IT Security Specialist (Hybrid)
Location: Durham NC
Duration: 12+ Months Job Description:
The EHR Security Coordinator is responsible for overseeing and ensuring the security of the organization's Electronic Health Record (EHR) system. This role involves managing access controls, conducting security audits, developing security policies, and ensuring compliance with healthcare regulations such as HIPAA and HITECH. The EHR Security Coordinator will work closely with IT, clinical, and compliance teams to secure patient data and protect the integrity of the EHR system.
Key Responsibilities: Security Management & Compliance:
- Ensure the EHR system is secure and compliant with federal, state, and organizational security policies, including HIPAA, HITECH, and other applicable regulations.
- Monitor and enforce the appropriate use of EHR access controls, ensuring that users have the correct level of access based on their roles.
- Conduct regular security audits of the EHR system, identifying and mitigating risks or vulnerabilities.
- Develop and maintain security policies, procedures, and guidelines specific to the EHR environment.
- Coordinate with the stakeholders to implement and maintain security tools, such as firewalls, intrusion detection/prevention systems, and encryption mechanisms, as applicable to the EHR system.
- Oversee user provisioning and de-provisioning, ensuring appropriate access to the system for all employees and contractors.
- Manage and audit role-based access controls (RBAC) for the system, ensuring that users have the correct level of access for their duties.
- Ensure that system logs and user access records are maintained for auditing purposes, and work with internal audit teams to ensure compliance.
- Respond to and investigate security incidents related to the EHR system, ensuring timely resolution and proper reporting to relevant stakeholders.
- Perform risk assessments on new modules or integrations within the EHR, identifying potential security vulnerabilities and developing mitigation strategies.
- Coordinate with clinical, IT, and legal teams on breach notification processes in compliance with regulatory requirements.
- Collaborate with the EHR implementation and optimization teams to ensure that security measures are integrated into the deployment of new features, updates, and third-party applications.
- Work closely with other members of the IT security team to ensure alignment between EHR security and overall organizational cybersecurity strategies.
- Participate in governance and compliance meetings, offering insights and reports on EHR security.
- Stay informed about emerging security threats, technologies, and best practices related to EHR systems.
- Recommend improvements and optimizations to the EHR security environment based on industry trends and emerging threats.
Education:
- Bachelor’s degree in information technology, Computer Science, Cybersecurity, or a related field. Relevant work experience may substitute for formal education.
- Security Certifications (e.g., CISSP, CISM, HCISPP) are highly desirable.
- May require occasional travel to different healthcare facilities within the organization.
- On-call availability for security incidents.
| Skill | Required/Desired | Amount | of Experience |
| Ability to manage security incidents and respond to them efficiently. | Required | 7 | Years |
| Risk Management - must be able to Identify gaps through risk management, and assist in the development of mitigation strategies. | Required | 7 | Years |
| 5-7 years of experience in IT security, preferably within the healthcare industry. | Required | 7 | Years |
| Experience updating privacy and security policies based on gaps found through an assessment process. | Required | 7 | Years |
| Experience Performing risk assessments based on NIST 800-53 Rev 4. HIPAA,SSA and IRS Pub 1075. | Required | 7 | Years |
| Knowledge of role-based access control (RBAC), identity management, and data encryption as it relates to healthcare information systems. | Required | 7 | Years |
| Proficient in healthcare regulations and standards, including HIPAA, HITECH, and meaningful use. | Required | 7 | Years |
| Excellent problem-solving and analytical skills. | Required | 7 | Years |
| Experience documenting vulnerability assessment results in a accurate, clear, actionable, and available way to appropriate personnel | Required | 7 | Years |
| Familiarity with healthcare IT infrastructure, including networking, firewalls, and database security. | Required | 7 | Years |
| Strong communication skills, capable of working across departments and with clinical teams. | Required | 7 | Years |
Recommended Jobs
Licensed Beauty Advisor
Sephora in Fayetteville seeks a Licensed Beauty Advisor to join its team on a part-time basis. This role involves providing beauty services, educating clients on products, and maintaining high standar…
Assembler
Jot Title: Assembler Location; Greensboro, NC Pay Rate: $17 Duration: Contract to hire * Shift: M-Thurs. 6:00AM-4:30PM with OT as needed on F * Seat Assembly main requirements are blueprint rea…
To-Go Specialist
At Carrabba’s Italian Grill, we value having fun and creating memories that last a lifetime. Our atmosphere and hospitality for our customers is old-world Italian with a new-world feel. We provide our…
Demand Generation Marketer
Demand Generation Manager Finexio is the leader in AP Payments as a Service, the leading embedded payments approach for business-to-business payments. Finexio simplifies the way businesses process…
Consultant
Holman Business Development Consultant Holman is a family-owned, global automotive services organization anchored by our deeply rooted core values and principles that have enabled us to continue D…
Outside Sales
Colony Tire is currently seeking a full-time Outside Commercial Salesman to join our team in Wilmington, NC! Our salesmen work for competitive, unlimited pay. Full benefit package offered, including M…
Nursing Supervisor
SUMMARY : Nursing Supervisor works as part of the clinic provider team and assists the Providers in the provision of primary health care. The Nursing Supervisor supervises the nursing staff, lab pe…
Housekeeper (Full-Time) - Northlake House
Northlake House Assisted Living, a Navion Senior Living community located in Charlotte, NC, is seeking a dedicated Housekeeper to join our team! As a Housekeeper, you will play a crucial role in cr…
ML Engineer - Creator Studio
Summary Apple is where individual imaginations gather together, committing to the values that lead to great work. Every new product we build, service we create, or Apple Store experience we delive…
Contract Corporate Recruiter
Accentuate Staffing is seeking an experienced Contract Corporate Recruiter to join our dynamic Talent Acquisition team at a leading healthcare non-profit organization. This is a 4-6 month contract, fu…