Cybersecurity Consultant / vCISO
Strata Information Group
CloudCyber Security
Security Compliance Manager
Coloplast
full-time
Posted on:
Location Type: Remote
Location: Remote • Minnesota • 🇺🇸 United States
Visit company websiteSalary
💰 $117,000 - $175,000 per year
Job Level
SeniorLead
About the role
- Plan and manage the HIPAA Security Rule Framework across North American business units at Coloplast
- Align HIPAA framework with ISO 27001 standards
- Monitor compliance through risk assessments, audits, and incident monitoring
- Conduct regular risk assessments for systems processing electronic personal health information (ePHI)
- Formulate security policies and training programs
- Respond to security incidents and ensure proactive risk management
- Maintain awareness of changes in relevant regulations to uphold compliance
- Execute risk assessments across Coloplast Group systems processing ePHI
- Collaborate with Digital, Data & IT (DD&IT) to establish compliance remedial and risk mitigation plans
- Provide ePHI security guidance and risk reporting to organizational leaders
- Document security policies, procedures, and compliance activities
- Audit third-party vendors for HIPAA compliance
- Review security measures in accordance with established policies
- Train stakeholders on HIPAA requirements
- Perform other duties as assigned
Requirements
- Bachelor’s degree
- Minimum 8 years in IT security governance, risk, and compliance
- Minimum 4 years in a HIPAA Security Officer or similar role
- Recognizable experience with risk management processes, risk assessment tools, and methodologies
- Comprehensive knowledge of HIPAA Security Rule, ISO 27001, and related security frameworks
- Familiarity with U.S. and Canadian data protection laws, including HIPAA, CCPA, state security and breach notification requirements, and GDPR
- Experience leading internal and external (third-party) audits
- Proficient in IT security technologies
- Strong communication skills to engage stakeholders across locations and levels
- Preferred: Certified HIPAA Security Professional (CHSP)
- Preferred: Certified ISO 27001 Lead Auditor
- Preferred: Additional relevant information security certificates
- Ability to work independently, structured, motivated, and analytical
- Problem-solving skills with strong business acumen
- Decision-making ability and adaptability
- Excellent time management and multitasking skills
- Diplomatic and confidential handling of situations
- Requires travel (10-20 days per fiscal year) with flexible hours
Benefits
- Comprehensive medical, dental, and vision insurance plans
- Access to company sponsored wellness programs and mental health resources
- Paid leave of absence for qualifying events
- Generous paid parental leave for both birthing and non-birthing parents
- Competitive 401(k) plan with company match that vests immediately
- Financial planning services
- Corporate discount programs for goods and services
- Generous paid time off
- Flexible work hours and flexible work arrangement options
- Opportunities for continuous learning, training programs, mentorship, and tuition reimbursement
- Recognition programs including peer recognition, bonuses, awards, and special events
- Team-building activities, volunteer opportunities, and company-sponsored events
- Sustainability initiatives
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
risk managementrisk assessmentHIPAA Security RuleISO 27001security policiesincident monitoringcompliance auditsdata protection lawsePHI securitysecurity frameworks
Soft skills
communicationproblem-solvingdecision-makingadaptabilitytime managementmultitaskingindependencestructured thinkingmotivationdiplomacy
Certifications
Certified HIPAA Security Professional (CHSP)Certified ISO 27001 Lead Auditorinformation security certificates
