Share this Job

INFORMATION COMPLIANCE OFFICER - 40009875

Date: Jul 18, 2021

Location: DURHAM, NC, US, 27701

Company: Durham County

Durham County Government employs approximately 1,900 employees that work towards providing needed services throughout the community. With a wide array of services, Durham County Government is at the heart of a rapidly growing and diverse area offering residents, employees and visitors exciting opportunities to live, work, grow and play. For more information about Durham County Government, visit www.dconc.gov.

 

DEPARTMENT:       

Information Services & Technology

DATE POSTED:            

April 22, 2021

CLOSING DATE:           

Until Filled

SALARY MINIMUM:  

$65,072.00

SALARY MAXIMUM:

$117,129.00

POSITION NUMBER:            

40009875

JOB TYPE:

Full-Time

 

**THIS POSTING IS SUBJECT TO CLOSE WITHOUT PRIOR NOTIFICATION**

 

GENERAL DESCRIPTION

 

This position will be responsible for monitoring and maintaining compliance with various security related regulations, audits, and reports remediation progression to senior leadership. This position will be the trusted third-party when providing evidence to audit and for compliance request.

 

DUTIES AND RESPONSIBILITIES

 

  • Manage the design and implementation of security controls to ensure compliance with Federal and State regulation, as well as industry best practices.
  • Reports on security incidents, compliance violations, remediation efforts, and mitigations identified by the security tools and third-party vendors.
  • Maintains a record of County remediation and vulnerability efforts.
  • Assists IS&T with the identification, response, remediation, and recovery of malware outbreaks across the County.
  • Implements a process for receiving, documenting, tracking, investigating, and acting on all security events, vulnerabilities, findings, and incidents into security policies and procedures.
  • Manages all required breach determination and notification processes under HIPAA and applicable State breach rules and requirements.
  • Maintains up-to-date knowledge of security practices/principles and how it could benefit the County’s security posture.

 

KNOWLEDGE, SKILLS AND ABILITIES

           

  • Demonstrated skills in collaboration, teamwork, and problem-solving to achieve goals
  • Demonstrated skills in verbal communication and listening.
  • Demonstrated skills in providing excellent service to customers.
  • demonstrated skills in communicating to senior levels of leadership.
  • Extensive familiarity with regulatory compliance to include but not limited to, health care relevant legislation and standards for the protection of health information.
  • Demonstrated skills in providing recommendations of mitigating steps to reduce the likelihood of compromise of confidentiality, integrity, or availability of information or information systems.
  • Ability to work successfully among diverse populations and professions
  • Thorough knowledge of compliance frameworks (SOC2, ISO27001, PCI).
  • A high level of integrity and trust.        
  • Excellent communication and writing skills.

 

MINIMUM EDUCATION AND EXPERIENCE REQUIREMENTS

 

Requires a Bachelor’s degree in Computer Information Systems, Information Technology, Cybersecurity or related field, supplemented by a minimum of three years of equivalent experience; or an Associate’s degree in Information Security or related field with five years of prior experience with cybersecurity and compliance frameworks such as National Institute of Standards and Technology (NIST) cybersecurity framework; or an equivalent combination of training and experience.

 

SPECIAL CERTIFICATION AND LICENSES

 

A valid North Carolina driver’s license is required.

 

PREFERRED QUALIFICATIONS

 

A security, risk, or audit certification such as (ISC)² CISSP, CRISC, CISA or equivalent is preferred.     

 

Durham County Government is an Equal Opportunity Employer


Nearest Major Market: Durham
Nearest Secondary Market: Raleigh