System Analyst 6months DC Process Risk Analyst --HIPAA Perform the following activities in support of this project: v Assist in and/or interview process owners on their processes, recording notes that depict aspects of the process, such as, internal and external participants, data flow, internal controls, artifacts produced, tasks and processing sequence.
v Documenting process flows and descriptions, in Visio, making sure to capture appropriate detail for each level of process flow. v Analyze the process to determine if there are any gaps in the information given to ensure completeness of what’s documented. In addition to the analyst’s own conclusions, this includes reviewing documentation with the process owners, getting feedback, and revising the flows. v Analyze processes for potential control risks using generally accepted risk control frameworks, particularly COBIT 4.0. Select appropriate control objectives from recognized risk control frameworks, such as COBIT 4.0, and pre-populate risk control matrices with the control objectives, potential risks, and actual controls gleaned from the process owner interviews. Assist in and/or lead review with process owners to get feedback. v Populate a generic inventory format, by setting up a spreadsheet or simple MS Access database to capture meta data on each information inflow or outflow. v Populate the inventory from existing diverse spreadsheet inventories that exist and/or additional interviews with process owners and members. Coordinate among process members for other inventories. v Document the process and templates necessary to go through the risk assessment process described in the previous bullets. v Assist in the preparation of PowerPoint presentations for the management team, based on a template that would be created by the program manager. v Generate a weekly Status Report * Skills Mandatory :* · Strong verbal and written communication skills · Strong customer skills with internal and external customers · Must be able to perform assigned tasks with minimum supervision · Strong process analysis skills · Strong process documentation skills · Demonstrated business analysis experience. Desirable · Strong internal control orientation and risk analysis background. · Demonstrated experience working with COBIT or other generally accepted risk or control framework. · Demonstrated experience showing understanding of HIPAA Privacy Rule Software: 1. Microsoft Suite, including Visio (mandatory) and MS Access (desirable). -- Thanks & Regards, Anil Ling Technologies, Work: 703-880-2640 Extn: 4013 [email protected]
