Job Description

Job type:

Full-time, Permanent

This position supports the mission, vision and values of WellFort Community Health Services by leading the development, implementation and oversight of the organization's Privacy and Risk Program. The Privacy and Risk Specialist provides subject matter expertise, analysis, and support to WellFort leadership, Board, team members and partners to ensure strong staff and clinician engagement and compliance with practice, risk and quality approaches.

Duties & Responsibilities

Privacy

Support the design, implementation, monitoring and reporting on the privacy and risk program, ensuring compliance with the Personal Health Information Protection Act (PHIPA) and other applicable legislation, regulatory college standards, and organizational policies Maintain relevant documentation of the privacy and risk program Conduct privacy inventories of the purposes for which WellFort collects, uses and discloses personal health information, and the types of administrative, technical, and physical safeguards in place to protect PHI Develop, implement, and maintain privacy policies, procedures and standards to guide the work of the organization Deliver and coordinate privacy and risk training and awareness programs for all staff, students, volunteers, vendors, researchers and board members Act as the main point of contact for privacy-related inquiries, complaints and communication with staff, clients, families and community members Conduct and report on regular privacy audits and compliance reviews (e.g. EMR access, Connecting Ontario) Conduct privacy impact assessments and compliance audit Initiate, investigate and manage privacy incidents and breach investigations, including notifications, communications, regulatory reporting, and tracking themes Maintain up-to-date knowledge of privacy developments, legislation, and best practices Prepare annul privacy statistical and trend reports for the board and IPC
Risk and Compliance

Support organization-wide risk clinical risk management initiatives, including incident reviews, root cause analysis, and failure mode effects analysis Monitor compliance with policies, ethical standards, and regulatory obligations Promote a culture of safety, ethical practice, and risk awareness across the organization Ensure data sharing and confidentiality agreements are current and comprehensive Establish mechanisms for tracking and auditing access to personal health information (PHI) Participate in the development, review and improvement of organizational policies and procedures related to risk
Collaboration and Continuous Improvement

Provide expert advice and guidance to leadership and staff on privacy and risk issues Participate in internal and external committees, working groups, and projects related to privacy and risk management Contribute to organizational planning and quality improvement initiatives Identify opportunities to enhance privacy and risk management practices through updated procedures, education and process improvements

Qualifications and Skills

Experience

Minimum of 4-6 years of operational privacy, risk management and quality improvement experience within a health care setting
Knowledge

Advanced knowledge of the Ontario Personal Health Information Protection Act, 2004 and regulations Familiarity with the community health sector and the Model of Health and Wellbeing
Skills

Strong analytical and critical thinking skills Proven expertise conducting privacy audits, breach management and compliance reporting in healthcare settings, including incident reviews, root cause analysis, and failure mode effect analysis Skilled in policy development, documentation, and implementation Excellent communication, interpersonal and conflict resolution skills, with proven ability to speak, listen and write in a clear, thorough and timely manner using appropriate and effective communication tools and techniques Ability to manage multiple priorities and work independently and collaboratively Exceptional customer service and interpersonal skills to work with diverse staff, volunteers, clients and community partners using an equity and anti-racism approach A high level of integrity and trust Bilingual language skills an asset
Education and Certifications

Post-Secondary degree in a relevant discipline Certified Information Privacy Professional (CIPP/C) certification preferred, or equivalent combination of education and experience Clean driver's abstract, current, valid Class "G" Driver's License and reliable transportation to support travel across WellFort's various sites, as required

Total compensation package includes:

Vacation: 4 weeks Sick days: 12 Float days: 2 HOOP (Healthcare of Ontario Pension Plan) Group Health Plan Life Insurance

Application closing date:

November 21, 2025 or until position is filled

Interested applicants:

Please apply on the following posting:

https://secure.collage.co/jobs/wellfort/57606

Job Types: Full-time, Permanent

Pay: $69,804.72-$81,815.22 per year

Benefits:

Company pension Dental care Extended health care Life insurance On-site parking
Application question(s):

Do you have a valid driving license and access to an insured vehicle? Are you legally entitled to work in Canada?
Work Location: Hybrid remote in Brampton, ON L6T 3J1