Position Function:
The HIPAA Compliance Analyst will work closely with the Chief Information Security Officer (CISO), the Chief Information Officer (CIO), and senior leadership to ensure a secure information technology environment and maintain HIPAA compliance across the University. This position will proactively assess systems, processes, and projects against compliance requirements, control objectives, and security best practices to prevent security incidents.
Salary Grade: 16
Please see Staff Compensation Structure or Skilled Crafts and Service Maintenance Compensation Schedule for salary ranges. For salary grade UC, these positions are "Unclassified" and salary ranges are determined by the hiring department.
Essential Duties and Responsibilities:
1. Maintain audit and oversight of processes, procedures, and tools used to ensure security controls.
2. Work with internal and external staff in implementation of enterprise-wide information security policies, standards, and processes moving toward the NIST Risk Management Framework at the University.
3. Serve as a resource person in assessing systems, processes, and projects against HIPAA compliance requirements, control objectives, and security best practices; interacts with internal and external technical staff and consults with project teams at various stages of project life cycles.
4. Monitor system and network operations for signs of suspicious or detrimental activity.
5. Investigate information security incidents to determine the cause and extent of the incident, and to make recommendations to mitigate the likelihood of similar future incidents.
6. Stay abreast of current and evolving technologies and practices aimed at preventing attacks on the University’s HIPAA environment and make recommendations for adoption of such technologies and best practices to the CISO and senior leadership.
7. Stay abreast of HHS and State of Mississippi regulatory requirements, as well as legal, ethical, and social issues related to the operation and use of HIPAA systems at a public, land grant, high research university.
8. Use tools of the trade to perform ongoing assessments of MSU systems and networks to determine weaknesses and design remediation strategies for discovered vulnerabilities to mitigate risk.
9. Maintain records and prepare reports for the CISO and senior management providing insight into and measuring the effectiveness of MSU’s HIPAA security posture.
10. Assist the CISO, the CIO, and senior management in preparing and documenting information security plans, policies, and procedures.
Minimum Qualifications:
Bachelor's degree from an accredited college or university in Computer Science, Health Information Management, Business Information Systems, or a related field.
Minimum of 3 years’ experience in computer or network security, administration, or related field.
Must be a U.S. Citizen or Green Card Holder
Preferred Qualifications:
• Certified Information Systems Security Professional (CISSP) Certification
• Experience in a university HIPAA environment
• Experience with security compliance frameworks
• 5 years of experience in computer or network security, administration, or a related field
Knowledge, Skills, and Abilities:
1. Good oral and written communication skills.
2. Knowledge of security technologies such as network vulnerability scanning, intrusion detection systems, VPNs, firewalls and system hardening
3. System administration knowledge of contemporary computer operating systems, especially Linux and/or Windows
Working Conditions and Physical Effort
1. Work is normally performed in a typical interior/office work environment.
2. No or very limited exposure to physical risk.
3. No or very limited physical effort required.
4. Ability to sit at computer for extended periods of time.
Instructions for Applying:
Link to apply: http://explore.msujobs.msstate.edu/
All applicants must apply online at www.msujobs.msstate.edu by attaching a cover letter and resume which includes the names and addresses of 3 professional references. We will accept applications only from persons with indefinite employment authorization in the U.S., and will not sponsor for nonimmigrant or immigrant status for this position.
Equal Employment Opportunity Statement:
Mississippi State University is an equal opportunity institution. Discrimination is prohibited in university employment, programs or activities based on race, color, ethnicity, sex, pregnancy, religion, national origin, disability, age, sexual orientation, genetic information, status as a U.S. veteran, or any other status to the extent protected by applicable law. Questions about equal opportunity programs or compliance should be directed to the Office of Civil Rights Compliance, 231 Famous Maroon Band Street, P.O. 6044, Mississippi State, MS 39762, (662) 325-5839.
What do I do if I need an accommodation?
In compliance with the ADA Amendments Act (ADA), if you have a disability and would like to request an accommodation in order to apply for a position with Mississippi State University, please contact the Department of Human Resources Management at tel: (662) 325-3713 or ada@hrm.msstate.edu.
If you have any questions regarding this policy, contact the Department of Human Resources Management at (662) 325-3713 or ada@hrm.msstate.edu. Upon request, sections of this job listing are available in large print, and readers are available to assist the visually impaired.
