PSO IT Security Specialist

Job Description

Hi,

The following requirement is open with our client.

Tittle : PSO IT Security Specialist

Location : Raleigh, NC - hybrid Model

Duration : 12+ Months

Job Description

• 3-5 years of experience in IT security, preferably within the healthcare industry.
• Prior experience with EHR systems is preferred.
• Experience with HIPAA compliance, healthcare IT security audits, and risk management.
• Knowledge of role-based access control (RBAC), identity management, and data encryption as it relates to healthcare information systems.

Key Responsibilities:

Security Management & Compliance:

• Ensure the EHR system is secure and compliant with federal, state, and organizational security policies, including HIPAA, HITECH, and other applicable regulations.
• Monitor and enforce the appropriate use of EHR access controls, ensuring that users have the correct level of access based on their roles.
• Conduct regular security audits of the EHR system, identifying and mitigating risks or vulnerabilities.
• Develop and maintain security policies, procedures, and guidelines specific to the EHR environment.
• Coordinate with the stakeholders to implement and maintain security tools, such as firewalls, intrusion detection/prevention systems, and encryption mechanisms, as applicable to the EHR system.

Access Controls & User Management:

• Oversee user provisioning and de-provisioning, ensuring appropriate access to the system for all employees and contractors.
• Manage and audit role-based access controls (RBAC) for the system, ensuring that users have the correct level of access for their duties.
• Ensure that system logs and user access records are maintained for auditing purposes, and work with internal audit teams to ensure compliance.
• Incident Response & Risk Management:
• Respond to and investigate security incidents related to the EHR system, ensuring timely resolution and proper reporting to relevant stakeholders.
• Coordinate with clinical, IT, and legal teams on breach notification processes in compliance with regulatory requirements.

Collaboration & Coordination:

• Work closely with other members of the IT security team to ensure alignment between EHR security and overall organizational cybersecurity strategies.
• Participate in governance and compliance meetings, offering insights and reports on EHR security.
• Continuous Improvement:
• Stay informed about emerging security threats, technologies, and best practices related to EHR systems.
• Recommend improvements and optimizations to the EHR security environment based on industry trends and emerging threats.
• Qualifications:

Skills:

• Strong understanding of EHR systems.
• Proficient in healthcare regulations and standards, including HIPAA, HITECH, and meaningful use.
• Familiarity with healthcare IT infrastructure, including networking, firewalls, and database security.

Thanks & regards,

K Bala Krishna

Resource Manager

Resource Informatics Group, Inc

Email: bala@rigusinc.com

Website: www.rigusinc.com