The DHA Privacy and Civil Liberties Office oversee the protection of PII/ PHI within the MHS through the development of regulations and policies that comply with current and emerging Federal privacy and (HIPAA, as amended by the Health Information Technology for Clinical Health Act (HITECH).
The Privacy Office supports MHS compliance with Federal privacy and HIPAA security laws and DoD regulations and guidelines.
The Privacy Office also provides dedicated assistance to the Director of DHA, the Office of the Assistant Secretary of Defense (OASD) for Health Affairs, or other senior DoD leadership, in all requested matters including but not limited to inquiries from Congress, the Office of Management and Budget (OMB), the Department of Health and Human Services (HHS) and the Department of Veterans Affairs (VA), as well as other Federal agencies and DoD components, on matters related to privacy and HIPAA security.
Privacy Office Program Support
The Contractor shall provide comprehensive program management support to the Privacy Office in the privacy related implementation of the Privacy Act, the Health Insurance Portability and Accountability Act, Privacy, Security and Breach Rules, the E-Government Act, and the Freedom of Information Act. In addition to traditional program management support, the contractor must have relevant subject matter expertise in the program areas, including Privacy Act compliance, HIPAA compliance, data sharing compliance, federal breach response, Freedom of Information Act processing, and the Military Health System. Compliance with these statutes requires experience with the following: creation of System of Records notices, privacy impact assessments for systems, data sharing compliance efforts, Freedom of Information Act activity, associated reporting requirements, experience with HIPAA related requirements such as Data Sharing Agreements for protected health information under HIPAA, experience with complying with DoD breach requirements and in addition, with HIPAA breach response requirements, such as analysis under HIPAA, and associated response and reporting requirements, and coordination both internally with DHA offices and externally with such offices as the DoD Privacy Civil Liberties and Transparency Division Office. In addition, as directed by the Government, the Contractor shall analyze complex DHA Privacy Office issues/problems/questions and be able to communicate clearly to multiple audiences with diverse technical, budgetary, military, business and political background/experience. Task shall include, but not be limited to the following:
Privacy Office General Program Management Support
The Contractor shall provide the following on-site support services, but is not limited to:
The Contractor in collaboration with Government staff shall implement an Action Tracking System which shall list all current actions, a description, action status, when the action was assigned, who it is assigned to and an estimated date of completion. The report shall also include all closed actions.
Provide other program management support including logging and tracking such as Privacy Act requests, assistance with review, redaction and preparation of responsive records, and related activities.
Provide support in developing training activities especially regarding those topics with which the contractor is responsible, such as Privacy Act, and E-Government Act topics.
Privacy Office Work Group/Meeting Support
The Contractor shall provide professional facilitation support to work groups/meetings, to include production of meeting minutes, documentation of work group/meetings results and action items, development of briefing and presentation material. The Contractor shall provide an accounting of all meetings supported under the Monthly Progress Report.
Support for DoD Requests/Issues
The Contractor shall accurately provide basic information in the use of DoD data within DoD, including contractors, and in external organizations. The Contractor shall advise internal and external organizations about approved methods and requirements for obtaining approval for their usage of DoD data and the process for the receipt of these data. The Contractor shall review all DoD data requests for appropriateness and policy compliance before staffing requests to the Government. The Contractor shall maintain a DoD Requests/Issues Log) that documents all related processes for sensitive data.
Privacy Office Process Improvement
When requested, the Contractor shall provide process improvement advice. The Contractor shall provide assistance defining the problem; measuring the current situation; analyzing and identifying causes; improving or implementing the solution; and controlling through measurement verification to develop better programs and processes. The Contractor shall use commercial best practices for process improvement in supporting this task, with a view toward advancing customer service.
Processing of FOIA and Privacy Act Requests
In accordance with DoD 5400.7-R (DoD FOIA Program), and the Privacy Act, the Contractor shall assist the Government FOIA Manager in collecting and preparing records/documents in relation to FOIA and Privacy Act requests. This assistance shall include, but not be limited to:
Contractor shall use FOIAXpress software tool (provided by the Government) in the execution of the tasks detailed in this PWS section. FOIAXpress is a software tool that allows FOIA tracking from receipt to response; Built-in redaction tool set and full text search; Correspondence and fee/payment management; An integrated web portal to allow electronic request submission and automatic case creation; and the Ability to produce the Department of Justice (DOJ) annual FOIA Report in seconds
The Contractor shall perform primary activity at the Contractor’s facility near Defense Health Headquarters (DHHQ), Falls Church, Virginia.
Minimum of one (1) year.
Benefits and Perks
How to Apply
Please send the following information to firstname.lastname@example.org: