Compliance Specialist Top Skills
3-5 years performing risk assessments in a cross-organizational HIPAA-regulated healthcare IT environment.
3-5 years creating and maintaining security and privacy programs in collaboration with internal and external partners.
Experience maintaining a HITRUST certification - globally recognized validation that an organization meets HITRUST Common Security Framework security and privacy standards.
NIST ComplianceHIPAA ComplianceAudit ProcessesJob DescriptionThe Compliance Specialist will ensure that operations follow all relevant state and federal requirements for securely transacting health information via the Health Information Portal. The Compliance Specialist will be familiar with risk management, comfortable leading internal risk assessments, and possess knowledge of HIPAA and NIST privacy and security requirements for health information networks. This position will work closely with the leadership team, legal counsel, the Privacy Team, and the Security and Risk Management Team to ensure continual improvement of our client's security and risk profile.ResponsibilitiesAssist with the development and implementation of a compliance program that includes preparation for HITRUST certification Create sound internal controls and monitor adherence to them Draft and revise policies Proactively audit processes, practices and documents to identify weaknessesEvaluate activities to assess compliance riskCollaborate with external auditors and the Security Team when neededSet plans to manage a crisis or compliance violationEducate and train employees on regulations and industry practicesAddress employee concerns or questions on complianceKeep abreast of industry standards and business goalsRequirements·Proven experience as a Compliance Officer / Analyst / Specialist ·Experience in risk management·Knowledge of HIPAA and NIST requirements·Familiarity with industry practices and professional standards·Excellent communication skills·Integrity And professional ethics·Attention To detailKnowledge of privacy laws (state and federal such as HIPAA (preferred), PCI, CJIS); proven risk management experience.Required 3 Years Experience in creation of risk management strategies and policy development to handle data breaches and other incidents.Required 3 Years Knowledge of NIST controls and experience with completing/conducting assessments; written and verbal communication.Required 3 Years Strong conflict management skills in order to work with management to ensure security and data protection rules and regulations are in place.Required 3 Years Knowledge of cybersecurity and privacy principlesRequired 3 Years Ability to determine whether a security incident violates a privacy principle or legal standard requiring specific legal action.Required 3 Years Ability to work across departments and business units to implement organization’s privacy principles and programs.Required 3 Years Ability to develop, update, and/or maintain standard operating procedures (SOPs).Required 3 Years Ability to develop clear directions and instructional materials.Additional Skills & QualificationsState/government experience is a plusEmployee Value Proposition (EVP)Long term opportunity 3-5 years12 state holidays1 week ptoWork EnvironmentHybrid or remote but will require working EST hours. 1-year contract, possibility to renew. Business Drivers/Customer ImpactHITRUST certification is what they are trying to obtainAbout TEKsystems: We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company. The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
