Information Security Analyst II - Greenville, NC

If you are interested in multiple opportunities, you will need to apply for each position separately.

Apply Now

946383

Vidant Health

Full-Time

Regular

Vidant Health

About Vidant Health

Vidant Health, located in eastern North Carolina, is a comprehensive health system that is made up of 9 hospitals that serve 1.4 million people in 29 counties. Vidant Health includes Vidant Medical Center, community hospitals, physician practices and partners that collaborate with Vidant Health to enhance the quality of life of our patients.

Information Services at Vidant Health

Vidant Health offers comprehensive Information Technology (IT) services and infrastructure to support and enable all aspects of organizational operations. Our IT division consists of a state-of-the-art data center located in Greenville, NC. The data center services all information technology needs of Vidant Health facilities. All Vidant Health owned or leased hospitals are on a common IT platform, including our electronic health record (EHR) that uses Epic's suite of applications. Vidant Health has achieved Meaningful Use Stage 2 recognition and is also approaching Stage 7 for HIMSS Analytics’ Electronic Medical Records Adoption Model (EMRAM) recognition.

Responsibilities

  • Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures and standards in order to validate maintenance of secure configurations

  • Map Vidant’s multiple security control framework requirements and regulatory requirements across the information security framework to identify overlapping requirements and compliance efficiencies, including HIPAA.  HITRUST experience highly desirable

  • Track enterprise compliance across multiple security frameworks including SOC 2, NIST CSF and HIPAA and maintain up-to-date records of requirements and corresponding mitigating controls

  • Monitor third-party risk assessments and assist in performing internal risk assessments

  • Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle

  • Monitor Vidant’s change management process to ensure compliance

  • Develop key performance metrics to track and ensure compliance with established policies and standards

  • Support development of security processes and procedures and support service-level agreements to ensure that security controls are managed and maintained

  • Participate in the development of security and privacy awareness training in conjunction with other members of the Security Compliance group

Minimum Requirements

  • Bachelor's Degree or 2 year degree in Computer Science, Computer Technology, Information Management,  Business, Healthcare Administration or related field, preferred

  • 1-3 certifications in related technologies, preferred

  • CISA required

  • HITRUST preferred 

  • 3-5 plus years of relevant tecnial experience working in large cyber security risk management team and conducting security contral assessments or audits, preferred

  • 1-5 years of collaborative experience in Healthcare, prefer in security in compliance, preferred

  • Strong oral and written communications skills

  • Ability to maintain security documentation and manuals

  • Must have strong analytical and critical-thinking skills

  • High level of attention to detail and be a self-starter with ability to work independently, multi-task and asjust to shifting priorities

General Statement

It is the goal of Vidant Health and its entities to employ the most qualified individual who best matches the requirements for the vacant position.

Offers of employment are subject to successful completion of all pre-employment screenings, which may include an occupational health screening, criminal record check, education, reference, and licensure verification.

We value diversity and are proud to be an equal opportunity employer.   Decisions of employment are made based on business needs, job requirements and applicant’s qualifications without regard to race, color, religion, gender, national origin, disability status, protected veteran status, genetic information and testing, family and medical leave, sexual orientation, gender identity or expression or any other status protected by law. We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer, or against any individuals who assist or participate in the investigation of any complaint.

Share This: