HIPAA Security Analyst
3 weeks ago
Title: HIPAA Security Analyst
Location: Rockville, MD (ONSITE)
Start date— ASAP
Duration – One contractor for approximately 6-9 months
Locals preferred
100% Remote for right candidate
THE ASSIGNMENT OF WORK IS CONTINGENT UPON:
Selection of an acceptable task order proposal resulting from this task order proposal
Request.
Selected candidate may be required to complete a successful Background Investigation.
Selected candidate may be requested to provide further documentation of education
credentials and/or certifications.
Selected candidate may be required to participate in an in-person or Microsoft Teams video
interview.
Job Description:
A HIPAA Security Analyst ensures that an organization complies with the HIPAA Security Rule when handling electronic protected health information (ePHI). The HIPAA Security Analyst is expected to be well organized, detail oriented, understand and demonstrate compliance documentation writing vocabulary, have current and relevant IT technology experience with a strong security focus, work comfortably under pressure, and deliver on tight deadlines. This position is responsible for establishing a structured approach to aligning cyber/information security with business objectives, compliance standards in support of HIPAA Assessments needs and organizational information security practices.
- Support Information Security and Risk Management by maintaining and enforcing the Information Security and risk management framework/methodology, including execution of risk analysis and risk mitigation strategies.
- Manage the process of gathering, analyzing, and assessing the current and future threat landscape, as well as providing the CISO with a realistic overview of risks and threats in the enterprise environment.
- Exhibit best-practice risk management skills through effective internal risk controls, risk monitoring, risk assessment, and improvement of risk management processes.
- Document and maintain the enterprise security risk governance methodology and risk management policy, process, and procedure.
- Organize and perform the enterprise security risk assessment and gap analysis for all technologies, products, and functions introduced, including maintaining risk project work plans to measure and manage progress.
- Track and document all internal risk reviews, assessments, risk acceptances, and security exceptions in a GRC tool.
- Work with the Senior Healthcare CISO/OHCIO to ensure a convergence of business, technical, and security requirements; liaise with stakeholders to align the existing technical installed base and skills with future architectural requirements.
- Develop a strong working relationship with the CISO to assess security compliance requirements, the effectiveness of security policies, and legal, regulatory, and audit requirements.
- Serve as the information security liaison and subject matter expert for all relevant EMR and PHI-related security risks.
- Participate in all relevant audits and risk assessment activities (whether operational risk, legal/compliance risk, reputational risk, or information security risk).
- Aid in the planning and execution of risk remediation activities including the identification of practical, cost-effective solutions.
- Facilitate team meetings between stakeholders, project leaders, and the Information Technology teams.
- Attend regular team, management, and project meetings and provide both verbal and written reports to the Leadership Team as required. This includes coordinating with and supporting the Senior CISO.
Keep informed on current threats and industry regulations.
Mandatory Qualifications:
Healthcare industry experience required with understanding of EMR systems and data privacy issues related to PHI
- Familiarity with other compliance frameworks such as HIPAA, HITRUST, HITECH, FedRAMP, FISMA, SOC, PCI, ISO, etc. is preferred.
- Experience with reviewing IT solution requirements and security controls implementation
- A strong understanding of the business impact of security tools, technologies, and policies.
- Strong working knowledge of HIPAA, Joint Commission, CMS, and other regulatory legislation pertinent to the healthcare industry
- Knowledge and experience working with a GRC Software tool
- Experience in conducting and responding to information security assessments and audits.
- Strong analytical skills and the ability to resolve complex security vulnerabilities and design compensating controls
- Must possess a high degree of integrity and trust along with the ability to work independently
- Must be able to work independently as well as work as part of a fast-moving team
- Must be able to work at various locations, when necessary, along with working site visits to conduct assessment meetings
Educational Level:
A bachelor's degree in information systems CISSP, CISA, CRISC or other relevant security qualification
Years of Experience: 5+ years’ experience in an information/cyber security, risk, and compliance role to include advising executives, IT management, and other stakeholders on compliant strategies and solutions.
