MS-99501 (90090222)3P
Hybrid Healthcare IT Security PM (CIPP/CISSP) with PHI/PII, HIPAA, NIST, MARS-E, DR, HIE, RFP writing experience
Location: Jackson, MS (Medicaid)
Duration: 24 Months
Skills:
Required Skills:
Security related
Experience in IT security roles on Information Technology projects – 5 Years
Experience in IT security roles working with hosted environments or hosted infrastructure/datacenters with multiple vendor s – 4
Years
Experience utilizing and implementing security, privacy, network, and datacenter best practices – 2 Years
Experience in IT security roles working with encryption of data in transit and at rest, preferably using multiple encryption methodologies – 2 Years
Experience with privacy and security technologies and methodologies – 2 Years
Experience facilitating and responding to security audits, specifically MARS-E and management of POAM resolution. – 3 Years
Required Skills: General Project Management Related
Project management experience including reporting project status, project milestones, project achievements, and project risks verbally and in writing to senior leadership – 5 Years
Verifiable experience developing and giving presentations – 2 Years
Experience facilitating a variety of different types of project meetings with various stakeholders at multiple levels through out the agency and its business partners – 2 Years
Ability to effectively communicate in English, verbally and in writing – No minimum requirement
Strong interpersonal, verbal and written communications skills – No minimum requirement
Required Skills: Technical/Business
IT security and data privacy experience in a healthcare environment – 2 Years
Experience securing PHI/PII data in accordance with Health Insurance Portability and Accountability Act (HIPAA) regulations – 5 Years Experience ensuring that systems are in compliance with federal IT security regulations (HIPAA, NIST, MARS-E, etc.) and remediating deficiencies – 3 Years
Experience with disaster recovery and failover methodologies while adhering to security requirements – 1 Year
Candidates must possess the following Business skillsets:
Ability to interact and translate between technical staff and business users regarding business and information technology needs
Strong listening and problem resolution skills
Strong analytical skills and critical thinking skills
Ability to be flexible, multi-task and work within deadlines
Ability to work as a part of a team or independently
Candidates must possess the following Technical skillsets:
Experience in enforcing the HIPAA Breach Notification Rule, including preparation of a formal response for any HIPAA Breach –
Documented experience required; no minimum length of time is specified
Additional consideration may be given for security and network certifications. Vendor must specify and provide proof of the certification(s). Examples included but are not limited to: Certified Information Privacy Professional (CIPP), Certified Information Systems Security Professional (CISSP), etc. – Documented experience required; no minimum length of time is specified
Experience with Health Information Exchange (HIE) deployments, interfaces, and HIE interoperability projects utilizing established industry best practices and standards – 2 Years
Experience documenting requirements and validating the security components of deliverables, RFP evaluation as needed, etc. –
2 Years
Preferred/Not Required
Provide any skills/experience that would be helpful for the candidate to possess but not required. Examples: Previous supervisory experience, WebLogic experience helpful, etc.
Local always a plus
Previous State/Gov experience always a plus