Novant Health logo
Cyber Security Compliance Analyst - Novant Health Charlotte, NC, USA Bookmark Share Print 330 0 3

Listing Details

  • Salary: $120000 - $150000
  • Citizenship: Us Citizen
  • Incentives: Bonus

 

  • Education: Bachelors Degree
  • Travel: No Travel
  • Telework: No Telecommute

Listing Description

The Information Security Policy and Compliance Analyst develops implements, and maintains information security policies, and supporting standards - ensuring they are consistent with authoritative sources and corporate strategic objectives.  The Information Security Policy and Compliance Analyst also assists other Health departments with aligning their local processes and procedures to approved policies and standards.  Other duties will include interaction with internal and external IT auditors that identify and assess information security risk to the business

 

Job Duties/Requirements:

·         Develop, document, and maintain information security policies.

·         Understand and manage legal and regulatory requirements regarding cybersecurity, including privacy and civil liberties obligations.

·         Establish cybersecurity roles and responsibilities for the entire workforce and third party stakeholders.

·         Assist with enterprise cybersecurity awareness and training activities, ensuring all users, privileged users, senior executives, physical security, and information security team members understand their roles and responsibilities.

·         Provide input on security requirements to be included in statements of work and other appropriate procurement documents.

·         Maintain information security policies, and supporting standards - ensuring they are consistent with authoritative sources (compliance, regulation, leading practice) and corporate strategic objectives.

·         Evaluate information technology business practices and work with technical subject matter experts to determine appropriate information security controls in support of compliance requirements.

·         Maintain current and detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the discovery of new vulnerabilities or threat vectors.

·         Act as a trusted advisor and consultant for information security, sharing subject matter knowledge with department and customers.

·         Knowledge of the NIST Cybersecurity Framework for Critical Infrastructure

·         Knowledge of regulatory and compliance specifications mandated by HIPAA, Sarbanes-Oxley, PCI DSS.

·         Knowledge of information security leading practices such as NIST 800-53r4, ISO 27001, SANS CSC.



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765