What are the responsibilities and job description for the Compliance analyst with Hitrust experience position at SigmaWay?
Job Details
Apply by Email/Direct Application at
Job Description: Compliance Analyst with HITRUST Experience
Role Overview:
We are seeking a skilled Compliance Analyst with expertise in the HITRUST Common Security Framework (CSF) to support our organization's efforts in maintaining compliance with regulatory requirements and enhancing security and privacy measures. This role will involve conducting risk assessments, managing HITRUST certification processes, and collaborating with internal teams to establish and maintain effective governance frameworks.
Key Responsibilities:
- Oversee the implementation and ongoing maintenance of the HITRUST CSF certification process.
- Conduct risk assessments, gap analyses, and internal audits to identify vulnerabilities and ensure compliance with industry standards.
- Develop and maintain policies, procedures, and controls to align with HITRUST and other regulatory frameworks (e.g., HIPAA, SOC 2, ISO 27001).
- Prepare and manage documentation and evidence for audits and certification reviews.
- Collaborate cross-functionally to ensure that security and compliance requirements are integrated into organizational processes.
- Train employees on HITRUST requirements, data security best practices, and compliance protocols.
Key Qualifications:
- Demonstrated experience with the HITRUST CSF certification process and regulatory frameworks such as HIPAA, SOC 2, or ISO 27001.
- Strong analytical and problem-solving skills with experience conducting compliance audits and risk assessments.
- Proficiency with Governance, Risk, and Compliance (GRC) tools and platforms.
- Familiarity with cybersecurity principles and emerging data protection standards.
- Excellent communication and collaboration skills to work effectively across teams and with external stakeholders.
Preferred Skills:
- Experience with project management methodologies related to compliance initiatives.
- Certifications such as CISSP, CISA, or HITRUST Practitioner Certification (preferred but not required).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
