of incidents and breaches that could arise, and insuring patient’s rights are followed in compliance with federal and state laws.

Required Qualifications

Bachelor’s degree in healthcare administration, health information management, business or a related field.
Six years professional experience in health care information management and compliance related positions or in a similar health services administration or a related field with at least 3 years of leadership experience.
Certified in HIPAA Privacy (e.g. CHPS, CHCO).
Knowledge and experience with HIPAA related state and federal information privacy laws, including but not limited to access, release of information, and fraud/waste/abuse.
Knowledge of healthcare regulatory compliance.
Excellent written, verbal, and collaborative communication skills.
Strong critical thinking and problem-solving skills.
Ability to handle multiple projects under strict timelines.
Project management skills.
High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgement and maturity.
Ability to develop and maintain positive interpersonal relationships.
Ability to perform the essential functions of the job.

Preferred Qualifications

Master’s degree.
Extensive experience with health care related legislation and standards for the protection of health information and patient privacy.
Other healthcare industry related credentials (e.g. RHIA, RHIT).
Health care legal and operational skills.
Experience in an academic medical center.

Duties & Responsibilities

Builds and maintains a comprehensive privacy program that shall support consistent and effective privacy practices and ensure the confidentiality of protected health information (PHI), paper and/or electronic, across all media types.
Works with the University’s Senior Leadership and HIPAA Council to establish governance for the HIPAA privacy program, including but not limited to the policies and procedures to carry out the HIPAA Privacy program, in compliance with HIPAA and other applicable healthcare regulations.
Works collaboratively with other compliance officers (IRB, IACUC, IBC, etc.) to assure compliance consistency and, when arriving at a technical solution, fiscal efficiency.
Serves in the leadership role for HIPAA privacy compliance.
Collaborates with the University’s Chief Information Security Officer to ensure an alignment between HIPAA security and HIPAA privacy compliance.
Performs and oversees the HIPAA risk assessment/risk analysis, collaborating with Chief Information Security Officer and CMU HIPAA governance members, as applicable.
Leads the University in establishing an ongoing process to track, investigate and report inappropriate access and disclosure of PHI/electronic PHI (ePHI) and monitoring patterns of inappropriate access and/or disclosure of PHI.
Prepares and presents the Annual HIPAA Program Review Report to the President’s office.
Works collaboratively with college Deans and appropriate administrative units to implement and monitor compliance with HIPAA initiatives.
Manages the process if a HIPAA breach occurs, working with General Counsel for the appropriate notification process and documentation of such. Works with Human Resources to ensure consistent application of sanctions for HIPAA privacy violations.
Administers a process for investigating and acting on HIPAA related complaints.
Ensures the University has and maintains appropriate HIPAA privacy and confidentiality consents, HIPAA authorization forms, HIPAA Notice of Privacy Practices, and other applicable HIPAA materials that reflect the University’s current HIPAA related practices.
Oversees, directs, delivers, or ensures the delivery of HIPAA privacy training programs for all applicable staff, faculty, volunteers, students, business associates, and University leadership with access to PHI/ePHI within the CMU HIPAA covered entities.
Works with the General Counsel’s office to represent the university and its HIPAA privacy program to external constituents.
Works with the University’s Department Representatives in overseeing patient rights to inspect, amend, and restrict access to PHI when appropriate and as it relates to HIPAA privacy regulations.
Evaluates HIPAA privacy trends, evolving dangers, risks and weaknesses within the HIPAA privacy system and applies resources to lessen the threat.
Serves as HIPAA information privacy resource to the university regarding release of information and to all departments for all HIPAA privacy related matters.
Maintains current knowledge of state and federal HIPAA privacy and compliance laws, regulations, legislation, etc.
Cooperates with the U.S. Department of Health and Human Service’s Office of Civil Rights, State regulators and/or other legal entities in any HIPAA compliance reviews or investigations.
Performs other duties as assigned.

Supervision Exercised

Functional supervision over others as necessary.

Message to Applicants

You must submit an on-line application in order to be considered as an applicant for this position.

Cover letters may be addressed to the Hiring Committee.

