Overview
On Site
Full Time
Skills
Security Operations
Privacy
Medicaid
FOCUS
Data Warehouse
Standard Operating Procedure
Documentation
Document Review
Security Controls
Risk Assessment
Vendor Relationships
NIST 800-53
ISO/IEC 27001:2005
PCI DSS
System Security
Auditing
Regulatory Compliance
Reporting
Network Security
System Administration
Software Security
Vulnerability Management
Data Security
Vulnerability Assessment
IT Security
Management
Cyber Security
Computer Science
Information Technology
Information Systems
CISSP
Information Security
CISM
SAP BASIS
Law
IT Service Management
Innovation
Collaboration
Recruiting
Insurance
Finance
Professional Development
Training
Leadership
CompTIA
Customer Service
Career Counseling
Apex
Oracle Application Express
Job Details
Job#: 2076691
Job Description:
Job Title: Medicaid Senior IT Privacy and Security Analyst
Job Type: Full-Time
Work Location: Remote
Job Description Summary:
The resource will be responsible for developing the organizations Medicaid Data Warehouse system security plan, supporting audits, and third-party assessments. The resource will focus on ensuring security posture meets compliance standards by actively participating in internal and external audits, reviewing third-party vendor security practices, and identifying potential risks to mitigate during assessments.
Job Responsibilities:
Create and maintain System Security Plans for Data Warehouse.
Develop standard operating procedures, controls-related documentation, and other required security documents.
Prepare for audits: Gather necessary documentation, review security controls, and address any identified gaps before an audit occurs.
Collaborate with auditors: Provide access to systems and information, answer questions about security practices, and explain control implementation details.
Collaborate with teammates to prepare for audits and internal assessments.
Responding to audit findings: Analyzing audit results, developing remediation plans, and tracking progress on addressing identified issues.
Third-party vendor risk assessment:
Evaluating the security posture of third-party vendors by reviewing their security policies, procedures, and controls.
Identifying potential security risks associated with vendor relationships.
Communicate security concerns to vendors and work with them to implement necessary security improvements.
Required Credentials and Experience:
Expertise in security frameworks, including NIST Cybersecurity Framework, NIST 800-53, and other industry standards such as ISO 27001, PCI DSS, and CIS Controls.
Experience in developing System Security Plans (SSPs) aligned with NIST guidelines.
Strong ability to identify, analyze, and prioritize security risks, along with a solid understanding of audit methodologies and compliance reporting requirements.
Broad understanding of network security, system administration, application security, vulnerability management, and data protection technologies.
Experience interpreting vulnerability assessment reports and remediating security findings.
Ability to effectively communicate security risks and recommendations to both technical and non-technical audiences, including leadership.
Minimum of seven years in IT security roles, with a preference for candidates who have held management or leadership positions.
Bachelor's degree in cybersecurity, computer science, information technology, or a related field.
Preferred Credentials and Experience:
Certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Job Description:
Job Title: Medicaid Senior IT Privacy and Security Analyst
Job Type: Full-Time
Work Location: Remote
Job Description Summary:
The resource will be responsible for developing the organizations Medicaid Data Warehouse system security plan, supporting audits, and third-party assessments. The resource will focus on ensuring security posture meets compliance standards by actively participating in internal and external audits, reviewing third-party vendor security practices, and identifying potential risks to mitigate during assessments.
Job Responsibilities:
Create and maintain System Security Plans for Data Warehouse.
Develop standard operating procedures, controls-related documentation, and other required security documents.
Prepare for audits: Gather necessary documentation, review security controls, and address any identified gaps before an audit occurs.
Collaborate with auditors: Provide access to systems and information, answer questions about security practices, and explain control implementation details.
Collaborate with teammates to prepare for audits and internal assessments.
Responding to audit findings: Analyzing audit results, developing remediation plans, and tracking progress on addressing identified issues.
Third-party vendor risk assessment:
Evaluating the security posture of third-party vendors by reviewing their security policies, procedures, and controls.
Identifying potential security risks associated with vendor relationships.
Communicate security concerns to vendors and work with them to implement necessary security improvements.
Required Credentials and Experience:
Expertise in security frameworks, including NIST Cybersecurity Framework, NIST 800-53, and other industry standards such as ISO 27001, PCI DSS, and CIS Controls.
Experience in developing System Security Plans (SSPs) aligned with NIST guidelines.
Strong ability to identify, analyze, and prioritize security risks, along with a solid understanding of audit methodologies and compliance reporting requirements.
Broad understanding of network security, system administration, application security, vulnerability management, and data protection technologies.
Experience interpreting vulnerability assessment reports and remediating security findings.
Ability to effectively communicate security risks and recommendations to both technical and non-technical audiences, including leadership.
Minimum of seven years in IT security roles, with a preference for candidates who have held management or leadership positions.
Bachelor's degree in cybersecurity, computer science, information technology, or a related field.
Preferred Credentials and Experience:
Certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
- Experience in MARS-E security guidelines from CMS.
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.