200+ applicants

Company

Community Health Systems · 5 hours ago

Security Risk Analyst - Compliance Cyber Security (L2) (remote)

Franklin, TN

Full-time

Remote

Mid Level

3+ years exp

Maximize your interview chances

Health CareHospital

Actively Hiring

Insider Connection @Community Health Systems

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Perform risk analysis (HIPAA, Promoting Interoperability) of security controls for the purpose of trend analysis and compliance reporting to enterprise customers

Document gaps in security risk analysis processes and communicate process improvement opportunities to leadership

Perform assessments of appropriate administrative, physical, and technical safeguards with limited supervision to protect the confidentiality, integrity, and availability of confidential or regulated data (SOX, PCI, PHI)

Perform security risk analysis of new and existing applications, devices and services for the purpose of documenting risks introduced by a new or existing project, program, product or solution.

Communicate and collaborate with Technology, Business, and Audit partners to respond to and address compliance risk

Facility follow up and track required remediation controls where necessary

Document security issues resulting from security risk analysis with internal policies and standards or regulatory requirements

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security Risk AnalysisRegulatory StandardsCybersecurity PrinciplesNIST Cybersecurity FrameworkGovernanceComplianceServiceNowWindows EnvironmentMicrosoft Office SuiteGoogle Office SuiteSpreadsheet SkillsFlexible Team PlayerWorks Independently

Required

High School Diploma

3 years of experience with security risk analysis in a medium to large enterprise, preferably in a multi-hospital and/or medical center setting

Experience in regulatory standards (HIPAA, HITECH, PCI, SOX, COBIT)

Working knowledge of cybersecurity principles and practices

Excellent verbal and written communication skills with the ability to interact effectively with all levels of management

Works Independently as well as collaboratively with minimal supervision

Self-starter and flexible team player

Ability to work in an evolving environment with changing processes and procedures

Experience working in a Windows environment

Familiarity with Microsoft / Google office suites

Strong spreadsheet skills

Preferred

Associate’s or Bachelor’s Degree in Cyber Security, Computer Science, Information Systems (or other related field), equivalent certifications, or equivalent work experience.

5 years of experience with security risk analysis in a medium to large enterprise, preferably in a multi-hospital and/or medical center setting

Knowledge of Industry Standard Audit Methodologies

Familiarity with NIST Cybersecurity Framework (CSF)

Core understanding of risk management principles, especially NIST Risk Management Framework (RMF)

Governance, Risk, and Compliance (GRC) platforms

ServiceNow