About the Role:
We seek a detail-oriented and proactive Security Compliance Analyst to consistently apply security protocols and adhere to relevant organisational compliance standards. This role involves regular monitoring, testing, and communication to maintain a secure and compliant environment.
Role & responsibilities
- Regularly check that established security protocols are being consistently followed.
- Perform testing to ensure ongoing compliance with relevant healthcare regulations and internal policies.
- Utilize Zoho Assist to remotely access and audit devices to verify security configurations and compliance.
- Conduct security testing of virtual desktop environments.
- Engage with account managers to understand their appliance usage and ensure security protocols are effectively implemented and optimized within their workflows.
- Utilize Okta Administrator for tasks related to user access management and security monitoring.
- Learn and understand the functionality and security implications of single sign-on (SSO) systems.
- Provide training to the team on access control principles and different access layers.
- Document findings from security checks and tests, and contribute to developing remediation plans.
- Serve as the primary IT point of contact for all browser-based vendor applications (e.g., EHR/EMR, practice management, billing, communication platforms)
- Manage Onboarding and Offboarding of employees along with access creation and deletion.
- Manage endpoint security solutions (e.g., antivirus, anti-malware, EDR) for all BYOD devices.
- Help with Multi-Factor Authentication Implementation.
- Review vendor contracts and service level agreements (SLAs) from an IT and security perspective.
- Implement and monitor Data Loss Prevention (DLP) strategies to protect sensitive patient information.
Qualifications
- Master's degree in Computer Science, Information Security, or a related field (or equivalent experience).
- Proven experience in a security or compliance-related role, minimum 3 years.
- Familiarity with security protocols, frameworks, and best practices.
- Understanding of compliance regulations relevant to the healthcare industry (e.g., HIPAA).
- Experience using remote access tools (e.g., Zoho Assist) is a plus.
- Familiarity with identity and access management systems (e.g., Okta Administrator) is desirable.
- Strong analytical and problem-solving skills.
- Excellent attention to detail and organizational skills.
- Effective communication and interpersonal skills.
- Ability to work independently and as part of a team.
- A proactive approach to identifying and addressing security and compliance concerns.
The applicant should be comfortable working from Monday to Friday, 7 AM to 4 PM Eastern Time.