Description

PHI / PII Identification & Governance

• Identify, document, and classify PHI and PII data elements across applications, databases, and data pipelines.
• Collaborate with Compliance, Legal, Security, and Privacy teams to ensure accurate interpretation of regulatory requirements (e.g., HIPAA, GDPR, local privacy laws as applicable).
• Support audits and assessments by providing clear documentation of sensitive data usage, storage, and flow.

Data Dictionary & Metadata Management

• Create, maintain, and govern an enterprise data dictionary, including:

• Logical and physical data elements

• PHI/PII classification and sensitivity levels

• Definitions, source systems, downstream consumption, and ownership

• Ensure data definitions remain current and aligned across releases and environments.

• Act as a steward for data standards, naming conventions, and business definitions.

Release & Impact Analysis

• Partner with DB Admins, Architects, and Engineering teams to:

• Identify entities, tables, columns, and views impacted by each release

• Analyze upstream and downstream impacts of schema and data model changes

• Document and socialize data impact assessments as part of release planning and approvals.

• Ensure PHI/PII impacts are explicitly identified and reviewed before deployment.

Stakeholder Collaboration

• Serve as the bridge between business, compliance, and technical teams.
• Translate complex data and privacy requirements into clear, actionable documentation for technical teams.
• Facilitate discussions and walkthroughs related to data changes, privacy risks, and mitigation plans.

Documentation & Process Improvement

• Produce high quality artifacts such as:

• Data lineage and entity impact documents

• Functional and data requirements

• Change logs and release notes related to data

• Continuously improve data governance and release impact processes to reduce risk and rework.

Requirements

Core Skills

• Strong experience as a Business Analyst in data centric environments
• Hands on experience identifying and documenting PHI / PII
• Solid understanding of relational databases, entities, tables, and schemas
• Experience maintaining data dictionaries or metadata repositories
• Strong analytical and documentation skills with high attention to detail

Technical & Domain Knowledge

• Working knowledge of:

• SQL (reading and basic querying)

• Data models (logical and physical)

• SDLC and release management processes

• Familiarity with data governance, data lineage, and privacy concepts

• Experience working closely with DB As, Data Engineers, Architects, and QA

Soft Skills

• Excellent communication and stakeholder management skills
• Ability to challenge assumptions and ask the right questions
• Comfortable working across multiple teams and priorities
• Proactive, structured, and compliance-oriented mindset

Preferred Qualifications

• Experience in healthcare, insurance, BFSI, or other regulated domains
• Exposure to tools such as data cataloging or governance platforms
• Prior involvement in audits, regulatory reviews, or data