HIPAA Security Analyst 100% REMOTE @ Scubyt | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
HIPAA Security Analyst 100% REMOTE jobs in United States
187 applicants
company-logo

Scubyt · 6 hours ago

HIPAA Security Analyst 100% REMOTE

positionUnited States
timeContract
remoteRemote
seniorityMid, Senior Level
date5+ years exp
ftfMaximize your interview chances
ConsultingInformation Technology
badNo H1Bnote
Hiring Manager
Saif M
linkedin

Insider Connection @Scubyt

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Support Information Security and Risk Management by maintaining and enforcing the Information Security and risk management framework/methodology, including execution of risk analysis and risk mitigation strategies.
Manage the process of gathering, analyzing, and assessing the current and future threat landscape, as well as providing the CISO with a realistic overview of risks and threats in the enterprise environment.
Exhibit best-practice risk management skills through effective internal risk controls, risk monitoring, risk assessment, and improvement of risk management processes.
Document and maintain the enterprise security risk governance methodology and risk management policy, process, and procedure.
Organize and perform the enterprise security risk assessment and gap analysis for all technologies, products, and functions introduced, including maintaining risk project work plans to measure and manage progress.
Track and document all internal risk reviews, assessments, risk acceptances, and security exceptions in a GRC tool.
Work with the Senior Healthcare CISO/OHCIO to ensure a convergence of business, technical, and security requirements; liaise with stakeholders to align the existing technical installed base and skills with future architectural requirements.
Develop a strong working relationship with the CISO to assess security compliance requirements, the effectiveness of security policies, and legal, regulatory, and audit requirements.
Serve as the information security liaison and subject matter expert for all relevant EMR and PHI-related security risks.
Participate in all relevant audits and risk assessment activities (whether operational risk, legal/compliance risk, reputational risk, or information security risk).
Aid in the planning and execution of risk remediation activities including the identification of practical, cost-effective solutions.
Facilitate team meetings between stakeholders, project leaders, and the Information Technology teams.
Attend regular team, management, and project meetings and provide both verbal and written reports to the Leadership Team as required. This includes coordinating with and supporting the Senior CISO.
Keep informed on current threats and industry regulations.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Healthcare industry experienceEMR systems knowledgeHIPAA complianceGRC Software toolInformation security assessmentsRisk managementSecurity controls implementationCISSP certificationCISA certificationCRISC certificationCompliance frameworks knowledge

Required

Healthcare industry experience required with understanding of EMR systems and data privacy issues related to PHI
Experience with reviewing IT solution requirements and security controls implementation
A strong understanding of the business impact of security tools, technologies, and policies.
Strong working knowledge of HIPAA, Joint Commission, CMS, and other regulatory legislation pertinent to the healthcare industry
Knowledge and experience working with a GRC Software tool
Experience in conducting and responding to information security assessments and audits.
Strong analytical skills and the ability to resolve complex security vulnerabilities and design compensating controls
Must possess a high degree of integrity and trust along with the ability to work independently
Must be able to work independently as well as work as part of a fast-moving team
Must be able to work at various locations, when necessary, along with working site visits to conduct assessment meetings
A bachelor's degree in information systems CISSP, CISA, CRISC or other relevant security qualification
5+ years’ experience in an information/cyber security, risk, and compliance role to include advising executives, IT management, and other stakeholders on compliant strategies and solutions.

Preferred

Familiarity with other compliance frameworks such as HIPAA, HITRUST, HITECH, FedRAMP, FISMA, SOC, PCI, ISO, etc.

Company

Scubyt

twittertwittertwitter
company-logo
Scubyt is a software development company that provides web development, application maintenance, and consulting services.
location
Campbell, California, USA
people-size11-50 employees
web-link
https://www.scubyt.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase
logo

Orion

Your AI Copilot