Community Health Systems is one of the nation’s leading healthcare providers. Developing and operating healthcare delivery systems in 44 distinct markets across 15 states, CHS is committed to helping people get well and live healthier. CHS operates 78 acute-care hospitals and more than 1,000 other sites of care, including physician practices, urgent care centers, freestanding emergency departments, occupational medicine clinics, imaging centers, cancer centers and ambulatory surgery centers. Summary: As a Cyber Security Engineer, you are expected to have knowledge and experience in the responsibilities listed below gained through work experience. You are an acting liaison between Cyber Security Risk Management and facilities for the completion of Security Risk Analyses. You are considered a subject matter expert to assist with the development of and the education of all personnel involved in the Security Risk Analysis process. You can be trusted to work independently with limited supervision as well as work effectively in a small team environment. Essential Duties and Responsibilities Perform risk analysis (HIPAA, Promoting Interoperability) of security controls for the purpose of trend analysis and compliance reporting to enterprise customers through the use of tools and methodologies Document gaps in security risk analysis process and communicate to leadership opportunity for process improvements Perform assessments of appropriate administrative, physical, and technical safeguards with limited supervision to protect the confidentiality, integrity, and availability of confidential or regulated data (SOX, PCI, PHI) Perform security risk analyses of new and existing applications, devices and services for the purpose of documenting risks introduced by a new or existing project, program, product or solution. Facilitate follow up and track required remediation controls where necessary. Document security issues resulting from security risk analyses with internal policies and standards or regulatory requirements. Perform maintenance and configuration of Security Compliance tools to ensure process efficiency and data accuracy. Coordinate the remediation of control deficiencies resulting from security risk assessments and track progress and closure. Qualifications Required Education: High School Diplima Preferred Education: Bachelor’s degree preferred or relevant experience Required Experience: Minimum 3 years of experience with security risk assessments in a medium to large enterprise preferably in a multi-hospital and /or medical center setting. Works independently as well as collaboratively with minimal professional and managerial supervision. Working knowledge of common industry standard security methodologies. High level understanding of common industry standard audit methodologies. Strong research and analytical skills is a must. Experience in regulatory standards (HIPAA, HITECH, PCI, SOX, COBIT) Preferred Experience: Common Knowledge of Industry Standard Audit Methodologies Common Knowledge of Industry Standard Security Practices Strategic Skills Required: Ability to work collaboratively and independently to identify and solve problems Great attitude, including developing a sense of ownership over the space Strong analytical, problem resolution, and organizational skills. Strong ability to work on and prioritize multiple, concurrent projects while meeting aggressive deadlines in a fast-paced environment. Willingness to participate in cross-functional training and support. Physical Demands: In order to successfully perform this job, with or without a reasonable accommodation, the following are outlined below: The Employee is required to read, review, prepare and analyze written data and figures, using a PC or similar, and should possess visual acuity. The Employee may be required to occasionally climb, push, stand, walk, reach, grasp, kneel, stoop, and/or perform repetitive motions. The Employee is not substantially exposed to adverse environmental conditions and; therefore, job functions are typically performed under conditions such as those found within general office or administrative work. #J-18808-Ljbffr
