Information Security Specialist- job vacancy

Job title: Information Security Specialist
Location Rochester Hills MI, United States of America
Company: Henry Ford Health System
Contact: Henry Ford Health System
Reference JS75950
Deadline 7/15/2013
Requisition #: 75950
Status: Full-Time with Full-Time Benefits (40 Hours)
Business Unit: Corporate Offices
Shift: Days
Department: Security Remediation
Weekends: No

Overview:
Our health system thrives on teamwork, and we know our employees achieve the greatest results when they are working together for a common goal - to provide care for our patients. If you enjoy working in a collaborative environment then we have a job for you!

Henry Ford Health System (HFHS) is one of the nation's leading comprehensive, integrated health systems. It provides health insurance and health care delivery, including acute, specialty, primary and preventive care services backed by excellence in research and education. Founded in 1915 by auto pioneer Henry Ford, the health system is committed to improving the health and well-being of a diverse community. HFHS is a tobacco-free organization.

Henry Ford Health System (HFHS) is a Michigan not-for-profit corporation managed by Chief Executive Officer Nancy M. Schlichting.

Henry Ford Health System is the proud recipient of the 2011 Malcolm Baldrige National Quality Award for Performance Excellence and Innovation!

Facts:

- Henry Ford Medical Group is one of the nation's largest group practices with 1,200 physicians and researchers in 40 types of specialty care
- More than 24,000 total HFHS employees, equivalent to 19,922 Full time employees (2011)5 hospitals in South East Michigan and 30 medical centers
- 5,168 HFHS nurses, including 332 from Canada (2011)
- 3,965 HFHS allied health professionals (2011)

- Over 1700 clinically integrated physicians within the Henry Ford Physician Network, a physician-led subsidiary, comprising the Henry Ford Medical Group and HFHS hospital (employed and private practice physicians).
- Fifth-largest employer in metro Detroit, Michigan with strong ties to the communities HFHS services

Mission:

- To improve human life through excellence in the science and art of health care and healing.

Vision:

- Transforming lives and communities through health and wellness - one person at a time.

To learn more please visit www.henryford.com.

Responsibilities

Working for the Information Privacy and Security Office, the Information Security Specialist represents the interests for both Corporate IT and assigned business units in applying policies and procedures for securing of patient and confidential information. The position provides consulting and regulatory compliance guidance on strategic and technical initiatives and is knowledgeable of information security best practices and regulatory and compliance requirements that impact security for the enterprise.

The Information Security Specialist reports to the Information Security Incident Manager. This position will work in a collaborative effort with the Information Privacy and Security Office and business units to assure security programs and technical controls are in compliance with policies, applicable laws and regulations. However, this position has no direct supervisory responsibilities.

PRINCIPAL DUTIES AND RESPONSIBILITIES:

Responsible for understanding both the enterprise information security programs (HIPAA, Risk Management, Incident Management, PCI, etc.) and the business unit processes/systems in order to provide quality security services.

Maintains current knowledge of applicable federal and state security laws and accreditation standards. Monitors advancements in information security technologies to ensure adaptation and compliance.

Assists or supports the Information Security Incident Manager with the following:

a. A member of the incident response team and first responder for collecting incident information and forensic data.

b. Investigate and correct violations of security standards, confidentiality or information security.

c. Ensures remedial action corrects current problems and takes all available steps to prevent future problems.

d. Follow-up incident monitoring and auditing activities for business units.

e. Reviews reports and coordinates action to respond to identified risks and violations.

Initiates, facilitates and promotes activities to foster information security awareness, training, orientation and policy implementation within the assigned Business Unit(s) and related entities.

Contributes to the development and maintenance of the Information Privacy and Security Office Service Catalog and Corporate Information Security policies and procedures.

Performs Risk Assessments of business and clinical applications and assists business and clinical entities in understanding of security requirements.

Assists business/clinical environments on traversing IT processes.

Supports the HFHS Security Council, a group of business unit security champions and subject matter experts as it functions to assess risk and develop and implement appropriate security policy and

compliance monitoring activities.

Performs other security-related duties as assigned.

Qualifications

EDUCATIONAND EXPERIENCE REQUIRED:

- Bachelor's degree in a field related to information technology, information security, or healthcare sciences is strongly preferred.
- CISSP, CISM, or CISA required within two-years.
- ITIL v3.0 certified within one-year.
- A minimum of 1 -3 years of IT experience.

Experience providing working knowledge and skills in the following:

- Security laws (ie, HIPAA, HITECH, GLB, etc.), access, release of information and release control technologies
- Investigation and analytical techniques, required
- Knowledge of healthcare law and Payment Card Industry requirements is strongly desired.
- Experience or knowledge of technical, business and healthcare environment, familiarity with national security standards, business continuity, disaster recover, auditing, risk
- management, vulnerability assessments, regulatory compliance, and incident management.
- Knowledge of information security best practices, ISO standards, and common risk framework.
- Basic understanding of core business processes and ability to interpret them into security requirements.

Equal Employment Opportunity/Affirmative Action Employer

Henry Ford Health System is committed to the hiring, advancement and fair treatment of all individuals without regard to race, color, national origin, sex, sexual orientation, age, disability, religion, weight/height, marital status, familial status, veteran status or any other characteristic protected by law.
How to apply: Visit; http://www.computerjobs.com/us/en/search-jobs-in-Michigan,-USA/INFORMATION-SECURITY-SPECIALIST-96A3D72052F45E46/?utm_source=17&utm_medium=job&utm_content=1&utm_campaign=JobSearchLanding