The Georgia Department of Community Health (DCH) seeks anexperienced Cybersecurity Audit Manager to oversee and enhance cybersecuritycompliance efforts, ensuring the security of DCH's information systems, data,and processes.
The Georgia Department of Community Health (DCH) seeks adedicated and skilled Cybersecurity Audit Manager to lead its cybersecurityauditing and compliance initiatives. This position is pivotal in ensuring DCH'scompliance with federal and state regulations, protecting sensitiveinformation, and managing cybersecurity risks. The Cybersecurity Audit Managerwill be key in safeguarding DCH's IT infrastructure and assets while enhancingoverall security practices.
The successful candidate will be responsible for:
-Cybersecurity Risk Management: Identifying and mitigating risks to DCH's information systems and assets.
-Policy Development and Enforcement: Establishing and enforcing security policies, standards, and procedures.
-Auditing and Compliance: Conducting regular audits and assessments to ensure compliance with industry regulations and legal standards.
-Vendor Risk Management: Assessing and managing third-party risks related to cybersecurity.
-Continuous Improvement: Enhancing the cybersecurity program in response to emerging threats and evolving best practices.
Qualifications:
In-depth knowledge of federal and state security regulations, including HIPAA and NIST frameworks.
At least five years of experience in cybersecurity auditing, with a preference for healthcare or government environments.
Minimum of one year of management experience.
Education:
Bachelor's degree from an accredited institution.
This role offers the opportunity to drive meaningful changein protecting critical health information systems while contributing to DCH'smission of improving the health and wellness of millions of Georgians.
Skill | Required /Desired | Amount | of Experience |
---|---|---|---|
Experience in cybersecurity auditing, with a focus on healthcare or government environments | Required | 5 | Years |
Management experience. | Required | 1 | Years |
Bachelor's degree from an accredited college or university | Required | 0 | |
Thorough understanding of federal and state computer security and privacy laws, regulations, standards, and Controls | Required | 0 | |
Thorough understanding of HIPAA Final Security Rule, the National Institute of Standards and Technology (NIST) | Required | 0 | |
Thorough understanding of Special Publications (including 800-53 Moderate-Impact-Baseline) | Required | 0 | |
Experience with HITRUST software | Required | 0 | |
Experience with AWS | Required | 0 |
No. | Question |
---|---|
Question1 | Absences greater than two weeks MUST be approved by CAI management in advance, and contact information must be provided to CAI so that the resource can be reached during his or her absence. The Client has the right to dismiss the resource if he or she does not return to work by the agreed upon date. Do you agree to this requirement? |
Question2 | What is your candidate's email address? |
Question3 | If selected for engagement, your candidate's hourly Pay Rate must be at least -? Your candidate can be paid more; however, the hourly SRP Rate cannot exceed -? Do you agree to these requirements? |
Question4 | The maximum mark-up for this engagement’s SRP rate is 35%. To be competitive on pricing, a mark-up below the 35% threshold is suggested. Do you agree to propose a mark-up at or below 35%? |
Question5 | This assignment is contingent upon customer renewal and availability of adequate funding. Do you agree to this requirement? |
Question6 | If selected for engagement, your candidate will be expected to start no later than 2 weeks (10 business days) after the client's selection date? Do you agree to this requirement? |
Question7 | Candidates must be local to the Atlanta area. This HYBRID position requires 2 days per week ON-SITE. Do you and your candidate accept this requirement? |
Question8 | In what CITY and STATE does your candidate reside? |