*Security Analysts – (Privacy). * *Albany, NY*
*Phone interview* These are active and needed NOW, local to Albany or they can travel in, but need to be onsite. *Senior Privacy Control Analyst Job Description* At a minimum, XSH will need to have a full time Senior Privacy Analyst (SPA) immediately to support developing, implementing and monitoring of the controls. Additional, the SPA will work with the NYMMIS ISO, and the corporate team to audit vendors and teaming partners for compliance to the controls and incident response. *Duties: * • HIPAA privacy analyst, will research and document privacy policies and procedures for NYMMIS system. • Healthcare Experience • Investigating, documenting and tracking incidents or breaches of unauthorized disclosure of PHI or PII. • Data handling client’s PHI, receiving PHI, and Chain of Custody. • Responding to internal client HIPAA questions. • Critical analysis • Strong communication both verbal and written • Follow up skills with attention to detail *Job Requirements* *Must have: * • A minimum of 5 years of HIPAA compliance or privacy experience • Knowledge of HIPAA, ACA, NIST, HITECH, IRS, CMS and compliance • Understanding of regulatory laws related to HIPAA as well as Health Enterprise experience • Knowledge of HIPAA Privacy and Security standards and other regulatory standards for privacy, confidentiality, integrity and availability • Certified in - CISM, CISA, CRISK, Certified Information Privacy Manager (CIPM) and/or Certified Information Privacy Technologist • Over 5 Years of experience in information systems/IT, IT audit, information security, information risk management, or enterprise privacy that directly aligns with the specific responsibilities for this position. *Nice to have skills:* •Possession and continual application of the following character traits: dependability, integrity, decisiveness, tact, courage, enthusiasm, and sound judgement. •Working knowledge of common information security concepts, practices, and technologies, including best practices for: •Network defense and secure network design •Network, operating system, and application vulnerability management •Secure software development •Logging and monitoring •Identification, authentication, and authorization mechanisms •Account provisioning, review, and de-provisioning •Data loss prevention •General knowledge of industry standard security frameworks, including the NIST Cybersecurity Framework. •General knowledge and understanding of regulatory compliance mandates concerning data protection, including HIPAA, GLBA, and various state laws and regulations. •General knowledge of IT audit and assessment concepts and practices. •General knowledge of common web application vulnerabilities strongly preferred. *Thanks & Regards* *Ali QuasimTechnical RecruiterApetan Consulting LLC**Phone: 201-620-9700* ** 142 | Mail: **a...@apetan.com <a...@apetan.com> * -- You received this message because you are subscribed to the Google Groups "International SAP Projects" group. To unsubscribe from this group and stop receiving emails from it, send an email to international-sap-projects+unsubscr...@googlegroups.com. To post to this group, send email to international-sap-projects@googlegroups.com. Visit this group at https://groups.google.com/group/international-sap-projects. For more options, visit https://groups.google.com/d/optout.