What are the responsibilities and job description for the IT Security Specialist position at V Group Inc?
Job Details
End Client: State of North Carolila
Job Title: IT Security Specialist
Duration: 11 Months
Start Date: ASAP
Position Type: Contract
Location: Raleigh, North Carolina (Remote as on when needed by manager)
Interview Type: Webcam
Ceipal ID: SNC_SEC759_RP
Position ID: 750759
Job Title: IT Security Specialist
Duration: 11 Months
Start Date: ASAP
Position Type: Contract
Location: Raleigh, North Carolina (Remote as on when needed by manager)
Interview Type: Webcam
Ceipal ID: SNC_SEC759_RP
Position ID: 750759
Short Description:
NC DHHS - Privacy and Security Office (PSO) requiring services of an Electronic Health Record System (EHR-EPIC) IT Security lead to assist DSOHF.
Description:
- The Epic/EHR Security Coordinator is responsible for overseeing and ensuring the security of the organization's Epic Electronic Health Record (EHR) system.
- This role involves managing access controls, conducting security audits, developing security policies, and ensuring compliance with healthcare regulations such as HIPAA and HITECH.
- The Epic/EHR Security Coordinator will work closely with IT, clinical, and compliance teams to secure patient data and protect the integrity of the EHR system.
Key Responsibilities:
- Security Management & Compliance:
- Ensure the Epic EHR system is secure and compliant with federal, state, and organizational security policies, including HIPAA, HITECH, and other applicable regulations.
- Monitor and enforce the appropriate use of Epic EHR access controls, ensuring that users have the correct level of access based on their roles.
- Conduct regular security audits of the Epic EHR system, identifying and mitigating risks or vulnerabilities.
- Develop and maintain security policies, procedures, and guidelines specific to the Epic EHR environment.
- Coordinate with the stakeholders to implement and maintain security tools, such as firewalls, intrusion detection/prevention systems, and encryption mechanisms, as applicable to the EHR system.
- Access Controls & User Management:
- Oversee user provisioning and de-provisioning, ensuring appropriate access to the Epic system for all employees and contractors.
- Manage and audit role-based access controls (RBAC) for the Epic system, ensuring that users have the correct level of access for their duties.
- Ensure that system logs and user access records are maintained for auditing purposes, and work with internal audit teams to ensure compliance.
- Incident Response & Risk Management:
- Respond to and investigate security incidents related to the Epic EHR system, ensuring timely resolution and proper reporting to relevant stakeholders.
- Perform risk assessments on new modules or integrations within the Epic EHR, identifying potential security vulnerabilities and developing mitigation strategies.
- Coordinate with clinical, IT, and legal teams on breach notification processes in compliance with regulatory requirements.
- Collaboration & Coordination:
- Collaborate with the Epic implementation and optimization teams to ensure that security measures are integrated into the deployment of new Epic features, updates, and third-party applications.
- Work closely with other members of the IT security team to ensure alignment between EHR security and overall organizational cybersecurity strategies.
- Participate in governance and compliance meetings, offering insights and reports on EHR security.
- Continuous Improvement:
- Stay informed about emerging security threats, technologies, and best practices related to EHR systems.
- Recommend improvements and optimizations to the Epic EHR security environment based on industry trends and emerging threats.
Qualifications:
- Bachelor's degree in information technology, Computer Science, Cybersecurity, or a related field.
- Relevant work experience may substitute for formal education.
- Epic Certifications (Security Fundamentals, Security Administration, and Data Courier) preferred.
- Security Certifications (e.g., CISSP, CISM, HCISPP) are highly desirable.
Required:
- 5-7 years of experience in IT security, preferably within the healthcare industry 7 Years
- Experience updating privacy and security policies based on gaps found through an assessment process 7 Years
- Experience Performing risk assessments based on NIST 800-53 Rev 4. HIPAA,SSA and IRS Pub 1075, 7 Years
- Knowledge of role-based access control (RBAC), identity management, and data encryption as it relates to healthcare information systems 7 Years
- Strong understanding of EHR systems (EPIC or similar systems) 7 Years
- Proficient in healthcare regulations and standards, including HIPAA, HITECH, and meaningful use, 7 Years
- Ability to manage security incidents and respond to them efficiently, 7 Years
- Familiarity with healthcare IT infrastructure, including networking, firewalls, and database security, 7 Years
- Strong communication skills, capable of working across departments and with clinical teams, 7 Years
______________________________________________________________________________________________________________________________________________
V Group Inc. is an IT Services company that supplies IT staffing, project management, and delivery services in software, network, help desk, and all IT areas. Our primary focus is the public sector including state and federal contracts. We have multiple awards/ contracts with the following states: CA, FL, GA, MD, MI, NC, NY, OH, OR, PA, SC, VA, and WA, CT, TN. If you are considering applying for a position with V Group or partnering with us on a position, please feel free to contact me with any questions you may have regarding our services and the advantages we can offer you as a consultant.
Please share my contact information with others working in Information Technology.
Website: ;br /> LinkedIn: ;br /> Facebook: ;br /> Twitter: ;/div>
V Group Inc. is an IT Services company that supplies IT staffing, project management, and delivery services in software, network, help desk, and all IT areas. Our primary focus is the public sector including state and federal contracts. We have multiple awards/ contracts with the following states: CA, FL, GA, MD, MI, NC, NY, OH, OR, PA, SC, VA, and WA, CT, TN. If you are considering applying for a position with V Group or partnering with us on a position, please feel free to contact me with any questions you may have regarding our services and the advantages we can offer you as a consultant.
Please share my contact information with others working in Information Technology.
Website: ;br /> LinkedIn: ;br /> Facebook: ;br /> Twitter: ;/div>
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
