Information Security Risk Analyst (HIPAA Security and Risk Assessment Experience(Very Highly Preferred)) - State Government Experience(Required) - eSystems, Inc.

Overview

Remote

$60 - $73

Accepts corp to corp applications

Contract - Independent

Contract - W2

Contract - 12 Month(s)

Skills

IT Risk Management

Cybersecurity

Information Security Assessment

NIST SP 800-30

NIST SP 800-53 Rev. 5

NIST Privacy Framework.

performing security and privacy risk assessments with documentation aligned to federal and state standards.

HIPAA Security and Privacy Rules

Healthcare Specific Risk Domains

HITRUST CSF alignment

State Government

Job Details

Role : Information Security Risk Analyst(State Government Experience(Required))

Client : Government of North Carolina(NCDIT)

Work Type : Remote

Payrate : 73$ Per Hour

Duration : 1 Year(Extendable)

eSystems Inc. is a fast-growing Systems Integrator based in Princeton, New Jersey. We provide strategic IT solutions and services with primary practice areas in Java and Microsoft centric e-Business solutions, ERP solutions, Enterprise Application Integration, Data Warehousing and Business Intelligence solutions.

Our clients include Fortune 500 corporations, government agencies, small and mid-sized local businesses, and non-profit organizations.

As an equal opportunity employer, eSystems complies with all applicable laws, rules and regulations preventing discrimination against job applicants based on: race, ethnicity, religious beliefs, gender, gender identity, age, veteran status, marital status, physical challenges, or any other relevant factor

THE JD and the required skillset are below. Please make sure that the suitable candidate has atleast 90% of the skillset mentioned

This engagement ensures compliance with industry-standard frameworks, supports proactive risk mitigation, & positions NC HIEA for future HITRUST certification.Plan and conduct NC HIEA s annual enterprise security risk assessment using NIST SP 800-30, ISO 27005, or FAIR methodologies.

Ensure full alignment with NIST SP 800-53 Revision 5, including: RA (Risk Assessment), AC (Access Control), SC (System Communications Protection), IR (Incident Response), and more.
Incorporate NIST Privacy Framework and NIST SP 800-53 Rev. 5 privacy control families (AP, AR, DI, DM, IP, SE, TR, UL).
Build and maintain a comprehensive risk register, with treatment plans for mitigation, transfer, acceptance, or avoidance.
Map risks and mitigation efforts to HITRUST CSF control domains to support future certification
Develop and deliver documentation, dashboards, and executive summaries.
Collaborate with internal stakeholders to validate findings and support security governance efforts.

Skill	Required / Desired	Amount(Years)
Experience in IT risk management, cybersecurity, or information security assessment.	Highly desired	5
Demonstrated knowledge of NIST SP 800-30, NIST SP 800-53 Rev. 5, and NIST Privacy Framework.	Highly desired	5
Experience performing security and privacy risk assessments with documentation aligned to federal and state standards.	Highly desired	5
Familiarity with HIPAA Security and Privacy Rules, and healthcare-specific risk domains.	Highly desired	5
Experience with HITRUST CSF alignment or certification preparation.	Highly desired	5
Strong written and verbal communication skills for technical and executive audiences.	Highly desired	5

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Information Security Risk Analyst (HIPAA Security and Risk Assessment Experience(Very Highly Preferred)) - State Government Experience(Required)

Job Details

Share