Job Summary The Information Security Analyst - Risk position has principal accountabilities including ensuring the appropriate levels of information technology security are utilized throughout the organization based upon HIPAA, HITECH and other regulations, specific information security management controls, and best practice processes. This position will work closely with the Corporate Compliance and Human Resources departments to measure and monitor compliance with HIPAA and HITECH security requirements, corporate and industry standards, and requirements assigned by Chief Information Security Officer.
Analyzes information technology application and network requirements and develops specifications for information security profiles for access and audits.
Develops, reviews, and maintains all policies, procedures and standards for identifying, tracking, and reporting authorized and unauthorized access and/or breaches of information security, confidentiality and privacy.
Actively tracks and works with Information Services teams to resolve all non-compliance issues identified through audits, and/or walkthroughs.
Participates in a proactive audit process that monitors and reviews employee, physicians, and volunteer access.
Participates in a proactive audit process that monitors and reviews new employee, physicians, and volunteer access prior to their first 90 days of employment.
Designs and performs Internet access and usage audits to maintain security as well as identify and block inappropriate web sites.
Designs, builds, tests and utilizes Internet access and monitoring reports that highlight employee, physicians, and volunteer abuse
Evaluates and assigns risk ratings to applications
Facilitates on-going work group sessions and other brainstorming meetings related to the impact of information security and workflow processes.
Collaborates and performs walkthroughs with Privacy officer to identify existing non-compliance areas and issues.
Work collaboratively with Human Resources and Corporate Compliance to address any confirmed information security beaches and/or abuse situations.
Develops, coordinates and oversees on a routine basis internal and external vulnerability assessments.
Internal Number: 2018-14048
Let’s transform healthcare together.
Every day, we bring patients convenient, coordinated access to healthcare while providing meaningful service to our community.
Join us and you will:
Develop professionally and achieve your career goals
Enrich your life with a focus on wellness
Enjoy a compassionate, caring culture with outreach to our local communities
Support the well-being of you and your family with a diverse portfolio of benefits
Welcome to HonorHealth.
We are a non-profit, local healthcare organization known for community service and outstanding medical quality. Our organization encompasses five acute care hospitals with approximately 10,500 employees and 3,100 volunteers, urgent care centers, clinical research, medical education, an inpatient rehabilitation hospital, an Accountable Care Organization, two foundations, and extensive community services.