The HITRUST Common Security Framework (“HITRUST CSF®” or “CSF”) is a risk based, healthcare focused, security and privacy framework that aggregates and normalizes federal/state regulations and industry recognized frameworks into a central compilation. The HITRUST Assessor will work closely with other team members, under the direction of a Team Lead, to guide customers through their journey of framework adoption and ultimately to certification.
Work closely with customers to understand systems and business functions in order to determine the scope of their HITRUST assessment
Review and evaluate an organization’s information security posture for compliance with the HITRUST CSF and other relevant frameworks
Assist organizations with the creation of a remediation plan to strengthen information security posture
Research and understand complicated Security and Privacy matters
Communicate IT, Security, and Privacy concepts to an organization as it relates to the in-scope environment
Develop and execute test plans to validate an organization’s compliance with the HITRUST CSF for submission
Please email resumé and cover letter to firstname.lastname@example.org.
Bachelor’s degree in a related field
Experience in healthcare, IT, IS and/or auditing
Familiarity with security frameworks such as NIST, ISO 27001, and the HITRUST CSF preferred
Completed or are pursuing industry certification(s) such as: CISA, CRISC, CCSFP, HCISPP, SSCP, CISSP, CISM, or similar
Critical thinking and initiative to learn new areas a requirement
Excellent verbal and written communication skills
Ability to work on several assignments concurrently
Ability to work independently as well as part of a team