Employee Group Professional & Administrative -Salary
Staff Pay Level<br><br><a href=
Pay Range $90,000 - $110,000
Division President
Department Research & Graduate Studies
Position Status Regular
Position End Date
Employment Status Full-Time
FTE 1.0
Position Type 12 month
Weekly Work Schedule Monday - Friday, 8:00a.m.- 5:00p.m.; evenings and weekends as required
At Will? Yes
Location Mount Pleasant, MI
About the Department
About CMU

Founded 125 years ago, Central Michigan University is a major, national university with 26,000 students, more than 30 remote locations in the U.S. and Canada, and 225,000 alumni worldwide.

CMU offers more than 200 academic programs at the undergraduate, master’s, specialist and doctoral levels. Academic excellence is found in programs considered among the best in the nation, such as engineering, information systems, neuroscience, physician assistant, physical therapy, sales, logistics, fashion merchandising and design, advertising, marketing, public relations, and broadcasting. Central has been a pioneer in extended learning for nearly 50 years, and its online programs for undergraduates and the military, as well as its online MBA and online graduate education for teachers and school leaders, are nationally ranked.

Central Michigan University expands its academics with immersive, hands-on opportunities such as research, volunteering, study abroad, internships and leadership experiences.

The fourth-largest university in Michigan began with the mission of addressing a demand for teachers prepared and qualified to lead classrooms and educate future generations. That commitment to fulfilling unmet needs continues today through many newer programs, including our College of Medicine, which in May 2017 graduated its first class of doctors dedicated to serving medically underserved communities.

Employees have access to fitness facilities and a nationally recognized wellness program as well as health care and benefits that exceed regional, state and national norms.

With student-athletes who are expected to perform equally well in the classroom and on the field, CMU is a member of the NCAA Division I Mid-American Conference. CMU Athletics regularly earns accolades for student excellence in the classroom (almost 30 percent of our students were honored in spring 2017 for GPAs of 3.5 or higher) and on the field, with frequent men’s and women’s championship seasons in sports such as football, basketball, gymnastics, field hockey, soccer, baseball and softball, and wrestling.

Central is located in a quaint, tight-knit community in the heart of central lower Michigan. Our community offers a robust mix of outdoor opportunities, family attractions. and restaurants and brew pubs. Mount Pleasant’s small-town life is complemented by cultural activities on campus, including concerts, plays and guest speakers. Mount Pleasant is an hour or two from most Michigan destination spots, including Detroit, Grand Rapids, Lansing and Ann Arbor, as well as the state’s sunset beaches, golf and ski resorts, and our famous “Up North” communities, state parks and lakes.

EEO Statement

CMU, an AA/EO institution, strongly and actively strives to increase diversity and provide equal opportunity within its community. CMU does not discriminate in employment against persons based on age, color, disability, gender, gender identity/gender expression, genetic information, familial status, height, marital status, national origin, political persuasion, race, religion, sex, sexual orientation, veteran status, or weight (see

If you wish to see “EEO is the Law” posters, please click here.

Posting Begins 02/08/2018
Posting Ends
Open Until Filled Yes

Supplemental Questions

Required fields are indicated with an asterisk (*).

  1. * How did you learn of this vacancy? Please indicate specific source (i.e., CMU website, Lansing State Journal, etc.):

    (Open Ended Question)

  2. * Are you currently an internal employee of CMU according to the <a href="">university's definition</a>?
    • Yes
    • No
  3. * If yes, to which employee group do you belong? (If not applicable, select "Not Applicable").
    • Not Applicable
    • Office Professional
    • P&A, SO or Faculty
    • Public Broadcasting
    • Police
    • Service Maintenance
    • Supervisory/Technical
  4. * Do you have at least a Bachelor’s degree in healthcare administration, health information management, business or a related field?
    • Yes
    • No
  5. * Do you have at least six years professional experience in health care information management and compliance related positions?
    • Yes
    • No
  6. * Are you Certified in HIPAA Privacy?
    • Yes
    • No
  7. * Do you have knowledge and experience with HIPAA related state and federal information privacy laws?
    • Yes
    • No

Optional & Required Documents

Required Documents
  1. Resume/Curriculum Vitae
  2. Cover Letter
Optional Documents
  1. Recommendation Letters
  2. List of References