Leidos is looking for a full-time Information Assurance Engineer / HIPAA Security Rule Subject Matter Expert (SME).
Primary Responsibilities include:
Reviews security and privacy complaints, data breach notification and cybersecurity incident reports, and other correspondence and evidence provided by the healthcare organizations across the nation to assess the overall impact of security and privacy incidents.
Evaluates and determines the technical sufficiency of submissions from HIPAA covered entities and business associates in response to data and documentation requests (i.e., Assessing reports related to security baselines, penetration tests, vulnerability assessments, and digital forensics).
Develops written reports with technical security analyses, summaries, and recommendations for action.
Provides subject matter expert analysis, evaluation, and recommendations based on national security standards (NIST), industry best practices (ISO) and implementation specifications of the HIPAA Security Rule.
Provides expert guidance in designing, implementing, and managing information security, data protection, and risk management programs, including policies, procedures, and controls for protected health information based on HIPAA requirements.
Provides advisory expertise in the areas of risk analyses, vulnerability assessments, incident response, security architecture, physical security, business continuity and disaster recovery, enterprise mobility, threat intelligence and analysis, security awareness and online safety, and resolution of highly complex security projects and issues.
Leads a team of experienced professionals, Security Rule SMEs, whose assignments are directed by the HHS OCR customer or Regional Manager
Performs peer-reviews the work of SMEs who exercise latitude and independence in their assignments. Provides assistance and guidance as needed
Facilitates regular virtual meetings with SMEs; collaborates with the team on agenda or topics for discussions
Shares updates from the customer, and on subject matter topics with SME team
Assists in onboarding SMEs and helps with assimilation and orientation into customer’s networking systems and environment.
Provides feedback on SME work performance to Lead Project Manager as appropriate or requested
Bachelor’s degree from an accredited college in a related discipline, or equivalent experience/combined education, with 12 years of professional experience; or 15 years of professional experience with a related Master’s degree.
In-depth experience with security domains and industry best practices; business continuity and disaster recovery, supply chain and third-party management; and up to date on evolving cyber-threats, defense strategies, and emerging technology.
Industry certification preferably CISSP, CISM, and CIPM/CIPP/CIPT.
Excellent communication skills.
Ability to translate highly technical matter to a non-technical audience.
Knowledge of HIPAA Privacy, Security, and Breach Notification Rules, other Security regulations, and industry best practices and standards (NIST, ISO, Sarbanes-Oxley, FISMA, COBIT).
Proficiencies in: Information governance and risk management, threat and vulnerability management, vendor management, infrastructure, security architecture for traditional, wireless, and cloud-hosted networks, cryptography/encryption protocols, business continuity and disaster recovery, social engineering and awareness training methodologies.
Master’s degree in Information Technology, Cybersecurity, or related field.
Pay Range:Pay Range $113,100.00 - $174,000.00 - $234,900.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Leidos is a Fortune 500® technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 44,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $13.7 billion for the fiscal year ended December 31, 2021. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at [email protected].
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.