ISG

HITRUST Assessment Manager

ISG

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇵🇦 Panama

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

Cyber Security

About the role

  • The HITRUST Assessment Manager is responsible for leading and managing HITRUST readiness and validated assessment engagements for clients, with a focus on healthcare and other highly regulated industries.
  • This role combines hands-on assessment work with people leadership, overseeing a Panama-based team that supports global clients.
  • It ensures high-quality deliverables, efficient project execution, and a consistent, standards-driven approach aligned with the HITRUST CSF and related frameworks.
  • Lead multiple concurrent HITRUST readiness and validated assessment engagements from planning through reporting.
  • Develop and execute assessment plans, including scope, objectives, timelines, and resource allocation.
  • Conduct and oversee comprehensive risk and gap assessments against the HITRUST CSF, including control design and operating effectiveness testing.
  • Review client policies, procedures, technical configurations, and evidence to evaluate conformance with HITRUST CSF, HIPAA, and related regulatory expectations.
  • Develop clear, actionable remediation recommendations and roadmaps to support clients’ certification or recertification efforts.

Requirements

  • Minimum five years of direct, hands-on experience performing HITRUST validated assessments, ideally within a public accounting, consulting, or specialized cybersecurity firm.
  • Minimum two years of experience in a formal management or team lead role (e.g., managing staff/seniors, overseeing engagement teams, or running a regional delivery team).
  • Demonstrated experience working with U.S.-based and international team members and clients and navigating cross-border, remote-delivery engagement models.
  • Prior experience with SOC 2, ISO 27001, or other assurance/compliance engagements is strongly preferred.
  • Bachelor’s degree in Information Systems, Information Technology, Computer Science, Cybersecurity, Accounting, or a closely related field.
  • One or more relevant information security/audit certifications such as CISA, CISSP, CISM, CRISC, or similar.
  • Active Certified HITRUST CSF Practitioner (CCSFP) certification (or ability to obtain within three months after hire).
  • Demonstrated formal training in HITRUST assessment methodology and MyCSF usage.
  • Fluent English (spoken and written) required.
  • Spanish language skills strongly preferred.
Benefits
  • Flexible Paid Time Off and paid Holidays
  • Quarterly Performance Bonuses
  • Full-time employee of our Panamanian entity
  • Competitive salary and benefits package.
  • Opportunities for professional growth and development.
  • Collaborative and innovative work environment.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
HITRUST validated assessmentsrisk assessmentsgap assessmentscontrol designoperating effectiveness testingremediation recommendationsproject executionresource allocationassessment planningtechnical configurations
Soft skills
people leadershipteam managementcommunicationcross-border collaborationclient engagementproblem-solvingorganizational skillsactionable recommendationsremote delivery managementstakeholder management
Certifications
CISACISSPCISMCRISCCertified HITRUST CSF Practitioner (CCSFP)