Cybersecurity Compliance Specialist

Our Cybersecurity Compliance Specialist will help lead implementation and ongoing management of the HITRUST certification program in a HIPAA-regulated environment., * Lead and coordinate HITRUST certification readiness and assessment efforts

• Maintain the HITRUST control environment and evidence collection processes
• Coordinate with the internal teams to implement and maintain HITRUST controls
• Manage ongoing HITRUST annual maintenance and interim assessments
• Support external assessors and internal stakeholders during audits
• Ensure alignment between HITRUST, HIPAA, and internal security frameworks

• Bachelor or International Equivalency degree in Cybersecurity, Computer Science, Electrical Engineering, Information Systems, or closely related field of study; or equivalent work experience (Two years' relevant work experience is equivalent to one-year college)
• Associate Degree in Computer Science, Electrical Engineering, Information Systems, or closely related field of study + 2 years additional experience

Preferred: HITRUST CCSFP designation

Required Experience: 2-3/+ years' relative information/cybersecurity experience, to include:

• Experience implementing or managing HITRUST certification
• Strong knowledge of HIPAA security requirements
• Experience coordinating control implementation across multiple teams
• Experience with audit evidence management

Preferred Experience:

• HITRUST CCSFP or practitioner experience
• Experience with SOC2, NIST 800-53, and/or NIST CSF
• Background in healthcare or health insurance environments, To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed above are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

As of the date of this posting, a good faith estimate of the current pay range is $78,064 to $117,095. The position is eligible for an annual incentive bonus (variable depending on company and employee performance). The pay range for this position takes into account a wide range of factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, relevant experience, skills, seniority, performance, travel requirements, internal equity, business or organizational needs, and alignment with market data. At Blue Cross of Idaho, it is not typical for an individual to be hired at or near the top range for the position. Compensation decisions are dependent on factors and circumstances at the time of offer.

We offer a robust package of benefits including paid time off, paid holidays, community service and self-care days, medical/dental/vision/pharmacy insurance, 401(k) matching and non-contributory plan, life insurance, short and long term disability, education reimbursement, employee assistance plan (EAP), adoption assistance program and paid family leave program.

We will adhere to all relevant state and local laws concerning employee leave benefits, in line with our plans and policies.