Virtual Chief Information Security Officer (vCISO)
at Meriplex Solutions
Houston, TX 77042, USA -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 29 Nov, 2024 | Not Specified | 02 Sep, 2024 | N/A | Leadership Skills,Information Security,Hipaa,Incident Response,Cisa,Mitigation Strategies,Risk Assessment | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
The Virtual Chief Information Security Officer (vCISO) will be responsible for overseeing and ensuring the security of our healthcare practice and customers. This role involves developing and implementing security policies, managing risks, and leading our security initiatives remotely. The vCISO will provide strategic guidance and support to our organization to protect patient information and maintain regulatory compliance.
KNOWLEDGE, SKILLS, ABILITIES, AND BEHAVIORS:
- Professional security management certification (e.g., CISSP, CISM, CISA) required.
- Minimum of 10 years of experience in a combination of risk management, information security, and IT roles, with specific experience in healthcare and HIPAA compliance.
- Proven experience in developing and implementing information security policies, procedures, and standards.
- Strong understanding of HIPAA, HITECH, and other relevant healthcare regulations and standards.
- Excellent communication and leadership skills, with the ability to manage remote teams and projects effectively.
- Experience with incident response, risk assessment, and mitigation strategies.
- Ability to work independently and manage multiple tasks and priorities in a remote environment.
EDUCATION/ EXPERIENCE:
- Bachelor’s degree from an accredited university/college preferred.
- Proven experience in client relationship management within the IT or cybersecurity services industry.
Responsibilities:
Leadership and Strategy
- Develop and implement a comprehensive information security strategy aligned with HIPAA requirements and organizational goals.
- Provide expert guidance and leadership on security matters to internal and customer executive teams and other stakeholders.
- Establish security policies, standards, and procedures to ensure compliance with HIPAA and other relevant regulations.
Compliance and Risk Management
- Ensure compliance with HIPAA, HITECH, and other relevant healthcare regulations.
- Conduct regular risk assessments and vulnerability analyses to identify potential threats and weaknesses.
- Develop and implement risk mitigation strategies and action plans.
- Oversee incident response planning, execution, and reporting, including conducting post-incident analysis and improvements.
Security Operations:
- Monitor the security environment to detect and respond to potential security threats and incidents.
- Coordinate with IT and other departments to ensure security measures are integrated into all aspects of the organization’s operations.
- Oversee the implementation and management of security tools, technologies, and practices.
- Conduct regular security training and awareness programs for staff to ensure compliance and foster a culture of security.
Collaboration and Communication:
- Act as a liaison with external stakeholders, including regulatory bodies, auditors, and law enforcement, as necessary.
- Communicate security risks, strategies, and initiatives to the executive team, board of directors, and staff in a clear and concise manner.
- Provide regular updates and reports on the status of the information security program and compliance efforts.
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Other
Graduate
Proficient
1
Houston, TX 77042, USA