Overview
Hybrid
Depends on Experience
Accepts corp to corp applications
Contract - W2
Skills
Access Control
ISO 9000
Information Retrieval
Dialog Manager
Regulatory Affairs
Privacy
Intellectual Property
Regulatory Compliance
NIST SP 800 Series
SAP BASIS
SAS Display Manager
Incident Management
Information Security Governance
Job Details
One of our clients is looking Technical Specialist with following skills:
The client is seeking a skilled Information Security Risk Analyst on a contract basis to lead the execution of its annual enterprise security risk assessment.
- This engagement ensures compliance with industry-standard frameworks, supports proactive risk mitigation, & positions NC HIEA for future HITRUST certification. Plan and conduct NC HIEA s annual enterprise security risk assessment using NIST SP 800-30, ISO 27005, or FAIR methodologies.
- Ensure full alignment with NIST SP 800-53 Revision 5, including: RA (Risk Assessment), AC (Access Control), SC (System Communications Protection), IR (Incident Response), and more.
- Incorporate NIST Privacy Framework and NIST SP 800-53 Rev. 5 privacy control families (AP, AR, DI, DM, IP, SE, TR, UL).
- Build and maintain a comprehensive risk register, with treatment plans for mitigation, transfer, acceptance, or avoidance.
- Map risks and mitigation efforts to HITRUST CSF control domains to support future certification
- Develop and deliver documentation, dashboards, and executive summaries.
- Collaborate with internal stakeholders to validate findings and support security governance efforts.
The successful candidate may have to undergo a drug test and background check.
Sincerely,
Swati Bhardwaj
Digitek Software, Inc.
650 Radio Drive
Lewis Center, OH 43035
Work:
Fax:
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.