Hi, Please find the Urgent Requirement below and do reply back if you are comfortable with below required details.
*Position **: Senior Healthcare Compliance Analyst* Location : Denver, CO Duration : 6+ Months *Duties and Responsibilities:* The Senior Healthcare Compliance Analyst reports to the Director, Information Security: Governance Risk and Compliance. The Senior Analyst is responsible to provide internal governance to primarily achieve HITRUST compliance. The role will play an active part in performing internal assessments and recommend solutions to remediate issues related to HITRUST compliance. The role will also act as a liaison with external auditors and manage interactions with TeleTech’s HITRUST assessor. The position will provide internal services related to security policy, controls, and evidence around the IT risk reporting, compliance and operational processes, including business process and IT management controls. The Analyst facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings. Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications. Provides project status reports, including outstanding issues. It will include facilitating and completing deliverables involving the following: · Supporting the completion of HITRUST compliance efforts, including the communication of key milestones · Obtain and review evidence of compliance for adherence to standards · Collaboration with other Compliance Analysts to identify overlaps with complementary compliance frameworks · Key domains of compliance controls, including change management, access to systems, networks and data, computer operations and systems development. · Driving necessary system and process updates across key HITRUST domains · Management of IT security and IT risk (e.g., data systems, network and applications) across the enterprise. · Assist with the development of policies, procedures and standards that meet existing and newly developed policy and regulatory requirements within HITRUST · Assist with facilitating IT security/risk training curriculum. · Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. · Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Minimum Job Requirements · A Bachelor's degree in Information Systems, Computer Science, Information Security or related field required, with understanding and experience with industry and regulatory standards. · Minimum 7-10 years of experience in IT Security, Corporate Risk Governance, or as an internal /external IT auditor, an internal security or risk assessment professional at retailer, institution, bank or processor · Knowledge of regulatory requirements and industry standards (HITRUST, HIPAA Security Rule, PCI) · Knowledge of technical infrastructure, network, system, database and application level security · Windows workstation and server administration experience preferred. · An understanding of the importance of business ethics. · Prior experience performing security reviews and risk assessments preferred. · Proven ability to engage with Senior Management · Excellent PC skills (Excel, Word, Sharepoint) · Excellent communication skills, verbal and written *Highly Desired Skills:* · Previous audit background · Healthcare or insurance industry experience · CISA/CISM certification a plus · Proficient on RSA Archer GRC or other similar GRC tool *Thanks & Regards,* Jessie Parker -- You received this message because you are subscribed to the Google Groups "US_IT.Groups" group. To unsubscribe from this group and stop receiving emails from it, send an email to us_itgroups+unsubscr...@googlegroups.com. To post to this group, send email to us_itgroups@googlegroups.com. Visit this group at https://groups.google.com/group/us_itgroups. For more options, visit https://groups.google.com/d/optout.
