Skip to main content

This job has expired

Information Security Compliance Officer | Legal and Compliance

Employer
Sanford Health
Location
Sioux Falls, South Dakota
Salary
Join our team!

Job Details


Sanford Health is one of the largest and fastest-growing not-for-profit health systems in United States. We're proud to offer many development and advancement opportunities to our nearly 50,000 members of the Sanford Family who are dedicated to the work of health and healing across our broad footprint.
See yourself at Sanford!

Facility: Stevens Center Building

Location: Sioux Falls, SD

Shift: Varies

Job Schedule: Full time

Weekly Hours: 40.00

Job Summary

Will oversee and administer programs to ensure compliance and risk strategy for various state and federal regulations including Health Insurance Portability and Accountability Act (HIPPA), Payment Card Industry (PCI), General Data Protection Regulation (GDPR), etc. This role is within the compliance department reporting up to the Chief Privacy Officer. Focuses on the development, implementation and administration of security programs, policies and procedures and risk assessments to ensure Sanford Health products, data and systems are properly protected. Ensures integrity is maintained and properly manages and documents ongoing risk.
Serves as the designated HIPPA Security Official to ensure the confidentiality, integrity and accessibility of electronic protected health information (ePHI).
Works closely and collaborates with the Information Technology (IT) leadership responsible for technical controls and operations, alongside close collaboration with the Compliance and Privacy Offices.
Administers and documents a comprehensive information security risk assessment program that maintains data protection regulatory compliance and best practices, including technical, physical and administrative controls and safeguards to reduce risk and vulnerabilities. Implements standards, policies and procedures to prevent, detect, contain and mitigate breaches of sensitive information.
Implements and maintains a data classification and data inventory program. Enhances and maintains a third party vendor risk assessment and management program. Provides guidance to IT for access management protocols. Implements policies and procedures to meet both the written and intended requirements of applicable regulations for the security of electronic information.
Collaborates with the Privacy Office on information breach investigations, assessments and responses. Organizes and ensures proper information security awareness training for employees, contractors and vendors. Provides input and guidance for the technical, physical and administrative controls that are implemented by other departments (i.e. IT) and advocated for appropriate budget and prioritization.
Approves and signs-off on information security exceptions in collaboration with IT leadership. Maintains expertise on changing industry regulations and assesses the change impacts to information risk management and recommends or implements changes as needed.

Qualifications

Bachelor’s degree required. Master’s degree is preferred.
Minimum of five years of relevant work experience required. Demonstrate extensive knowledge of information security principles and techniques.
Strong working knowledge of the information security standards and procedures Including Payment Card industry (PCI) and Health Insurance Portability and Accountability (HIPAA).
Certified in Healthcare Privacy Compliance or an equivalent desired.
Sanford is an EEO/AA Employer M/F/Disability/Vet.
If you are an individual with a disability and would like to request an accommodation for help with your online application, please call 1-877-673-0854 or send an email to talent@sanfordhealth.org .

Job Function: Legal and Compliance

Req Number: R-11114

Featured: No

Company

Sanford Health is excited to be on a journey of tremendous growth and momentum. With our vast geography, cutting-edge medicine, sophisticated research, advanced education and our own health plan, we are unique in what we do and how we do it. Through relationships built on trust and successful performance and a vision to improve the human condition, Sanford seeks to make a significant impact on health and healing. With a commitment to diversity and inclusion, our journey as an organization includes continually building on the diverse talents, experiences and beliefs of our employees, as well as the patients and communities we serve. We are proud to be from the Midwest and to impact the world. We look forward to joining with you in the journey.

Company info
Website

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert