StLouisRecruiter
the smart solution for St. Louis jobs

IT Security Risk Regulatory Assessor

Company: BJC Healthcare
Location: Saint Louis
Posted on: January 14, 2019

Job Description:

IT Security Risk Regulatory Assessor Job ID: Employment Status: Full-TimeRegular/Temporary: RegularYour Career. Made Better. BJC HealthCare is one of the largest nonprofit health care organizations in the United States, delivering services to residents primarily in the greater St. Louis, southern Illinois and mid-Missouri regions. BJC serves patients and their families in urban, suburban and rural communities through its 15 hospitals and multiple community health locations. Services include inpatient and outpatient care, primary care, community health and wellness, workplace health, home health, community mental health, rehabilitation, long-term care and hospice.IS Security Services serves as an independent, objective catalyst for implementing effective and efficient controls to protect BJC HealthCare (BJC) information resources through collaboration with customers. We provide value to our customers and the organization by: Ensuring compliance with internal policies and external regulations; evaluating information system and application controls; educating BJC employees and other strategic partners on information systems security practices and concepts; acting as a resource on security controls for new and existing information systems and applications; recovering mission critical applications and data vital to the organization and strategic partners; investigating practices not in compliance with established BJC Information Services security policies and standards.Join Us! Role PurposePerforms regulatory IT security risk assessments for BJC. Serves as a subject matter expert in cybersecurity and security risks and controls as it relates to business solutions used to support clinical and other functional areas. Readily identifies mitigating controls for gaps identified to help defend the BJC infrastructure. ResponsibilitiesDevelop enterprise-wide and entity level risk assessment methodology. Present and obtain Senior IT Management approval and implement the process, completing the enterprise and entity level risk assessments on a timely, regular cadence.Perform enterprise-wideband entity-specific regulatory security risk assessments on matters related to: Meaningful Use - This includes but is not limited to conducting on site periodic walk through, perform quarterly and other required reporting for the Book of Evidence as determined by the Meaningful Use Team. PCI-DSS compliance efforts -This includes but is not limited to performing PCI assessments, performing testing of controls, meeting with business solution owners and crafting appropriate and actionable remediating activities, performing follow up duties including gathering substantiation of mitigation plan completion and other duties. Responsible for effective, timely reporting of assessments and follow up. IT Audit and Compliance Projects, including oversight of external auditors, consultants and assessors. Leading the IT Security response to OCR investigations, as assigned.Policy Development: Develop enterprise-wide compliance policies related to the HITECH/HIPAA Security Rule, PCI-DSS, Meaningful Use, GDPR and others. Develop IT Governance contract provisions for external service providers and vendors. IT Security by serving on various compliance and legal committees and other groups.Perform full, detailed regulatory security risk assessments on high or critical applications, identifying control gaps and working with business owners to provide actionable risk remediation activities and timelines. Able to research, analyze, interpret, evaluate, and integrate complex data from a wide variety of sources and provide creative solutions that align with strategic clinical and business workflows. Ensure compliance of system and application security within scope of responsibility, in accordance with defined service levels, security practices/guidelines, and relevant technology standards. Perform quarterly follow up activities to report on status and/or mitigation completion. Skillfully interact with business process owners, IT technical and security personnel as well as vendors, management and other interested parties is required. This includes but is not limited to conducting meetings with business process owners and vendors, investigating vendor security posture and performance, reviewing baseline controls and gaps and documenting results. Effectively report findings in a formal Security Risk Assessment report. Identify and complete Risk Acceptance forms where an exception to a policy or requirement is significant and needs to be reported to Management for approval.Conducts follow up and assists with resolution of all findings (internal/external audit, other) added to risk register. Add and maintain status updates for high and critical findings for high and critical business solutions. Minimum Requirements Degree Associate's Degree Experience 5-10 years Preferred Requirements and Additional Job Information Degree Bachelor's Degree Supervisor Experience Licenses & Certifications CEHCIACISACert. Info Security OfficerCISSPHealthcare Information SecPayment Card IndustryQualified Security Assessor Benefits StatementNote: not all benefits apply to all openings- Comprehensive medical, dental, life insurance, and disability plan options- Pension Plan/403(b) Plan- 401(k) plan- Tuition Assistance- Health Care and Dependent Care Reimbursement Accounts- On-Site Fitness Center (depending on location)- Paid Time Off Program for vacation, holiday and sick time Pension does not apply to Memorial Hospital, Memorial Hospital East, Memorial Medical Group, Alton Memorial or Parkland Health Center Legal Statement The above information on this description has been designed to indicate the general nature and level of work performed by employees in this position. It is not designed to contain or be interpreted as an exhaustive list of all responsibilities, duties and qualifications required of employees assigned to this job. Equal Opportunity Employer

Keywords: BJC Healthcare, St. Louis , IT Security Risk Regulatory Assessor, Other , Saint Louis, Missouri

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Other Jobs


Deputy Juvenile Officer
Description: Deputy Juvenile Officer I/II available
Company: Juvenile Family Court
Location: Saint Louis
Posted on: 01/23/2019

Interviewing Now - Full Time and Part Time Positions
Description: Our expanding healthcare benefits company is seeking highly motivated individuals to join our team. These position you would be working from your home. We have two
Company: Health Inc.
Location: Springfield
Posted on: 01/23/2019

Now Interviewing - PT/FT From Home
Description: Are you looking for a career change Are you looking just to supplement your income The nations premier provider of health care access in the US is looking for motivated self-starters to enjoy a career (more...)
Company: Professional Home Career Advantage
Location: Saint Louis
Posted on: 01/23/2019


Bio-statistician/ Data Scientist
Description: Summary This position is responsible for performing statistical analysis in support of research and development projects to advance AFB's pipeline of palatability solutions. Primary areas of emphasis (more...)
Company: AFB International
Location: Saint Charles
Posted on: 01/23/2019

Work From Home!
Description: We have two positions we are wanting to fill. The position requires individual who are self-motivated and
Company: Garcia Healthcare
Location: Saint Charles
Posted on: 01/23/2019

Interior Design Intern Portfolio Services Center (Military Veterans Wanted!)
Description: Job Title Interior Design Intern, Portfolio Services Center Job Description Summary Cushman Wakefield is a global leader in commercial real estate services, helping clients transform the way people (more...)
Company: Cushman & Wakefield
Location: Saint Louis
Posted on: 01/23/2019

FIRE WATER cleaning &
Description: FIRE WATER cleaning restoration company looking for motivated people for specialized cleaning restoration of fire damaged homes and businesses. Full time positions. Starting pay 12 per hour.
Company: Belleville, IL Area Jobs
Location: Belleville
Posted on: 01/23/2019

Claims Representative I - PSA
Description: Accurately interpret regulatory guidelines for claims processing. Review and research claims and determine coverage based on plan documents and claims processing guidelines. Adjudicate claims for payment (more...)
Company: PacificSource Health Plans
Location: Springfield
Posted on: 01/23/2019

Inbound Travel Consultant
Description: Assisting Inbound Business Customers with their Corporate Travel Bookings. Must be professional and have previous international travel booking experience. We are the number one contact center and client (more...)
Company: Mommy Jobs Online
Location: Springfield
Posted on: 01/23/2019

Virtual Call Center Needs Workers
Description: TeleReach Corporate is a national telephone-marketing firm engaged exclusively in outbound business to business calls. We offer a unique opportunity with an excellent earning
Company: TeleReach Corporate
Location: Chesterfield
Posted on: 01/23/2019

Log In or Create An Account

Get the latest Missouri jobs by following @recnetMO on Twitter!

St. Louis RSS job feeds