Sr. Business Information Security Consultant - Remote

Our work matters. We help people get the medicine they need to feel better and live well.  We do not lose sight of that. It fuels our passion and drives every decision we make.

Job Posting Title

Sr. Business Information Security Consultant - Remote

Job Description

The Senior Business Information Security Consultant serves as a direct security contact for our clients. This position provides reporting, metrics and regular status updates to clients. The Senior Business Information Security Consultant works collaboratively with key stakeholders to ensure client security requirements are being met and adhered to.

Responsibilities

• Serves as primary point of contact for Commercial and State Government Solutions clients and manages intake and coordination of business requests
• Collate monthly reporting (metrics, POAMs, vulnerability, etc.) and provide clients and stakeholders with technical overview on security trends and service issues
• Understand Prime Information Security's policies, processes, and technologies to provide meaningful guidance, advice and understanding to client information security
• Assist in the documentation, management, tracking and reporting of Plan of Action and Milestones to client accounts
• Participate in client RFP and contract reviews and advise Information Security Leadership to ensure consistent security approaches across business accounts
• Assist in the creation and management of System Security Plans (SSPs), work with content owners to ensure SSPs are updated as required and respond as the primary contact for the plans
• Assist with client security assessments and requests by providing the system, services, and requirement scope; assist the Governance Risk and Compliance team in crafting responses as required
• Review vulnerability and patching reports to assess risk level and prioritize remediation actions required by the IT & App teams
• Other duties as assigned

Education & Experience

• Bachelor’s degree in information security, computer science or related area of study, or equivalent combination of education and relevant work experience; High School diploma or GED is required
• 5 years’ work experience in cybersecurity and/or information technology including 3 years in an operationally focused security practitioner role
• Working knowledge of HIPAA Security Rule and NIST security standards
• Must be eligible to work in the United States without the need for work visa or residency sponsorship.

Additional Qualifications

• Excellent written, technical, and verbal communication skills
• Capable of exceling in a growing, changing, and collaborative environment
• Strong problem-solving and business analysis skills
• Ability to interpret and produce technical documentation such as diagrams, configuration parameters, processes and procedures, etc.
• Ability to manage multiple priorities and expert multi-tasking skills
• Capable of effective meeting facilitation with technical and non-technical team members

Preferred Qualifications

• CISM (Certified Information Security Manager), GIAC (global information assurance certificate), SSCP (systems security certified practitioner), CISSP (certified information systems security professional), CRISC (Certified in Risk and Information Systems Control), or CISA (Certified Information Systems Auditor)
• Experience working in environment with regulatory compliance frameworks and their requirements (PCI, HITRUST, SOC 2 audits, MARS-E etc.)
• Experience in PBM / health care industry
• Experience in the infrastructure domain working with IT Architecture
• Experience with understanding of security assessments, domains and controls

Physical Demands

• Ability to travel up to 5% of the time
• Ability to work a flexible schedule including working on-call 24x7 as required
• Constantly required to sit, use hands to handle or feel, talk and hear
• Frequently required to reach with hands and arms
• Occasionally required to stand, walk and stoop, kneel, and crouch
• Occasionally required to lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds
• Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus

Every employee must understand, comply with and attest to the security responsibilities and security controls unique to their job, and comply with all applicable legal, regulatory, and contractual requirements and internal policies and procedures.

Potential pay for this position ranges from $94,000.00 - $160,000.00 based on experience and skills.

To review our Benefits, Incentives and Additional Compensation, visit our Benefits Page and click on the "Benefits at a glance" button for more detail.

Prime Therapeutics LLC is proud to be an equal opportunity and affirmative action employer. We encourage diverse candidates to apply, and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sex (pregnancy, sexual orientation, and gender identity), national origin, disability, age, veteran status, or any other legally protected class under federal, state, or local law.   

We welcome people of different backgrounds, experiences, abilities, and perspectives including qualified applicants with arrest and conviction records and any qualified applicants requiring reasonable accommodations in accordance with the law.

Prime Therapeutics LLC is a Tobacco-Free Workplace employer.

Positions will be posted for a minimum of five consecutive workdays.