Senior Security Consultant @ First Health Advisory | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Senior Security Consultant jobs in United States
41 applicants
company-logo

First Health Advisory · 7 hours ago

Senior Security Consultant

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date5+ years exp
ftfMaximize your interview chances
AdviceConsulting
check
Actively Hiring

Insider Connection @First Health Advisory

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Support multiple First Health customers in support of program/project tasks
Present assessment findings and/or program/project updates to client stakeholders
Mentor other First Health Security Consultants
Track program/project tasks to ensure timely competition and delivery
Provide industry-specific expertise and guidance to client
Brainstorm strategies for growth, positive change and improvement
Lead presentations and organize team meetings
Solve problems through helpful recommendations and practical suggestions
Additional responsibilities and duties as assigned
Assist in building out the GRC framework and governance model needed to develop and support the enterprise-wide risk identification, assessment, taxonomy, quantification, remediation, and reporting processes
Develop and maintain information security and IT risk register to track identified risks, risk decisions and related action plans
Develop and maintain appropriate processes, tools, and metrics to efficiently manage and communicate information security and IT risk
Reviews risk status with senior leadership on a regular basis
Collaborate to define IT security standards and develop supporting organizational policies
Support and coordinate procedures and controls that assure compliance with all applicable regulatory and legal requirements, as well as good business practices
Perform enterprise and targeted security and compliance assessments on new and existing systems, processes, and technology
Performs third-party supplier risk assessments to ensure supply chain risk is managed throughout the supplier's lifecycle. Assesses and reports on the risks and benefits for the business as well as mandates for supplier compliance
Articulates results of final assessments to business stakeholders, project sponsors, program managers, and other internal parties
Contributes to maintenance and information gathering for inventory of relevant suppliers/vendors and related controls and risks for ongoing vendor risk management activities
Work with cross-functional business and clinical resources to provide guidance and support and ensure controls are adequate, appropriate, and effective
Supports workforce security activities including culture, awareness, and training
Stay up to date and informed on developing regulatory concerns and changing IT and information security trends

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

GRC frameworkInformation securityIT risk managementRegulatory complianceCISSPNIST Cyber Security FrameworkISO 2700xPCI-DSSHIPAAHITRUSTRisk management principlesSecurity productsHealthcare industry experienceContinuous improvementSoft skills

Required

Bachelor’s degree in computer science or related area, or equivalent work experience
Minimum of 5 years of experience in IT Security, Risk, Compliance, and/or Governance or related fields
Significant experience with legal and regulatory compliance standards and security frameworks such as NIST Cyber Security Framework (CSF), NIST 800-53, ISO 2700x, PCI-DSS, HIPAA, HITRUST, 405(d), etc.
Ability to translate regulatory requirements into practical business considerations and recommendations
Ability to proactively identify opportunities for continuous improvement
Solid understanding of information security, IT networks and technology stacks
Well-founded understanding of risk management principles
Experience with process, risk, and controls management
Experience with security products and knowledge of IT security technologies

Preferred

Industry-recognized certification in security strongly preferred: Security+, Network+, SSCP, HCISSP, CISSP, CISM, CRISC, CISA, CTPRP, or similar
Prior IT and/or cybersecurity hands-on technical experience preferred
Experience working in the healthcare industry

Company

First Health Advisory

twittertwitter
company-logo
First Health Advisory provides risk management and digital transformation consulting services.
dateFounded in 2005
location
Scottsdale, Arizona, USA
people-size51-200 employees
web-link
https://firsthealthadvisory.com

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Carter Groome
Founder and CEO
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot