Information Security Contract Analyst

Job Details

Do you want to work at one of the Top 100 Hospitals in the nation? We are guided by our values of Love and Excellence and are passionate about delivering health, not just health care. Come join us at ChristianaCare!

ChristianaCare Offers:

• Full Medical, Dental, Vision, Life Insurance, etc.

• Two retirement planning offerings, including 403(b) with company contributions

• Generous paid time off with annual roll-over and opportunities to cash out

• 12 week paid parental leave

• Tuition assistance

• Incredible Work/Life benefits including annual membership to care.com, access to backup care services for dependents through Care@Work, retirement planning services, financial coaching, fitness and wellness reimbursement, and great discounts through several vendors for hotels, rental cars, theme parks, shows, sporting events, movie tickets and much more!

PRIMARY FUNCTION:

The Information Security Contract Analyst will support the organization in reviewing, analyzing, and ensuring compliance with information security requirements within contracts. This contract position is an excellent opportunity for individuals with interested in information security, risk management, and contract law, who are looking to contribute to safeguarding critical data and systems across a wide array of business, clinical and technical engagements and vendor partnerships.

PRINCIPAL DUTIES AND RESPONSIBILITIES:

• Contract Review & Analysis: Review, analyze, and negotiate information security and data protection clauses in various contracts, including vendor agreements, service level agreements (SLAs), non-disclosure agreements (NDAs), and other relevant documents.

• Risk Assessment: Evaluate security risks associated with contract terms and collaborate with legal, procurement, and business teams to ensure that security controls are properly defined and aligned with organizational standards.

• Compliance Monitoring: Ensure that all contracts are in compliance with relevant laws, regulations (e.g., HIPAA, HITECH), and industry standards (e.g., HITRUST, ISO 27001, NIST) related to information security, data privacy, and confidentiality.

• Collaboration: Work closely with internal stakeholders (e.g., legal, compliance, IT security, purchasing) to ensure contracts meet business needs while mitigating information security risks.

• Documentation & Reporting: Maintain accurate records of all contract reviews, amendments, and decisions related to information security requirements. Provide regular reports and status updates to senior management and project teams.

• Training & Support: Assist in the development and delivery of training materials related to information security contract requirements for internal teams.

• Incident Response: Provide guidance on security implications related to contract breaches or violations and assist in the mitigation of any security risks arising from non-compliance.

• Process Improvement: Contribute to the development and optimization of contract review processes, templates, and best practices to enhance efficiency and reduce risks.

EDUCATION AND EXPERIENCE REQUIREMENTS:

• Bachelor’s degree preferred.  In lieu of degree can have and maintain a comparable certification such as Security+, CISSP, CISM, or CISA.

• At least 3 years of experience in a professional role. Cybersecurity is not required but preferred.

• A demonstrable interest in Information security, risk management, or compliance.

• Basic understanding of legal and regulatory requirements for information security and data privacy (e.g., HIPAA).

#LI-CD1

Post End Date

EEO Posting Statement

Christiana Care Health System is an equal opportunity employer, firmly committed to prohibiting discrimination, whose staff is reflective of its community, and considers qualified applicants for open positions without regard to race, color, sex, religion, national origin, sexual orientation, genetic information, gender identity or expression, age, veteran status, disability, pregnancy, citizenship status, or any other characteristic protected under applicable federal, state, or local law.