Sr. Information Security Risk Analyst [HIPAA & HITRUST & NIST SP 800-30, NIST SP 800-53
Software Technology, Inc.
Sr. Information Security Risk Analyst [Must Have HIPAA & HITRUST & NIST SP 800-30, NIST SP 800-53] 221 E Lane Street, Raleigh, NC/REMOTE 12 Months Description The North Carolina Health Information Exchange Authority is seeking a skilled Information Security Risk Analyst on a contract basis to lead the execution of its annual enterprise security risk assessment. Responsibilities Plan and conduct NC HIEA’s annual enterprise security risk assessment using NIST SP 800-30, ISO 27005, or FAIR methodologies. Ensure full alignment with NIST SP 800-53 Revision 5, including RA (Risk Assessment), AC (Access Control), SC (System Communications Protection), IR (Incident Response), and more. Incorporate NIST Privacy Framework and NIST SP 800-53 Rev. 5 privacy control families (AP, AR, DI, DM, IP, SE, TR, UL). Build and maintain a comprehensive risk register, with treatment plans for mitigation, transfer, acceptance, or avoidance. Map risks and mitigation efforts to HITRUST CSF control domains to support future certification. Develop and deliver documentation, dashboards, and executive summaries. Collaborate with internal stakeholders to validate findings and support security governance efforts. #J-18808-Ljbffr Software Technology, Inc.
- The North Carolina Health Information Exchange Authority is seeking a Sr. Information Security Risk Analyst on a contract basis to lead the annual enterprise security risk... ...planning the assessment, aligning to NIST SP 800-53 Rev. 5, incorporating NIST Privacy Framework...SeniorRemote jobContract work
$78.9k - $123.3k
...responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with... ...have experience working with NIST RMF, NIST SP 800-53 controls, security... ...Action and Milestones (POA&Ms) Risk Assessments Continuous Monitoring...SuggestedPermanent employmentFull timePart timeWork at officeLocal areaRemote work- Lucid Software in Raleigh, NC is seeking a Security Risk Analyst to perform third-party vendor risk assessments, respond to security questionnaires... ...of risk management experience and a solid understanding of NIST 800-53, ISO 27001, and SOC 2; a #J-18808-Ljbffr Lucid SoftwareSuggested
$105k - $130k
...Nelnet company, provides information security and privacy consulting... ...but not limited to NIST SPs 800-53 and 800-171, NIST CS... ..., CMMC, GDPR, FERPA, HIPAA/HITECH, GLBA, and FTC... ...standards including NIST SP 800-171, NIST CSF, ISO... .... Understanding of risk assessments and targeted...SuggestedTemporary workFixed term contractLocal areaRemote workWork from homeHome office- ...Conduct third-party vendor risk assessments and internal risk... ...directly to standard vendor security questionnaires and support internal... ...Bachelor’s degree in information security assurance, business... ...frameworks and principles (e.g. NIST 800-53, ISO 27001, SOC 2, etc). Strong...Suggested
$124.2k - $186.2k
About the Team Information Security organization advances the overall state of... ...situations, identify potential risks, and make sound judgments... ...history background check within 30 days after the employee’s start... .../remote) Pay Range: $111,800—$167,600 USD. Equal Opportunity...Local areaRemote work$59.2k - $92.58k
...integrity, and provide actionable security insights. The ideal... ...anomalies, validate information accuracy, and support cybersecurity... ..., potential security risks, and compliance issues. Develop... ...and standards, including NIST RMF, FISMA, and NIST SP 800-53 Rev. 5. Ability to...Permanent employmentFull timeContract workPart timeLocal area- ...Renewable Energy is seeking an experienced Information Security Compliance Analyst to join our team and help safeguard... ...and experience with NERC CIP and NIST standards are essential for this... ...Implement necessary measures to mitigate risks and ensure the integrity and...
$172k - $258k
...is seeking a Director of Information Security Audit & Compliance to join... ...defensible framework aligned to NIST CSF and NIST 800-53. The ideal candidate... ...roadmap for ISO, NIST-based, HIPAA, and client-driven audits.... ...plans. Governance, Risk & Control Framework Align...InternshipSeasonal workWork at officeLocal area$172k - $250k
...is seeking a Director of Information Security Audit & Compliance to join... ...defensible framework aligned to NIST CSF and NIST 800-53. The ideal candidate... ...for ISO, NIST-based, HIPAA, and client-driven audits.... ...remediation plans. Governance, Risk & Control Framework...InternshipSeasonal workWork at officeLocal areaFlexible hours3 days per week- A financial services company in Raleigh seeks an experienced IT Security Analyst. This role includes supporting information security programs, analyzing threats, and enhancing security measures. Ideal candidates will have over 3 years of experience in IT security, preferably...
