Management Analyst III (HIPAA/Cybersecurity)

TL;DR

Management Analyst III (HIPAA/Cybersecurity): Providing mission support services for policy analysis and recommendations regarding the implementation of OCR’s mission with an accent on HIPAA Privacy and Security Rules and Cybersecurity initiatives. Focus on improving program efficiencies, implementing compliance and enforcement processes, and conducting high-quality regulatory research.

Location: Onsite or Remote. Ability to obtain HHS Public Trust Level II clearance is required.

Company

An IT and Management consulting company and CVE-verified Service-Disabled Veteran-Owned Small Business.

What you will do

• Provide advice on policy, administrative rules, compliance, and enforcement for HIPAA and Cybersecurity initiatives.
• Recommend improvements for OCR’s projects to increase overall quality and operational efficiency.
• Manage projects to develop processes for case investigations and enforcement strategies.
• Conduct high-quality research and investigate cases to support nationwide goals.
• Interface with federal/state agencies, regulated entities, and other stakeholders.
• Execute outreach activities to maximize the impact of OCR’s mission and strategic objectives.

Requirements

• Master's degree in Cybersecurity, Computer Science, Information Sciences, or comparable fields.
• Minimum 3 years of specialized experience (equivalent to GS-13/14 level).
• Expert understanding and implementation of HIPAA policies.
• Ability to obtain and retain a Public Trust clearance level II.
• Understanding of the public health or healthcare system.
• Strong analytic communication and writing skills.

Nice to have

• Industry certifications such as CISSP, CISM, or CIPP/CIPT.

Culture & Benefits

• Medical, dental, and vision insurance.
• 401(k) plan with employer match.
• Paid holidays and PTO (sick/vacation).
• Life and disability insurance.
• Educational reimbursement and Pet Insurance.