Interviews:
Please note that both remote and in-person interviews may be required for this opportunity.
-
HIPAA Security Analyst
3 weeks ago
Rockville, United States Scubyt Full timeTitle: HIPAA Security AnalystLocation: Rockville, MD (ONSITE)Start date— ASAPDuration – One contractor for approximately 6-9 monthsLocals preferred100% Remote for right candidateTHE ASSIGNMENT OF WORK IS CONTINGENT UPON:Selection of an acceptable task order proposal resulting from this task order proposalRequest.Selected candidate may be required to...
-
HIPAA Security Analyst
4 weeks ago
Rockville, United States Scubyt Full timeTitle: HIPAA Security AnalystLocation: Rockville, MD (ONSITE)Start date— ASAPDuration – One contractor for approximately 6-9 monthsLocals preferredTHE ASSIGNMENT OF WORK IS CONTINGENT UPON:Selection of an acceptable task order proposal resulting from this task order proposalRequest.Selected candidate may be required to complete a successful Background...
-
HIPAA Security Analyst
3 weeks ago
Rockville, United States Scubyt Full timeTitle: HIPAA Security AnalystLocation: Rockville, MD (ONSITE)Start date— ASAPDuration – One contractor for approximately 6-9 monthsLocals preferred100% Remote for right candidateTHE ASSIGNMENT OF WORK IS CONTINGENT UPON:Selection of an acceptable task order proposal resulting from this task order proposalRequest.Selected candidate may be required to...
-
HIPAA Security Compliance Specialist
4 weeks ago
Rockville, Maryland, United States Scubyt Full timeJob Title: HIPAA Security Compliance SpecialistJob Summary:Scubyt is seeking a skilled HIPAA Security Compliance Specialist to ensure compliance with the HIPAA Security Rule when handling electronic protected health information (ePHI). The ideal candidate will be well-organized, detail-oriented, and have strong security knowledge.Key Responsibilities:Support...
-
Senior Cyber Security Analyst
7 days ago
San Antonio, TX, United States University Health Full timePOSITION SUMMARY/RESPONSIBILITIES The Senior Cyber Security Analyst must have a deep understanding of information security protocols and a passion for protecting Community First Health Plans Inc. (Community First) healthcare data. In this role, the Senior Analyst will be instrumental in establishing and maintaining security standards across Community...
-
Rockville, MD, United States NTT DATA Full timeNTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.We are currently seeking a Senior Security Control Assessor tto join our team in Rockville, Maryland, USA.NTT DATA is seeking a highly motivated, flexible,...
-
Security Analyst
3 weeks ago
Columbia, SC, United States System Soft Technologies Full timeJob Description – Security AnalystSystem Soft Technologies is a premier technology company providing exceptional consulting services and solutions that drive innovation, enhance business value, and boost competitiveness. For over 25 years, we have built trusted partnerships with our clients, helping us grow into a $200MM+ enterprise. With the collective...
-
Security Analyst
3 weeks ago
Sacramento, CA, United States System Soft Technologies Full timeWe are seeking a skilled and detail-oriented Security Engineering Analyst to join our Information Security Office section. As a Security Engineering Analyst supporting our Governance and Compliance programs, you will play a crucial role in maintaining the security and integrity of our organization's digital assets. Working as an Engineering Analyst, the...
-
Security Analyst
3 weeks ago
Columbia, SC, United States Rose International Full timeDate Posted: 11/06/2024Hiring Organization: Rose InternationalPosition Number: 473971Job Title: Security AnalystJob Location: Columbia, SC, USA, 29203Work Model: OnsiteEmployment Type: TemporaryEstimated Duration (In months): 13Min Hourly Rate($): 77.00Max Hourly Rate($): 78.00Must Have Skills/Attributes: Cloud, Microsoft Office, SDLC, SQL, Windows Server...
