*Security Analysts – (Privacy). *
*Albany, NY*
*Phone interview*
These are active and needed NOW, local to Albany or they can travel in, but
need to be onsite.
*Senior Privacy Control Analyst Job Description*
At a minimum, XSH will need to have a full time Senior
Privacy Analyst (SPA) immediately to support developing, implementing and
monitoring of the controls. Additional, the SPA will work with the NYMMIS
ISO, and the corporate team to audit vendors and teaming partners for
compliance to the controls and incident response.
*Duties: *
• HIPAA privacy analyst, will research and document privacy
policies and procedures for NYMMIS system.
• Healthcare Experience
• Investigating, documenting and tracking incidents or breaches
of unauthorized disclosure of PHI or PII.
• Data handling client’s PHI, receiving PHI, and Chain of
Custody.
• Responding to internal client HIPAA questions.
• Critical analysis
• Strong communication both verbal and written
• Follow up skills with attention to detail
*Job Requirements*
*Must have: *
• A minimum of 5 years of HIPAA compliance or privacy
experience
• Knowledge of HIPAA, ACA, NIST, HITECH, IRS, CMS and
compliance
• Understanding of regulatory laws related to HIPAA as well as
Health Enterprise experience
• Knowledge of HIPAA Privacy and Security standards and other
regulatory standards for privacy, confidentiality, integrity and
availability
• Certified in - CISM, CISA, CRISK, Certified Information
Privacy Manager (CIPM) and/or Certified Information Privacy Technologist
• Over 5 Years of experience in information systems/IT, IT
audit, information security, information risk management, or enterprise
privacy that directly aligns with the specific responsibilities for this
position.
*Nice to have skills:*
•Possession and continual application of the following character traits:
dependability, integrity, decisiveness, tact, courage, enthusiasm, and
sound judgement.
•Working knowledge of common information security concepts, practices, and
technologies, including best practices for:
•Network defense and secure network design
•Network, operating system, and application vulnerability management
•Secure software development
•Logging and monitoring
•Identification, authentication, and authorization mechanisms
•Account provisioning, review, and de-provisioning
•Data loss prevention
•General knowledge of industry standard security frameworks, including the
NIST Cybersecurity Framework.
•General knowledge and understanding of regulatory compliance mandates
concerning data protection, including HIPAA, GLBA, and various state laws
and regulations.
•General knowledge of IT audit and assessment concepts and practices.
•General knowledge of common web application vulnerabilities strongly
preferred.
*Thanks & Regards*
*Ali QuasimTechnical RecruiterApetan Consulting LLC**Phone: 201-620-9700* **
142 | Mail: **a...@apetan.com <a...@apetan.com> *
--
You received this message because you are subscribed to the Google Groups
"Business_Intelligence" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to business_intelligence+unsubscr...@googlegroups.com.
To post to this group, send email to business_intelligence@googlegroups.com.
Visit this group at https://groups.google.com/group/business_intelligence.
For more options, visit https://groups.google.com/d/optout.
