Support HITRUST readiness and assessment projects by assisting with documentation collection, review, and organization.
Help track and validate evidence provided by clients against HITRUST requirements.
Assist with control mapping and documentation preparation under the guidance of senior auditors.
Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals, they deliver next-generation audit services across SOC 2, ISO 27001, PCI DSS, HITRUST, CMMC, and FedRAMP frameworks. Recognized on the Inc. 5000 and Fast 50 lists, Insight Assurance is one of the fastest-growing global audit firms, with 180+ professionals supporting nearly 2,000 clients across the Americas, EMEA, and APAC.
Design, implement, and maintain network infrastructure across HQ, clinics, and data centers.
Manage Meraki-based infrastructure and related security devices.
Lead investigations, forensics, and remediation efforts.
Spring Fertility is a passionate team of leading physicians and scientists building the fastest-growing fertility group in the country. They are grounded in clinical excellence and innovation, delivering patient-centric care, and committed to guiding and supporting patients every step of the way.
Design and implement identity and access management (IAM) models, including RBAC and privileged access controls
Configure and advise on security tools such as Microsoft Defender for Cloud
Define and enforce security policies and governance guardrails using Azure Policy
Nava is a consultancy and public benefit corporation working to make government services simple and effective. As a client services company, they guide agencies constrained by legacy systems to a future with sharp user experiences built on secure, reliable, fault-tolerant cloud infrastructure.
Responsible for comprehensive information security risk assessments of third-party vendors.
Evaluate vendors to ensure they meet internal information security policies, HIPAA, PCI DSS requirements, and applicable regulatory standards.
Thoughtfully analyze vendor-provided documentation, proactively identify potential risks, and produce detailed and accurate assessment reports.
Planned Parenthood is the nation’s leading provider and advocate of high-quality, affordable sexual and reproductive health care. They have health centers, programs in schools and communities, and online resources, and are a trusted source of reliable education and information.
Design, deploy, and manage security solutions within Cloud environments( Azure experience preferred).
Assist other security engineering and consulting needs as they arise.
Implement cloud security controls and monitor compliance frameworks (Azure Security Center, Azure Policy, etc.).
UChicago Medicine is a world-class academic healthcare system. We provide superior healthcare with compassion, always mindful that each patient is a person, an individual.
Oversee the internal cybersecurity program, road map, and strategy.
Partner with Product, Engineering, Legal, and Compliance leadership to determine risks and deploy risk management processes.
Serve as Waymark’s HIPAA Security Officer, ensuring compliance with the HIPAA Security Rule.
Waymark is a mission-driven team transforming care for people with Medicaid benefits. They partner with communities, delivering technology-enabled, human-centered support to help patients stay healthy and thrive in Medicaid healthcare delivery.
Maintain documentation for ISO/IEC 27001 & ISO/IEC 42001; improve activities.
Extract security requirements from client MSAs; identify gaps and risks.
Coordinate internal and client audit requests; collect evidence.
Avalere Health's mission is to ensure every patient is identified, treated, supported, and cared for. They bring Advisory, Medical, and Marketing teams together to forge unconventional connections, building a future where healthcare is not a barrier and no patient is left behind.
Plays a key role in safeguarding the company’s cloud-based healthcare SaaS platforms, infrastructure, and customer data.
Responsible for designing, implementing, and managing enterprise-grade security solutions that align with regulatory frameworks such as HIPAA, HITRUST, SOC 2, and NIST 800-53.
Hands-on technologist with deep knowledge of cloud security (AWS/Azure), DevSecOps practices, endpoint protection, identity management, and security automation.
Reveleer provides cloud-based healthcare SaaS platforms. Reveleer is an equal opportunity employer and E-Verifies all new hires.
Own and evolve MHN’s enterprise security strategy aligned with business goals and healthcare regulatory requirements.
Lead security architecture and controls within Microsoft Azure, including identity and access management, network security, encryption, logging, and monitoring.
Develop and oversee security risk assessments, threat modeling, and vulnerability management programs.
Medical Home Network (MHN) partners with Federally Qualified Health Centers (FQHCs) nationwide to transform care in the safety net, reduce health disparities, and build healthier communities. It is a mission-driven public benefit corporation that helps FQHCs succeed in value-based care through technology, care model innovation, and strong partnerships.