POSITION PURPOSE:# Participates in security strategy sessions with CIO and Information Security Officer. Implements technical controls in support of VVMC#s IT security and compliance programs.
Oversees user account management in Active Directory, Cerner, McKesson, and other systems. Creates and provides status reports on InfoSec systems. ESSENTIAL JOB FUNCTIONS:# 1.
Monitor VVMC#s Information Security program, including threat detection and prevention and patch management oversight. Provide information security education, and awareness to staff. Participate in security audits and implement technical controls to mitigate or remediate discovered vulnerabilities and risks across the entire enterprise. 2.
Act as primary Cerner user account administrator. Help define and continually reassess roles and permissions within the EMR. Use available tools and reports to identify inappropriate usage. Implement controls to mitigate risks to all PHI. 3.
Develop and maintain a unified identity management platform across multiple platforms to include on-boarding, role transitions, off-boarding, and remote access controls while using a variety of technologies such as SSO, LDAP, SAML and RBAC to provide a better user experience while improving VVMC#s security posture. 4. Work with Information Security Officer and CIO to provide metrics for measuring Information Security program success. 5. Provide and maintain system documentation and procedures for IT applications. 6.
Work with vendors for timely resolution of software/hardware issues. 7. Communicate with customers in a prompt, courteous, professional manner, including timely feedback. 8. Evaluate problems in a timely manner and collect all information required to solve the problem.
Analyze systems issues to identify opportunities for problem prevention. 9. Communicate and collaborate appropriately with local and/or remote support staff to develop problem solutions and opportunities for proactive problem avoidance. 10. Take calls as scheduled to meet around-the-clock needs of system users. 11.
Role models the principles of a Just Culture. 11. Perform other duties as assigned. Must be HIPAA compliant.
QUALIFICATIONS: Experience: Three years of experience in healthcare information security preferred. Demonstrated knowledge of Network Hardware Configuration, Network Protocols, Information Security requirements for healthcare, and policy creation required.
Demonstrated knowledge of Cerner Millenium and McKesson products preferred. Education: Bachelor#s degree in computer science or information systems preferred.
Vail Valley Medical Center