Job Description :
Duration: 12 months
Location: Detroit, MI


Engagement Description –
Information Security Compliance Analyst position will be responsible for researching and communicating legal, industry framework, and regulatory compliance requirements. This individual will also assist in developing and disseminating policies, standards, and controls aligned with compliance requirements. The role will primarily focus on the following specific areas of responsibility:
Researches regulations by reviewing regulatory bulletins and other sources of information
Coordinate and create regulatory compliance activities for the enterprise.
Collaborates in the development policies and standards
Collaborates in the validation, testing, and implementation of controls
Auditing policies, standards, and controls for regulatory compliance
Acting as compliance liaison to Information Technology and other compliance groups within the enterprise.
Top 3 Required Skills/Experience (3-5 years)
Strong working knowledge of the HIPAA, HITECH, NIST, and ISO security regulations and frameworks.
Demonstrated ability to work within a highly effective, cohesive and collaborative team
Proven ability to effectively work with other business units, IT management and staff, vendors, and consultants
Strong report and presentation writing skills
Required Skills/Experience

Strong communication skills such as:
o Planning and leading effective meetings
o Conducting structured interviews to collect information
o Demonstrating interpersonal and negotiation skills
o Presenting to a variety of audiences
o Conveying information to stakeholders and/or decision makers in an effective and professional manner
Minimum of 2 years leadership in Information Security policy, standards, architecture, technology and programs.
Ability to work within tight deadlines
Ability to handle changing requirements
Ability to present complex ideas and concepts to all levels of management
Demonstrated expertise in managing compliance in technical environments
Strong understanding of Information Security and the relationship between threat, vulnerability and information value in the context of risk management
Policies, standards and procedures development and writing skills
Possess a good understanding of appropriate leading-edge governance-enabling technologies.
Demonstrated expertise in managing compliance in technical environments
Preferred Skills/Experience
Minimum of 1 years of experience in healthcare or compliance-oriented industry is preferred.
Education/Certifications
Bachelor''s degree in computer science, information systems, engineering, business administration or a related field is required.
Master’s degree in computer science, information systems, engineering, business administration or a related field is preferred, but not required.
Must have at least one of the following active certifications: CISA, CISM, CISSP
Other related certifications such as ITIL, PMP, SANS/GSEC, CIPP, CRISC, CFE, CGEIT, CPA/CA are preferred, but not required