Senior Information Security Risk Analyst (HITRUST / NIST / HIPAA)
Job Title: Senior Information Security Risk Analyst (HITRUST / NIST / HIPAA)
Location: Remote
Employment Type: Contract
Experience Required: 10+ Years
Position Overview
We are seeking a highly experienced Senior Information Security Risk Analyst to lead enterprise risk assessment, governance, and compliance initiatives aligned with HITRUST, NIST, and HIPAA frameworks .
This engagement focuses on ensuring alignment with NIST SP 800-53 Rev. 5 , conducting risk assessments under NIST SP 800-30 , incorporating the NIST Privacy Framework , and positioning the organization for future HITRUST CSF certification .
The ideal candidate will have deep expertise in cybersecurity governance, risk management, and regulatory compliance within highly regulated environments (e.g., healthcare or BFSI).
Key Responsibilities
Risk Assessment & Governance
-
Build and maintain a comprehensive enterprise risk register , including treatment plans (mitigation, transfer, acceptance, avoidance).
-
Conduct formal risk assessments aligned with NIST SP 800-30 .
-
Identify and evaluate risks related to data protection, vendor risk, and regulatory compliance.
Framework Alignment & Compliance
-
Ensure full alignment with NIST SP 800-53 Rev. 5 control families, including:
-
RA - Risk Assessment
-
AC - Access Control
-
SC - System & Communications Protection
-
IR - Incident Response
-
Additional relevant control domains
-
-
Map risks and mitigation efforts to HITRUST CSF control domains to support future certification readiness.
-
Incorporate requirements from the NIST Privacy Framework into governance processes.
-
Support and validate HIPAA compliance initiatives.
Documentation & Executive Reporting
-
Develop detailed security documentation, dashboards, and executive-level summaries.
-
Provide risk posture updates and remediation tracking reports to leadership.
-
Maintain audit-ready documentation for regulatory and certification efforts.
Stakeholder & Governance Collaboration
-
Collaborate with internal stakeholders across Security, IT, Compliance, and Business units.
-
Validate findings, support remediation planning, and strengthen governance controls.
-
Provide guidance on vendor risk assessments and third-party risk management.
Required Skills & Qualifications
-
10+ years of experience in Information Security Risk Management / GRC .
-
Strong hands-on experience with:
-
HITRUST CSF (including certification readiness and risk mapping)
-
HIPAA compliance requirements
-
NIST SP 800-30 (Risk Assessment)
-
NIST SP 800-53 Rev. 5
-
NIST Privacy Framework
-
-
Experience building and managing enterprise-level risk registers.
-
Strong knowledge of cybersecurity governance and vendor risk assessment processes.
-
Experience developing executive dashboards and reporting artifacts.
-
Excellent communication and stakeholder management skills.
Preferred Experience
-
Experience in healthcare or BFSI regulated environments.
-
Prior experience supporting HITRUST certification initiatives .
-
Familiarity with risk tooling and GRC platforms.
Technical & Functional Skills
Cybersecurity GRC | HITRUST CSF | HIPAA | NIST SP 800-30 | NIST SP 800-53 Rev. 5 | NIST Privacy Framework | Risk Register Management | Vendor Risk Assessment | Security Governance
Key Competencies
-
Strong analytical and risk evaluation skills
-
Executive-level reporting and communication
-
Ability to drive compliance initiatives independently
-
Strong governance and regulatory alignment expertise
Recommended Jobs
Junior Software Engineer
Locations: Willington, DE Salary: $53,000 USD Want to start your career as a software Developer? Paid graduate training, ongoing support, opportunities at leading global employers – the A…
Staff Accountant - Full Time - St. Croix Falls
Full-time Description St. Croix Health is looking for a full-time (1.0 FTE) Staff Accountant to join our team! This position's primary location is at our St. Croix Falls, WI location. …
College Station Flex Officer
Marksman Security is built on serving our clients and building careers – just like yours. We are trusted by some of the most well-known companies and properties in the country while remaining dedicate…
Tax- Transactional Tax Intern
What You Can Expect As our Tax- Transactional Tax Intern, you will be involved in reviewing tax transactions related to the utility (retail power/gas) markets, including Sales/Use, Gross Receipts,…
Machine Operator - Entry
Night Shift: 6pm- 6am rotating nights and weekends (2-2-3 schedule) Now With Higher Pay!!!!! JOIN A GREAT TEAM, GREAT PEOPLE & A STABLE COMPANY that are growing by leaps and bounds. We are seeki…
Cook
At Studio Movie Grill , we’re all about movies and dedicated to making a real impact in the communities we serve. We’ve led the way in in-theater dining, transforming the movie-going experience. As …
Building Engineer
BUILDING ENGINEER – AUSTIN, TEXAS COMPANY BH Properties is a privately held commercial real estate investment firm focused on value-add acquisitions in offic…
Sales Lead Generator
Sales Lead Generator at Will Fix It Plumbing, Heating, Cooling, Electrical summary: CVWalletExtranet.Domain.Entities.JobShortDescription Company Name: Will Fix It Plumbing, Heating, Cooling, Ele…
Junior Sales Representative - Conroe
Description D.R. Horton, Inc., the largest homebuilder in the U.S., was founded in 1978 and is a publicly traded company on the New York Stock Exchange. It is engaged in the construction and s…
Inside Crew Member- Jet's Pizza TX005
Start your Jet's career I Whether you're looking for a new career or a second job to earn supplemental income, we’re looking for motivated, hardworking individuals who want to learn and grow with the…