Job ID: 946383
Facility: Vidant Health
Location: Greenville, NC
Date Posted: Dec 31, 2020
About Vidant Health
Vidant Health, located in eastern North Carolina, is a comprehensive health system that is made up of 9 hospitals that serve 1.4 million people in 29 counties. Vidant Health includes Vidant Medical Center, community hospitals, physician practices and partners that collaborate with Vidant Health to enhance the quality of life of our patients.
Information Services at Vidant Health
Vidant Health offers comprehensive Information Technology (IT) services and infrastructure to support and enable all aspects of organizational operations. Our IT division consists of a state-of-the-art data center located in Greenville, NC. The data center services all information technology needs of Vidant Health facilities. All Vidant Health owned or leased hospitals are on a common IT platform, including our electronic health record (EHR) that uses Epic's suite of applications. Vidant Health has achieved Meaningful Use Stage 2 recognition and is also approaching Stage 7 for HIMSS Analytics’ Electronic Medical Records Adoption Model (EMRAM) recognition.
Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures and standards in order to validate maintenance of secure configurations
Map Vidant’s multiple security control framework requirements and regulatory requirements across the information security framework to identify overlapping requirements and compliance efficiencies, including HIPAA. HITRUST experience highly desirable
Track enterprise compliance across multiple security frameworks including SOC 2, NIST CSF and HIPAA and maintain up-to-date records of requirements and corresponding mitigating controls
Monitor third-party risk assessments and assist in performing internal risk assessments
Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle
Monitor Vidant’s change management process to ensure compliance
Develop key performance metrics to track and ensure compliance with established policies and standards
Support development of security processes and procedures and support service-level agreements to ensure that security controls are managed and maintained
Participate in the development of security and privacy awareness training in conjunction with other members of the Security Compliance group
Bachelor's Degree or 2 year degree in Computer Science, Computer Technology, Information Management, Business, Healthcare Administration or related field, preferred
1-3 certifications in related technologies, preferred
3-5 plus years of relevant tecnial experience working in large cyber security risk management team and conducting security contral assessments or audits, preferred
1-5 years of collaborative experience in Healthcare, prefer in security in compliance, preferred
Strong oral and written communications skills
Ability to maintain security documentation and manuals
Must have strong analytical and critical-thinking skills
High level of attention to detail and be a self-starter with ability to work independently, multi-task and asjust to shifting priorities
It is the goal of Vidant Health and its entities to employ the most qualified individual who best matches the requirements for the vacant position.
Offers of employment are subject to successful completion of all pre-employment screenings, which may include an occupational health screening, criminal record check, education, reference, and licensure verification.
We value diversity and are proud to be an equal opportunity employer. Decisions of employment are made based on business needs, job requirements and applicant’s qualifications without regard to race, color, religion, gender, national origin, disability status, protected veteran status, genetic information and testing, family and medical leave, sexual orientation, gender identity or expression or any other status protected by law. We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer, or against any individuals who assist or participate in the investigation of any complaint.