- MaintainX is seeking an Information Security professional to enhance its security posture by managing vulnerabilities and conducting assessments. This role requires expertise in AWS and various security frameworks to support compliance programs. The ideal candidate has...Senior
- Job Description The Senior Security Architect is responsible for... ...maintenance of Enterprise Information Security policies, standards... ...Participate in risk assessment activities as subject... ...baselines and frameworks (NIST CSF, NIST SP 800‑171, CIS) Vulnerability management...SeniorTemporary work
- ...Our client has an opening for a Security Specialist - Sr (719317). This position is for 12... ...is in Raleigh, NC. Job details: Risk Management: Must be able to identify... ...performing risk assessments based on NIST 800-53 Rev 4, ISO-27001, HIPAA, and IRS Pub 1075. Required 7...Remote work
- ...ensures enterprise alignment with NIST Cybersecurity Framework (CSF)... ...including PCI DSS, HIPAA, and U.S. state privacy regulations... .... Partner with IT, Audit and Security teams to integrate OneTrust with... ...PCI DSS attestations HIPAA risk and compliance reviews Privacy...SeniorLocal area
- ...opportunity As an Offensive Security Analyst on the Attack Surface Management... ...validation of third‑party risk assessments, identifying misconfigurations... ..., pregnancy, genetic information, national origin, protected... ...process, please call 1-800-EY-HELP3, select Option 2 for...Summer holidayFlexible hours
- IT Security Analyst needs 3+ years experience IT Security Analyst requires: IT security Cyber security Finance industry IT Security Analyst duties: Supports Information Security and Cyber Threat management programs within the Bank at an advanced level of ability. Analyzes...
$50 - $55 per hour
...Security Compliance Analyst The Security Compliance Analyst leads the full certification lifecycle for... ...Qualifications Understanding of the NIST framework, particularly as it applies... ...orientation, gender identity, genetic information or any characteristic protected by law...Contract workTemporary workRemote workFlexible hours$118.3k - $219.8k
...professionals for this role. Manager, Security – Security Compliance & Risk Management Function: Information Security / Compliance & Risk... ...frameworks including NIST CSF, ISO 27001, SOC 2, and other... ...Pay Range: $118,300 - $219,800. Geographic differentials may...Local area- ....Job Summary:The IT Systems Risk Analyst is responsible for the identification... ..., Compliance, Audit, and Information Technology) to understand,... ...frameworks, e.g., NIST CSF 2.0, CIS, COBIT or similar... ...the contemporary information security threat landscape and how to...Work experience placementWork at office
$115.1k - $165.45k
...innovation team within Global Security is a high-impact, automation... ...impact — not theoretical risk, but provable exploitation with... ...Familiarity with FedRAMP, NIST SP 800‑53, or federal compliance frameworks... ..., veteran status, genetic information, and other legally protected...Local areaImmediate startRemote work$128.1k - $239.6k
EY Infosec is seeking a Cloud Security consultant with expertise in... ...identify and mitigate security risks for EY’s business... ...developers, DevOps, and other information security roles in the design,... ...Frameworks: CIS Benchmarks, NIST 800‑53, 800‑190, ISO 27001/27002, SOC...Summer holidayLocal areaFlexible hoursShift work- A leading consulting firm located in Cary, North Carolina seeks an IT Business Analyst with over a year of experience. Key responsibilities include running monthly security reports, establishing reporting schedules, and contributing to security vendor relationships. The...Work at office
- Lucid Software is seeking a Security Analyst to protect corporate assets, web applications, and employees. You will execute day‑to‑day Security Assurance operations, perform third‑party risk assessments, and support GRC initiatives. The role emphasizes a risk and compliance...
- Lucid Software is seeking a Security Analyst to safeguard corporate assets, web applications, and personnel. You will drive third-party risk assessments, contribute to GRC programs, and support audits for SOC 2 and ISO 27001 while collaborating with Legal, Engineering,...
- Computer World Services Corp. (CWS) is looking for an experienced Security Analyst/Data Security Specialist in Morrisville, NC. The role... ...a relevant field or equivalent experience and 5-7 years in information security. Preferred qualifications include relevant certifications...
$75k - $90k
ITAM Hardware Analyst U.S. citizenship is required for this position... ...‑time inventory, portfolio, security, and compliance data... ...restrictions. Bachelor’s degree in Information Technology, Computer Science... .... Basic knowledge of NIST 800‑53, 800‑171 or similar control...Contract workWork at officeImmediate startRemote work2 days per week- ...Job: NCDIT - Security Specialist- Mid Level... ...will be familiar with risk management, comfortable... ...possess knowledge of HIPAA and NIST privacy and security requirements... ...for health information networks. The candidate... ...includes preparation for HITRUST certification...Full timeRemote work
$132.5k - $338.3k
...reality. We Are Accenture Security helps organizations... ...from within. We blend risk strategy, digital identity... ....g., ISO 27000 series, NIST 800 Series, COBIT, IT... ...: PCI, Sarbanes‑Oxley, HIPAA, GLBA, FISMA Minimum 5... ...paid time off. See more information on our benefits here....SeniorWork experience placementLive inWork at officeLocal area$160k - $190k
...authoritative owner of the CMMC System Security Plan (SSP) and the final... ..., control scope, and risk acceptance. The role ensures... ...mastery of CMMC Level 2 and NIST SP 800‑171, including assessment objectives... ...'s degree in cybersecurity, information systems, or a related field...SeniorLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr. Information Security Risk Analyst [HIPAA & HITRUST & NIST SP 800-30, NIST SP 800-53. Be the first to apply!
- regulatory reporting analyst Raleigh, NC
- data solutions analyst Raleigh, NC
- financial data analyst Raleigh, NC
- entry level data analyst no experience Raleigh, NC
- entry level information security analyst Raleigh, NC
- data analyst - r python sql Raleigh, NC
- entry level healthcare data analyst Raleigh, NC
- data integrity analyst Raleigh, NC
- data analyst supply chain analytics Raleigh, NC
- data analyst part time work from home Raleigh, NC


