Information System Security Manager (I.S.S.M.) Advanced ICU Care
THIS JOB HAS EXPIRED Overview
Under general supervision works with the VP of Operations to direct the Advanced ICU Care?s information technology security and health information privacy program(s). This includes developing, implementing, processes in order to manage physical access, access to systems, educate users of individual responsibilities, and minimize the possibility of malicious access. The position requires a high level of technical knowledge in the area of network, server and workstation security along with HIPAA security requirements. The I.S.S.M. position is responsible for organizational policy and procedures, audit tools and regularly schedules audits on security performance. The position reports to the VP of Operations, but recognizing the network-wide nature of the responsibility, will frequently be involved with policy development and systems security analysis throughout the organization. The manager will also work closely with the Compliance Officer (CFO) to support compliance efforts. The scope of responsibly encompasses all settings and departments across the organization. The I.S.S.M. will be a team member of Advanced ICU Care?s Joint Commission Accreditation team. The I.S.S.M. will be detailed oriented and use the techniques of system design, quality improvement, outcomes reporting. The I.S.S.M. is responsible for all policy and procedures related to conformance of regulatory requirements, contractual obligations, and corporate policy on compliance.
Vice President of Operations
Develop and maintain an IT security policy for delivery of service and participates in the implementation process as a resource for security and privacy issues.
Oversee the development of an ongoing education program for the various constituencies regarding information security including the nature of and rationale for new policies as they are developed.
Assist in the training on specific-security and privacy issues for Advanced ICU Care.
Develop and follow an audit plan for assessing security risks for the entire organization. Work with outside IT audit firms to conduct security audits.
Perform security audits, monitor compliance, and perform risk and vulnerability assessments of clinical information systems.
Present audit findings to operational team meetings and to the Company?s Compliance Officer.
Monitors and assures that policies and procedures related to accuracy, integrity, confidentiality and security are followed by staff members and departmental personnel in the implementation and maintenance of information systems.
Work closely with client hospitals on information security departments and develops policy and procedures regarding security, confidentiality and privacy as needed.
Should security breaches occur will have in place a process for reporting and development of an action plant to assist clinical and technical staff in understanding the source of the attack, in assessing and containing damage and in devising measures that will help protect against such events in the future.
Develops and maintain a database of intrusions and incidents.
Ensure the compliance with governmental regulations (HIPAA, FERPA, etc.) and organizational policies on security, privacy and confidentiality.
Maintain security documentation as required for outside regulatory agencies (JCAHO, HIPPA, etc).
Keep abreast of security related technology, practices and regulations in the marketplace or from government.
Develop with administration strategic enterprise wide plans for security policies, practices, and technology enhancements.
Develop security architecture for the organization, including hardware and software components. Performs other related duties as assigned or requested.
Assists as needed Advanced ICU Care managers by leading and facilitating quality improvement activities, to support the organizations compliance and patient confidentiality program.
Assumes responsibility for all patient confidentiality information and works under minimal supervision with accountability for specific goals/objectives.
Works with Advanced ICU Care?s VP of Operations and Director of I.T. to assure I.S. practices meet regulatory standards.
Is the point person for Advanced ICU Care hospital clients regarding compliance with patient confidentiality standards.
Ability to analyze and plan for future changes related to HIPAA, and I.S. security.
Maintains all required documentation and communication across the organization and prioritizing all requirements and practice standards.
Support and participates in the development, documentation, communication, testing, and periodic review and revision of business continuity and disaster recovery plans.
Similar experience (5+ years) with managing IT controls and HIPAA security.
Ability to provide clear description of problems/issues for complex problems.
Demonstrated ability to present options for problem resolution.
Ability to align technology solutions with I.T. strategies.
Able to quickly understand clinical or business operations and their relationship to standards and requirements.
High degree of self-motivation, integrity, versatility and flexibility.
Strong analytical skills.
Willingness to perform many levels of project work, sometimes simultaneously.
Ability to independently develop work plans and assessments.
Ability to lead functional or segment teams or projects, as necessary, and to successfully manage internal and external relationships.
High level of familiarity with System Administration, Network Security, Problem Solving, Information Security Policies, and up to date on HIPAA regulations and requirements.
Education requirement: Bachelor's degree in technical health systems sciences, business, healthcare administration, health information management.
Work experience required: Five years of work experience in healthcare, two years of progressively responsible for HIPAA, quality, compliance and hospital and clinical information systems security
||999 Executive Parkway |
Saint Louis, MO 63141
THIS JOB HAS EXPIRED