Job Description
Domain: Integrated Healthcare & Health Insurance (Payer/Provider)
Regulatory Focus: APRA CPS 230, CPS 234, and Privacy Act 1988 (Cth)
Technology Stack: OneTrust CMP, AWS Native Data Lake (S3, Glue, Lake Formation)
Key Responsibilities
o APRA-Aligned Consent Strategy: Architect a "Consent-as-a-Service" model that directly supports CPS 234 information security controls by ensuring only authorised, consented data flows into critical assets.
o Operational Risk & Resilience: Define and implement consent workflows that align with CPS 230, focusing on the operational resilience of our digital "critical operations" (e.g., member portals, claims processing) and managing third-party data risks.
o AWS D ata Lake Integration: Lead the technical implementation of OneTrust Universal Consent within a native AWS environment.
- Integrate consent signals into Amazon S3 and enforce granular data access via AWS Lake Formation and Glue.
- Develop API-driven real-time sync between OneTrust and the Data Lake to prevent "consent lag."
o Maturity Evolution: Drive the transition from manual, siloed consent processes to an automated, auditable enterprise framework.
o Healthcare Privacy Excellence: Ensure all digital interactions comply with the Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs) regarding sensitive health information.
Essential Qualifications & Experience
o Australian Healthcare Domain: 5+ years of experience in the Australian Health Insurance (Payer) or Integrated Healthcare industry. Deep understanding of Medicare, PHI, and local member-centric digital journeys.
o OneTrust Expert: Advanced hands-on experience with OneTrust CMP, Universal Consent, and Preference Management. OTCP certification is highly regarded.
o APRA Regulatory Knowledge: Demonstrated ability to translate CPS 230 and CPS 234 requirements into technical data governance controls.
o AWS Technical Stack: Proficiency in native AWS services including S3, Lambda, Glue, and Athena. Capability to write Python/SQL for complex data integration and validation.
