Project overview
As an Information Security Consultant, you will deliver risk and compliance services/assessments to mitigate existing and future security risks. You will also propose security controls for long-term solutions in a Healthcare environment, while working closely with clients and partnering with your internal Leadership team and colleagues. Conduct information security risk assessments based on industry standards (HIPAA/HITRUST, NERC, PCI-DSS, GLBA, FFIEC, SOC2, NIST, ISO) Respond to advisory service requests to address and answer client questions and/or needs Provide information security management and strategic guidance to assist in the development of client information security programs Write and deliver reports detailing your findings and associated recommendations for information security program development to help the client meet security and compliance standards Execute consulting engagements working on-site with the client Achieve high levels of client satisfaction on all engagements by achieving client expectations set by engagement leaders and project managers Develop strong customer relationships and trust to secure future business Education/Experience Bachelor’s a Degree in a technical discipline or equivalent work experience in IT and/or Security 2+ years’ experience in security or risk management, performing security assessments in client-facing/consulting role Professionalism, problem solving, customer facing and handling skills, time management, written and verbal communication, presentation skills, active listening, flexibility Working knowledge of risk and security frameworks, standards, and best practices (e.g. HIPAA, COBIT, NIST, ISO 27001/2) Ability to think holistically and identify areas of technical and non-technical risk Experience writing technical reports and presenting to non-technical audiences Comfortable working in ambiguous and/or undefined situations Must be available for regular travel Relevant risk and/or security certification(s) preferred (CISSP, CISA, CISM, C-Risk or equivalent)