Technical Support Analyst

The Virginia Department of Health (VDH) is seeking an experienced Technical Support Analyst to support enterprise-level Electronic Health Record (EHR) security operations. This role is responsible for defining and managing user access controls, enforcing security policies, and ensuring compliance with healthcare regulations such as HIPAA. The ideal candidate will collaborate with EHR Application teams, Information Security Office (ISO), and compliance stakeholders while also providing Tier 1 support to end users. This position plays a critical role in maintaining a secure, compliant, and efficient EHR environment., * Define, implement, and maintain user access policies, security roles, and role-based permissions within the EHR system.

• Map and manage EHR position definitions, including Millennium Positions, Preferences, and OHPAC Security Groups aligned with VDH roles.
• Monitor and enforce access controls to ensure users have appropriate permissions based on job responsibilities.
• Collaborate with IT, Security, and EHR teams to design and automate user provisioning and de-provisioning processes.
• Conduct internal security audits to identify risks, vulnerabilities, and compliance gaps.
• Develop and maintain EHR security policies, procedures, and documentation aligned with organizational and regulatory standards.
• Investigate and respond to EHR-related security incidents, ensuring timely resolution and reporting.
• Support internal and external audits in coordination with compliance and security teams.
• Monitor user activity (e.g., using tools like P2Sentinel) to detect anomalies and potential threats.
• Participate in system upgrades, security patches, and maintenance activities (Cerner/OHPAC).
• Collaborate with implementation teams to ensure security integration in new features and system updates.
• Stay current with emerging security threats, healthcare regulations, and industry best practices.
• Contribute to EHR domain strategy and continuous improvement initiatives.

• 3+ years of experience in IT, preferably in healthcare IT or security roles.
• Strong understanding of Electronic Health Record (EHR) systems.
• Knowledge of healthcare regulations such as HIPAA, HITECH, and Meaningful Use.
• Experience with identity and access management tools, including Active Directory (AD), Single Sign-On (SSO), and Multi-Factor Authentication (MFA).
• Hands-on experience with Cerner/OHPAC security and access management.
• Familiarity with healthcare IT infrastructure, including networking, firewalls, and database security.
• Knowledge of Discern and CCL scripting.
• Strong analytical, troubleshooting, and problem-solving skills.
• Excellent communication and collaboration abilities across technical and non-technical teams., * Experience supporting enterprise-level EHR implementations or operations.
• Prior experience working with public health or government healthcare systems.
• Familiarity with audit processes and compliance reporting.