IT Audit And/or Technology Risk

**About Neolytix**

Neolytix is a boutique Consulting and Management Services Organization that works with small & medium-sized healthcare providers across the United States. Our portfolio of services caters to micro verticals and is built on the expertise we have developed in enabling these practices.

**Working at Neolytix**

At Neolytix, you will learn to hone your Consultative skills, develop drive & leadership, balance work with family time and importantly have fun
- Complimentary Medical Coverage for your Family & dependents
- Retirements Savings Plan
- Life & Disability Insurance
- Work with diverse team members across countries & cultures
- Participate in Clubs based on your hobbies and share your passion with like-minded enthusiasts

**About this Position**

This position will develop and implement security policies, train staff on security procedures, and respond to security incidents. The person appointed or designated the role of InfoSec & Compliance Officer must have a thorough knowledge of the Information Security Certification process for ISO, COPC, HIPAA Privacy and Security Rules etc. They should also have the solutions available that will allow him or her to develop a compliance & certification program for HIPAA, Information Security & Cyber threats.

This position will also lead a significant initiative to grow the team and provide HIPAA/ Security Consulting to clients of Neolytix in the United States.

**Required Qualifications**:

- Bachelor’s degree, Master preferred
- Has experience in Security Compliance program monitoring and reporting
- Has experience in supervising a small team of security or compliance specialists
- Should have experience in getting ISO certification successfully completed
- Experience in leading multi-organizational initiatives, and driving team accountability to achieve impactful goals
- Experience working in an operations environment, driving improvements resulting in measurable business impact
- Must have experience working with IT Teams for a IT related security assessment and compliance

**Key Responsibilities**
- Prepare the organization to get Information Security certification like ISO / IEC 27001
- Develop a HIPAA compliance program
- Document progress towards Program implementation.
- Setup a system to monitor the status of the organization´s compliance.
- Lead company wide initiatives to prioritize efforts towards compliance
- Setup a compliance hotline to manage concerns raised and coordinate organizational changes.
- Develop training programs and executing training courses, designed to help employees understand HIPAA compliance and how any changes implemented will affect their specific duties.
- Setup a system to provide regular HIPAA training for staff. This includes training for all new staff when they join an organization and also annual refresher training. Some staff might require specific types of training. For example, healthcare students will need to be trained on handling PHI for their assignments. Staff in Texas need training in HB 300.
- Monitor HHS´ and the state´s regulatory requirements. Adjust the organization´s HIPAA compliance program to reflect new regulations or guidelines that are introduced.
- Conduct frequent audits and action gaps found during audit to maintain ongoing compliance.
- Get Certification for Neolytix and ensure re-certification
- Consult with Clients of Neolytix to implement standardized Compliance programs for small & medium-sized clinics

**Benefits**:

- Health insurance
- Internet reimbursement
- Life insurance
- Paid time off
- Work from home

Schedule:

- Night shift

Supplemental pay types:

- Performance bonus
- Yearly bonus

**Experience**:

- total work: 3 years (preferred)

License/Certification:

- ISO Certification Experience (required)
- HIPAA Compliance Experience (required)