-
IT Security Analyst
2 weeks ago
Detroit, MI, United States Strategic Staffing Solutions Full timeSTRATEGIC STAFFING SOLUTIONS (S3) HAS AN OPENING! All the relevant skills, qualifications and experience that a successful applicant will need are listed in the following description. Strategic Staffing Solutions is currently looking for an IT Security Analyst for a contract opportunity with one of our largest clients located in Detroit, MI! Title: IT...
-
SOC Security Analyst L3
3 weeks ago
College Park, MD, United States BlueVoyant Full timeSOC Security Analyst L3This position is ideally located in College Park, Maryland. Remote US candidates may be considered.The schedule will be a Panama schedule: (slow rotating shift pattern that uses 4 teams and two 12-hour shifts to provide 24/7 coverage. The working and non-working days follow this pattern: 2 days on, 2 days off, 3 days on, 2 days off, 2...
-
Security Analyst
3 weeks ago
Lansing, MI, United States TEKsystems Full timeThe Security Analyst position works as a member of the Security Operations Team. The Security Analyst position reviews and remediates cyber incidents and vulnerabilities found by IT level analysts to IT security specialists and managers to maintain the confidentiality, integrity, and availability of company data.This role has a focus on networking security...
-
Security Analyst
3 weeks ago
Lansing, MI, United States TEKsystems Full timeThe Security Analyst position works as a member of the Security Operations Team. The Security Analyst position reviews and remediates cyber incidents and vulnerabilities found by IT level analysts to IT security specialists and managers to maintain the confidentiality, integrity, and availability of company data.This role has a focus on networking security...
-
Information Security
2 weeks ago
Miramar, FL, United States Elevate Full timeOur client is looking for an Information Security & Systems Analyst that will play a dual role in strengthening their security posture while supporting critical systems administration functions. This position combines security operations with hands-on systems administration expertise to protect and maintain our client's healthcare technology...
-
Information Security
3 weeks ago
Miramar, FL, United States Elevate Full timeOur client is looking for an Information Security & Systems Analyst that will play a dual role in strengthening their security posture while supporting critical systems administration functions. This position combines security operations with hands-on systems administration expertise to protect and maintain our client's healthcare technology...
-
Security Analyst
3 weeks ago
ST Louis, MO, United States PTR Global Full timeSecurity analysts are responsible for analyzing system and application security and making recommendations that optimize the protection of our computer systems and information resources. Security analysts develop, test, implement and maintain security policies and programs. They are responsible for staying current on security best practices and identifying...
-
Epic Security Analyst
3 days ago
New York, NY, United States iSphere Innovation Partners, LLC Full timeAre you an experienced Epic Security professional looking for an exciting opportunity to join a leading IT consulting company? iSphere.net, a premier IT consulting firm, is seeking an Epic Security Analyst II for a full-time, 3 days onsite a week, opportunity in New York, NY (Manhattan). In this role, you will be responsible for managing the security of our...
-
SOC Analyst
3 weeks ago
Queens, NY, United States Medisys Health Network, Inc. Full timeSOC ANALYST Cyber Security Analyst will analyze cybersecurity data within SOC and SIEM environments to detect malicious and anomalous events within an enterprise network.• Implement risk management programs for our federal clients by utilizing NIST, RMF, and HIPAA compliance frameworks.• Enhance cyber awareness with clients and project teams.• Work...
-
Information Security Analyst
3 weeks ago
Washington, DC, United States Chenega Corporation Full timeOverview ** Hybrid, must reside in the Washington D.C. area for weekly onsite work. **Come join a company that strives for Extraordinary People and Exceptional PerformanceChenega Services & Federal Solutions, LLC, a Chenega Professional Services’ company, is looking for an Information Security Analyst II to join our team of IT experts at the Federal...
-
Rockville, United States NTT DATA Full timeNTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.We are currently seeking a Senior Security Control Assessor tto join our team in Rockville, Maryland, USA.NTT DATA is seeking a highly motivated, flexible,...
