Senior IT Control and Risk Analyst, FT, Days - IT

Gaithersburg, MD
Jun 11, 2019
Jul 25, 2019
Analyst, IT
Full Time
As a faith-based organization, with over a century of caring for the communities in the Maryland area, Adventist HealthCare has earned a reputation for high-quality, compassionate care. Adventist HealthCare was the first and is the largest healthcare provider in Montgomery County.

Adventist HealthCare seeks to hire a Senior IT Control and Risk Analyst who will embrace our mission to extend God's care through the ministry of physical, mental and spiritual healing. If you want to make a difference in someone's life every day, consider a position with a team of professionals who are doing just that, making a difference.

The Senior IT Control and Risk Analyst is responsible for identifying and monitoring information security risks throughout Adventist HealthCare. This will be accomplished through development and completion of audits, projects and monitoring activities to test the effectiveness and efficiency of IT controls and related processes and validate compliance with applicable policies and regulatory requirements.

Qualified candidates will possess:
• Bachelor's degree in Business, Computer Science, Information Systems/Sciences, Computer Security, Engineering or a related field
• Master's degree in a business or information security related field preferred.
• At least 3 years of IT audit or IT security experience
• Two years of experience leading projects and working independently, preferably in the healthcare setting
• CISA, CRISC, CISSP, HCISSP or equivalent certification preferred

Work Schedule:

Job Responsibilities

1. Develop and implement an IT Security monitoring program including such activities as"
  • Performing HIPAA and general IS Security Risk Assessments
  • Executing an IT Audit program including detailed tests of controls
  • Establishing a Capacity Maturity Model to assess critical business processes
  • Developing and implementing a balanced score card to monitor and evaluate the effectiveness of the IT Security program
  • Facilitate Control Self Assessments system-wide

2. Validate implementation of information security risk mitigation plans. Provide status updates to Information Services and Organizational Integrity leadership as appropriate.

3. Collaboratively with the Chief Information Security Officer, manage all information security related policies by:
  • Inventorying all information security related policies, periodically reviewing and updating all information security related polices as required
  • Identifying emerging information security related risks and developing policies to help mitigate those risks

4. Act as an IT Security subject matter specialist for IT related projects and committees

5. In collaboration with the Information Services Security team, develop and implement the information security awareness program including development of

annual and periodic training materials, performing phishing simulations and other activities to raise awareness of IT security risks.

6. Maintain a working knowledge of:
  • Applicable federal, state and local laws and regulations including Meaningful Use, HIPAA, NIST, ISO27001, and Payment Card Industry compliance
  • Adventist HealthCare policies and procedures related to the Adventist HealthCare Organizational Integrity Program, Code of Ethics, and other Adventist HealthCare policies and procedures

7. Validate that access control, disaster recovery, business continuity, incident response and risk management needs of Adventist HealthCare are properly addressed

At Adventist HealthCare our job is to care for you. We do this by offering:

• Work life balance through non rotating shifts

• Recognition and rewards for professional expertise

• Free Employee parking

• Competitive comprehensive benefit plans offered (including health, disability, PTO and 403B retirement plan with matching and 3 year vesting)

• 100% Coverage for inpatient care - at Adventist HealthCare facilities

• 100% Coverage for urgent care nationwide - after copay

Join the Adventist Healthcare team today! Apply now to be considered.

Tobacco Statement

Tobacco use is a well-recognized preventable cause of death in the United States and an important public health issue. In order to promote and maintain a healthy work environment, Adventist HealthCare will not hire applicants for employment who either state that they are nicotine users or who test positive for nicotine use.

Adventist HealthCare will withdraw offers of employment to applicants who test positive for Cotinine (nicotine). Those testing positive for cotinine are given the opportunity to re-apply in 90 days, if they can truthfully attest that they have not used any nicotine products in the past ninety (90) days and successfully pass follow-up testing.

Equal Employment Opportunity

Adventist HealthCare is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.

Similar jobs