Healthcare Security Analyst (CISSP/CIPP) with encryption, audit, MARS-E, POAM, PM, PHI/PII, HIPAA, NIST, Health Information Exchange (HIX), RFP and WebLogic experience

Job ID: MS-73137 (90090717)3P

Healthcare Security Analyst (CISSP/CIPP) with encryption, audit, MARS-E, POAM, PM, PHI/PII, HIPAA, NIST, Health Information Exchange (HIX), RFP and WebLogic experience

Location: Jackson MS (Medicaid)
Duration: 36 months
positions:1(1/2)
Local always a plus
Previous State/Gov experience always a plus

Skills:
Required Skills: Security related
Experience in IT security roles on Information Technology projects – 5 Years
Experience in IT security roles working with hosted environments or hosted infrastructure/datacenters with multiple vendors – 4
Years
Experience utilizing and implementing security, privacy, network, and datacenter best practices – 2 Years
Experience in IT security roles working with encryption of data in transit and at rest, preferably using multiple encryption
methodologies – 2 Years
Experience with privacy and security technologies and methodologies – 2 Years
Experience facilitating and responding to security audits, specifically MARS-E and management of POAM resolution. – 3 Years
Required Skills: General Project Management Related
Project management experience including reporting project status, project milestones, project achievements, and project verbally and in writing to senior leadership – 5 Years
Verifiable experience developing and giving presentations – 2 Years
Experience facilitating a variety of different types of project meetings with various stakeholders at multiple levels throughagency and its business partners – 2 Years
Ability to effectively communicate in English, verbally and in writing – No minimum requirement
Strong interpersonal, verbal and written communications skills – No minimum requirement

Required Skills: Technical/Business
IT security and data privacy experience in a healthcare environment – 2 Years
Experience securing PHI/PII data in accordance with Health Insurance Portability and Accountability Act (HIPAA) regulations -Experience ensuring that systems are in compliance with federal IT security regulations (HIPAA, NIST, MARS-E, etc.) and remedeficiencies – 3 Years
Experience with disaster recovery and failover methodologies while adhering to security requirements – 1 Year
Candidates must possess the following Business skillsets:
Ability to interact and translate between technical staff and business users regarding business and information technology needs
Strong listening and problem resolution skills
Strong analytical skills and critical thinking skills
Ability to be flexible, multi-task and work within deadlines
Ability to work as a part of a team or independently

Candidates must possess the following Technical skillsets:
Experience in enforcing the HIPAA Breach Notification Rule, including preparation of a formal response for any HIPAA Breach –
Documented experience required; no minimum length of time is specified
Additional consideration may be given for security and network certifications. Vendor must specify and provide proof of the
certification(s). Examples included but are not limited to: Certified Information Privacy Professional (CIPP), Certified Information
Systems Security Professional (CISSP), etc. – Documented experience required; no minimum length of time is specified
Experience with Health Information Exchange (HIE) deployments, interfaces, and HIE interoperability projects utilizing established
industry best practices and standards – 2 Years
Experience documenting requirements and validating the security components of deliverables, RFP evaluation as needed, etc. –
2 Years
Preferred/Not Required
Provide any skills/experience that would be helpful for the candidate to possess but not required. Examples: Previous supervisory
experience, WebLogic experience helpful, etc.
Local always a plus
Previous State/Gov experience always a plus

MS-73137.docx

E-RTR -73137

References

Leave a Reply