What are the responsibilities and job description for the Management Analyst - Privacy Compliance position at Durham VA Medical Center?
The Management Analyst (Privacy Compliance Analyst) at the Durham VA Medical Center (DVAMC), in the Executive Director Service Line in the Corporate Compliance Section reports to the Chief, Corporate Compliance. The purpose of this position is to analyze data, conduct audits, monitor industry regulation changes, and develop risk-mitigation procedures. Key roles involve identifying compliance risks, training staff, and acting as a liaison between the company and regulatory agencies.
Time-In-Grade Requirement: Applicants who are current Federal employees and have held a GS grade any time in the past 52 weeks must also meet time-in-grade requirements by the closing date of this announcement. For a GS-11 position you must have served 52 weeks at the GS-09. The grade may have been in any occupation, but must have been held in the Federal service. An SF-50 that shows your time-in-grade eligibility must be submitted with your application materials. If the most recent SF-50 has an effective date within the past year, it may not clearly demonstrate you possess one-year time-in-grade, as required by the announcement. In this instance, you must provide an additional SF-50 that clearly demonstrates one-year time-in-grade. Note: Time-In-Grade requirements also apply to former Federal employees applying for reinstatement as well as current employees applying for Veterans Employment Opportunities Act of 1998 (VEOA) appointment.
For more information on these qualification standards, please visit the United States Office of Personnel Management's website at https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/.
1. Compliance Program Analysis and Advancement:
Knowledge Factors:
1. Knowledge and skill in applying analytical and evaluative methods and techniques such as patient concerns and research to issues or studies concerning the efficiency and effectiveness of Privacy/FOIA operations carried out by administrative or professional personnel functions.
2. Knowledge of the Durham VA Medical Center structure, missions and programs, and organizational relationships plus a thorough knowledge of quantitative and qualitative methods and techniques to develop standards covering complex programs functions of missions.
3. Knowledge of database management, VA and non-VA health databases, information systems, skill in conducting detailed analysis and the ability to collect, analyze and synthesize data from diverse data sources.
Work Schedule: Mon-Fri ,0800-1630
Telework: This position may be authorized for telework - Ad hoc only. Telework eligibility will be discussed during the interview process.
Virtual: This is not a virtual position.
Position Description/PD#: Management Analyst - Privacy Compliance/PD501890
Relocation/Recruitment Incentives: Not Authorized
Permanent Change of Station (PCS): Not Authorized
PCS Appraised Value Offer (AVO): Not Authorized
Qualifications:
To qualify for this position, applicants must meet all requirements by the closing date of this announcement, 04/29/2026.Time-In-Grade Requirement: Applicants who are current Federal employees and have held a GS grade any time in the past 52 weeks must also meet time-in-grade requirements by the closing date of this announcement. For a GS-11 position you must have served 52 weeks at the GS-09. The grade may have been in any occupation, but must have been held in the Federal service. An SF-50 that shows your time-in-grade eligibility must be submitted with your application materials. If the most recent SF-50 has an effective date within the past year, it may not clearly demonstrate you possess one-year time-in-grade, as required by the announcement. In this instance, you must provide an additional SF-50 that clearly demonstrates one-year time-in-grade. Note: Time-In-Grade requirements also apply to former Federal employees applying for reinstatement as well as current employees applying for Veterans Employment Opportunities Act of 1998 (VEOA) appointment.
For more information on these qualification standards, please visit the United States Office of Personnel Management's website at https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/.
Responsibilities:
Duties and Responsibilities:1. Compliance Program Analysis and Advancement:
- Maintains expert knowledge of corporate compliance and Privacy/FOIA laws to assess program compliance, conduct monitoring and recommend corrective actions.
- Develop reports and visualizations to verify compliance and advise leadership on improvements.
- Educates employees on data protection procedures, and use technology for training, to ensure proper handling and reporting of sensitive information.
- The Management Analyst supports the Privacy/FOIA section to develop and implement policy based processes, roles, and controls that govern how data is managed across the organization, while addressing conflicts between regulations, laws, and facility business practices. Assesses privacy risks related to business activities involving personal data, evaluates controls to mitigate these risks, and collaborates with the Privacy/FOIA Officer to address organizational vulnerabilities.
- Supports procurement planning, reviews and approves business agreements with external agencies, and participates in the development and evaluation of related processes, all with minimal supervision.
- Works on strategic privacy initiatives aligned with Durham VA goals and values.
- Handle data disclosure, investigations, compliance activities, and implement safeguards.
- Engage with external stakeholders to promote transparency and protection.
- Support the development of management strategies, evaluate information controls, ensure compliance, and implement corrective actions for areas out of compliance.
- In the absence of the Privacy/FOIA Officer, the Management Analyst reviews and approves facility policies, ensuring proper use and protection of information within each area.
- Evaluate research projects to ensure privacy compliance and assist in reviewing HIPAA authorizations or waivers to confirm legal authority for handling protected health information. Provides proficient guidance to senior leadership and external agencies on data governance, representing the organization to key officials.
- Develop guidelines for areas lacking specific references, supporting the agency's privacy and data protection efforts.
- Conducts and participates in privacy investigations, collaborating with other services within Durham VA.
- Analyze complex data, leads meetings and briefings, and recommends administrative actions to leadership in response to privacy violations
Knowledge Factors:
1. Knowledge and skill in applying analytical and evaluative methods and techniques such as patient concerns and research to issues or studies concerning the efficiency and effectiveness of Privacy/FOIA operations carried out by administrative or professional personnel functions.
2. Knowledge of the Durham VA Medical Center structure, missions and programs, and organizational relationships plus a thorough knowledge of quantitative and qualitative methods and techniques to develop standards covering complex programs functions of missions.
3. Knowledge of database management, VA and non-VA health databases, information systems, skill in conducting detailed analysis and the ability to collect, analyze and synthesize data from diverse data sources.
Work Schedule: Mon-Fri ,0800-1630
Telework: This position may be authorized for telework - Ad hoc only. Telework eligibility will be discussed during the interview process.
Virtual: This is not a virtual position.
Position Description/PD#: Management Analyst - Privacy Compliance/PD501890
Relocation/Recruitment Incentives: Not Authorized
Permanent Change of Station (PCS): Not Authorized
PCS Appraised Value Offer (AVO): Not Authorized
Salary : $77,983