×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Privacy Impact Assessment

Job in Toronto, Ontario, M5A, Canada
Listing for: Foilcon
Contract position
Listed on 2026-01-13
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Job Description & How to Apply Below
Position: Privacy Impact Assessment 5742

Deliverables include, but are not limited to:

· Conducting/Completing Privacy Impact Assessments and associated documentation

· Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives

· Developing risk mitigation plans

· Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements

· Reviewing and advising on agreements, including data sharing agreements

· Developing privacy requirements for new or changing projects

Responsibilities:

· Conducting/Completing Privacy Impact Assessments and associated documentation

· Providing Privacy Consultation on a diverse range of complex, multi-stakeholder health privacy issues and Information Technology (IT) initiatives

· Identify and assess privacy risks, including developing risk mitigation plans

· Create or inform the creation of data flow diagrams and associated privacy controls and compliance requirements

· Reviewing and advising on agreements, including data sharing agreements

· Developing privacy requirements for new or changing projects

· Providing privacy advisory and support to business teams

· Other duties as required

Desired Skills:

  • Demonstrable knowledge of project management;
    Knowledge and understanding of Project Management’s Institute’s Project Management Body of Knowledge is an asset
  • Experience working on and delivering multiple projects
  • Demonstrated project management software skills and experience e.g. MS Project, MS Teams etc.
  • University undergraduate or graduate degree in Health, Computer Science, Engineering, Law, Security, or a related discipline from a recognized institution or equivalent experience – desired
  • Familiarity with Prescribed Organization (PO), Prescribed Entities (PEs) or Prescribed Persons (PP) requirements under the Personal Health Information Protection Act (PHIPA), and their related requirements, is an asset
  • Familiarity with audit logging and Security Information and Event Management (SIEM) technology is an asset
  • Familiarity with technical data protection controls and technology such as encryption and tokenization is an asset
  • Knowledge and understanding of Accessibility for Ontarians with Disability Act (AODA) and related regulations and standards is an asset

Experience and Skill Set Requirements:

Evaluation Criteria:

1:
Minimum 5 years’ health privacy experience conducting privacy impact a3ssessments (PIAs) on medium to high complexity projects. 20 Points

2:
Minimum 5 years’ direct operational level privacy experience in a health sector and/or IT environment or both. 20 Points

3:
Minimum 5 years’ experience in developing privacy policies and procedures, requirements, or controls. 20 Points

4:
Minimum 5 years’ experience drafting and reviewing privacy requirements for data sharing agreements. 15 Points

5:
Familiarity with the Personal Health Information Protection Act (PHIPA), and requirements related to Prescribed Organization, Prescribed Entity, Health Information Network Provider (HINP) and/or Electronic Service Provider (ESP). 15 Points

6:
Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows. 10 Points

Must haves:

· Minimum of 3 years’ health privacy experience conducting privacy impact assessments (PIAs) on medium to high complexity projects

· Minimum 5 years’ direct operational level privacy experience preferably in a health sector and/or IT environment or both

· Minimum 5 years and #x27; experience drafting and reviewing privacy requirements for data sharing agreements

· Minimum 5 years’ experience developing privacy policies and procedures, requirements, or controls

· Familiarity with the Personal Health Information Protection Act (PHIPA), and its related requirements for Health Information Network Providers (HINP) and Electronic Service Providers (ESP)

· Familiarity with Application Programming Interface (API) functionality and management

· Familiarity with Electronic Medical Record (EMR) or Hospital Information System (HIS) infrastructure, design, and data flows

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search