Information Security Professional II (ucf)

College of Medicine, Health and Information Technology:

The Health and Information Technology Department embraces a strong, customer-centric philosophy in delivering services.  Through collaboration, we provide a robust, secure infrastructure and leverage technical tools to enable mission attainment.

The Opportunity:

The University of Central Florida (UCF) College of Medicine (COM) Health and Information Technology Department is seeking well-qualified candidates for an Information Security Specialist II position. The Information Security Specialist II will be responsible for managing, coordinating, and monitoring the information security compliance program as it relates to HIPAA, GRC (Governance, Risk, Compliance), and overall alignment with the University's information security policies and standards. This position will be responsible for leading all vendor risk reviews and the VRM (Vendor Risk Management) program with active collaboration with the University ISO.  This position will also be responsible for developing, coordinating, and maintaining the Health Sciences Campus information security awareness training program. The Information Security Professional II will lead efforts regarding information security assessments to identify risks and recommend and implement corrective actions to mitigate risk and improve overall security posture. This position is expected to maintain proficiency with information security industry trends with a priority focus on the healthcare and higher education sectors. The Information Security Professional II will ensure a high level of customer service and foster productive working relationships while executing responsibilities to maintain the confidentiality, integrity, and availability of information and technical assets.

Responsibilities:

Information Security Operations, Risk and Compliance:

• Develop, maintain, and coordinate activities to establish a robust information security governance risk and compliance program and risk framework that aligns with industry best practices, and regulatory requirements and guides the organization's overall approach to information security.

  JOB IS FROM: italents.netVIEW

• Continuously assess information security risks and identify and implement mitigation strategies to ensure the confidentiality, integrity, and availability of critical business information and systems.

• Responsible for all VRM (Vendor Risk Management) services for the Health Sciences Campus. Collaborate with the information security office to ensure the process and approach are aligned.

• Develop, coordinate, and maintain the annual vendor attestation program to ensure vendors comply with security and privacy contractual requirements.

• Responsible for the coordination, follow-up, and mitigation efforts to address annual HIPAA Security Assessment findings and other applicable audits or assessments.

• Develop, maintain, and coordinate on-site audits (walk-throughs) of healthcare sites.

• Oversee and coordinate remediation activities associated with security events including inappropriate activities, incidents, and breaches.

Outreach, Education and Training:

• Develop and coordinate information security awareness training for the Health Sciences Campus with a priority focus on the health care mission to mitigate risks.

• Provide and/or assist in user education and security training to promote awareness and understanding of information security risks and best practices.

• Provide information security content for the HealthIT website to inform and educate the community about information security.

• Collaborate and participate with the main campus ISO's office on information security matters as appropriate.

• Provide information security consultation services to provide the community with a greater understanding of information security best practices.

Policy and documentation:

• Development of policies, standard operating policies, and processes for general information security but also governance, risk, and compliance.

• Maintain up-to-date documentation of activities regarding VRM, HIPAA walk-throughs, audits, and incidents.

Technical Competency:

• Maintain current knowledge with respect to relevant laws, technologies, and/or systems related to information security and privacy within the healthcare and higher education sector.

• Demonstrate ability to integrate the above knowledge to help maintain an efficient and effective information security program.

Other:

• Perform other duties and special projects as assigned to include but not limited to timely completion of required university and college training & updates.

Minimum Qualifications:

Bachelor’s degree and 2 years of relevant experience; or High School Diploma (or equivalent) and 6 years of relevant work experience in lieu of degree or an equivalent combination of education and experience pursuant to Fla. Stat. 112.219. Click here for more information

Preferred Qualifications:

• Master’s Degree preferred.

• Security+ certification is a plus.

• HIPAA knowledge and experience.

• Exceptional organizational and time management skills with meticulous attention to detail, analytical, problem-solving, and following through.

• Comfortable working in a fast-paced healthcare, research, and education environment with the ability to adapt to change easily.

Special Instructions to the Applicants:

In addition to your application, please submit a cover letter and resume.

Are you ready to unleash YOUR potential?

As a next-generation public research university and Forbes-ranked top employer in Florida, we are a community of thinkers, doers, creators, innovators, healers, and leaders striving to create broader prosperity and help shape a better future. No matter what your role is, when you join Knight Nation, you’ll play an integral role at one of the most impactful universities in the country. You’ll be met with opportunities to connect and collaborate with talented faculty, staff, and students across 13 colleges and multiple campuses, engaging in impactful work that makes a positive difference. Your time at UCF will provide you with many meaningful opportunities to grow, you’ll work alongside talented colleagues on complex projects that will challenge you and help you gain new skills, and you’ll have countless rewarding experiences that go well beyond a paycheck.

Working at UCF has its perks! UCF offers:

• Benefit packages, including Medical, Dental, Vision, Life Insurance, Flexible Spending, and Employee Assistance Program 

• Paid time off, including annual and sick time off and paid holidays

• Retirement savings options 

• Employee discounts, including tickets to many Orlando attractions 

• Education assistance 

• Flexible work environment 

• And more…For more benefits information, view the UCF Employee Benefits Guide click here.

Unless explicitly stated on the job posting, it is UCF’s expectation that an employee of UCF will reside in Florida as of the date the employment begins.

#LI_ONSITE