Info Sec Healthcare Data Privacy and Audit Analyst

Overview

At Emory Healthcare we fuel your professional journey with better benefits, valuable resources, ongoing mentorship and leadership programs for all types of jobs, and a supportive environment that enables you to reach new heights in your career and be what you want to be. We provide: · Comprehensive health benefits that start day 1 · Student Loan Repayment Assistance & Reimbursement Programs · Family-focused benefits · Wellness incentives Ongoing mentorship, development, leadership programs...and more Work Location: Remote position with exception of 2x/annually participate in Cyber Awareness Month onsite road show meetings. Will only consider applicants from the following states: Alabama, Arkansas, Florida, Georgia, Illinois, Louisiana, Michigan, New Hampshire, North Carolina, Ohio, Pennsylvania, South Carolina, Tennessee, Texas, Virginia and Wisconsin Description The Info Sec Healthcare Data Privacy and Audit Analyst is responsible for a wide range of Healthcare specific audit/compliance related workflows. Specific areas of audits range from data privacy of Epic medical records, litigations, reactive auditing, clinical workflows specific to the healthcare industry, and ediscovery areas such as badge access in OR's, and/or paging access. We are seeking specific Info Sec Audit/Compliance experience in the healthcare industry as such for this role.

• Conducts proactive and reactive audits.
• Clearly document assessments, variances, findings, and remediation plans in Archer.
• Maintain a current knowledge of applicable federal and state privacy laws and accreditation standards, and monitor advancements in information privacy and security technologies to ensure adaptation and compliance.
• Conduct information security research in keeping abreast of latest security issues and keeps abreast of testing tools, techniques, and process improvements in support of security event detection and analysis.
• Use/s the Emory Healthcare values to govern decisions, actions and behaviors. Performs other duties as assigned.

MINIMUM QUALIFICATIONS:

• Bachelor's degree (B.A. / B.S.) or equivalent from an accredited college or university required, with 3-5 years of experience in IT/IS.
• 3-5 years of experience with information security risk analysis, security risk configuration development, or information security audit. Demonstrated understanding of common healthcare technology implementation architectures, common cloud security configurations, identity management solutions and, technologies and application of risk analysis.
• Demonstrable natural aptitude with object relationship and cause/effect.
• Demonstrable familiarity with HIPAA, GDPR, HITECH, and other appropriate information security and information privacy regulatory requirements for healthcare entities a plus.
• In depth knowledge of NIST 800-53, ISO 27K, GDPR, PCI-DSS is desirable.
• Any of the following certifications is a plus: ITIL, any of the following Information Security Certifications: CISSP, HCISSP, CISM, CISA, CIPP, CIPM, CIPT, CPHIMS, PCIP, GSEC, GCIH, GCFE, GCFA, CEH, GPEN, and PM A combination of education and analogous experience may be substituted for some requirements.
• Skills/Abilities/Competencies: Possess strong interpersonal skills to effectively communicate with cross functional teams including staff at all levels of the organization.
• Outstanding time management and organizational skills required.
• An ability to work under the required guidelines and deliver on business/project requirements.
• Ability to work with both team members and staff in a professional manner.
• Comfortable working in a dynamic environment with multiple work streams, goals, and objectives. Possess ability to recommend to ISPO leadership team to prioritize project related tasks.
• Excellent vocabulary, written and verbal communication and effective interpersonal skills is critical.
• Understanding of Windows, Unix/Linux operating systems, security administration, virtualization, and TCP/IP networking concepts.
• Ability to work independently with minimal supervision.
• Ability to successfully negotiate and collaborate with others of different skill sets, backgrounds and levels within and external to the organization.
• Strong problem solving and negotiation skills.
• Ability to effectively conduct meetings, both formal and informal.
• Requires minimal direction from leadership and possesses the ability to learn quickly.

Additional Details Emory is an equal opportunity employer, and qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law. Emory Healthcare is committed to providing reasonable accommodations to qualified individuals with disabilities upon request. Please contact Emory Healthcare’s Human Resources at [email protected]. Please note that one week's advance notice is preferred. Apply tot his job Apply To this Job