Cottage Health · 15 hours ago
Governance Risk & Compliance Analyst Senior
United States
Full-time
Remote
Senior Level, Lead/Staff
$49.87/hr - $76.05/hr
8+ years expCottage Health is a leading acute care hospital system located on the central coast of California, known for its superior patient care and innovation. The Senior Governance Risk & Compliance Analyst will develop and manage enterprise-wide Security Governance, Risk, and Compliance programs to identify and mitigate security risks while ensuring compliance with various regulatory requirements.
Health CareMedicalWellness
Responsibilities
Assists in the execution of the enterprise-wide Security Risk Management Program to ensure critical security risks are identified, reported, and remediated in a timely manner. Meets with various IT teams and perform security assessments and audits to ensure that issues are included on the Security Risk Register.Ensures Security Risk Register items are remediated in a timely and appropriate manner. (5%)
Ensures compliance with HIPAA Security requirements, Meaningful Use regulations, Payment Card Industry (PCI) requirements, and other compliance requirements for healthcare IT systems. (30%)
Supports the development and maintenance of the Security Governance, Risk and Compliance Strategy to ensure HIPAA Security requirements, PCI requirements, Privacy Policy and other audit compliance requirements are met.Meets with external 3rd party suppliers to ensure that suppliers meet the 3rd Party Compliance Standards and include any issues on the Security Risk Register.Assists with the HIPAA/PCI Compliance Program to assess and report on the state of compliance and to ensure remediation is prioritized appropriately.Develops, implement and report on key security compliance metrics to ensure leadership is aware of regulatory security compliance posture. (15%)
Assists with the development and maintenance of the Security Policy and Standards. (35%)
Assists with the development and maintenance of the Security Policy and Standards. (20%)
(5%)
Qualification
Required
Bachelor's Degree in Computer Science or related field; or equivalent experience (8 years)
One of the following: Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), SANS Security Awareness Professional, CompTIA Security+, CompTIA CySA+ Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC Security Essentials (GSEC), Certified Cloud Security Professional (CCSP), Systems Security Certified Practitioner (SSCP), Advanced in AI Audit (AAIA), Certified Data Privacy Solutions Engineer (CDPSE), Certified in the Governance of Enterprise IT (CGEIT), Certified Cybersecurity Operations Analyst (CCOA)
Working knowledge or HIPAA, Meaningful Use and Payment Card Industry (PCI)
The ability to take technical topics and convey them into business level, risk based discussions with a variety of individuals ranging from management to technical teams
The employee communicates effectively
The ability to take on a project, task with instruction and work through milestones, with management guidance, to completion
Company
Cottage Health
Mission Statement: To provide superior health care for and improve the health of our communities through a commitment to our core values of excellence, integrity, and compassion.
1001-5000 employees
Funding
Current Stage
Late StageTotal Funding
$0.2MKey Investors
Hearst Foundations
2022-01-19Grant· $0.2M
Leadership Team
Richard Beswick
Vice President for Research and Chief Research Officer
Sheri R.
Vice President, Information Technology & Chief Information Officer
Recent News
Company data provided by crunchbase