BISO responsible for planning and executing enterprise - wide information security initiatives at Elsevier. Driving cybersecurity awareness and managing technical risk assessments for organizational improvements.
About the role
- Security and Privacy SME at Dynanet Corporation responsible for data management compliance and governance guardrails. Ensuring secure data handling and adherence to federal regulations.
Responsibilities
- Validate sensitivity classification for data systems applying Controlled Unclassified Information (CUI), Protected Health Information (PHI), and Personally Identifiable Information (PII) classifications during metadata inventory activities
- Implement and enforce privacy controls ensuring compliance with Health Insurance Portability and Accountability Act (HIPAA), Federal privacy regulations, and organizational security policies
- Establish governance guardrails including role-based access controls (RBAC), data handling procedures, and security validation checkpoints for enterprise data catalog operations
- Design and validate security architectures for interim centralized repositories ensuring encryption at rest and in transit, audit logging, and authorized access controls
- Conduct security assessments for federated catalog integration including metadata exchange security, authentication protocols, and data protection mechanisms
- Develop and implement automated compliance monitoring including security control validation, privacy impact assessments, and regulatory compliance reporting
- Oversee security aspects of automated metadata harvesting ensuring secure extraction methods and protection of sensitive information during processing
- Validate Artificial Intelligence (AI) tool usage compliance ensuring approved tools are used within authorized environments with appropriate data handling controls
- Support User Acceptance Testing (UAT) security validation ensuring test scenarios maintain appropriate security controls and data protection measures
- Create security documentation including technical security controls, privacy procedures, and compliance validation processes
Requirements
- 8+ years of experience in cybersecurity and/or technical data privacy
- 5+ years of experience safeguarding PII, PHI, and/or classified information at the technical level
- Deep understanding of relevant DoD regulations and policies regarding the technical safeguarding of PII, PHI, and/or classified information
- Experience working with NIST 800-53 and/or NIST 800-122 guidelines
- Ability to translate technical knowledge into strategic recommendations
- Keen attention to detail, especially in relation to technical policies and procedures
- Knowledge of healthcare privacy regulations and Federal data classification requirements
- Experience with security control implementation for enterprise data management systems
Benefits
- Medical and Dental Insurance
- Paid Time Off/Holidays
- 401(k) Retirement Plans with Matching
- Remote Work*
- Paid Training
- Employee Referral Program
- Employee Development Program
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Develop innovative Cloud architectures on Microsoft Azure platforms. Secure cloud infrastructure and applications against various threats while working in a project team.
Analista Pleno de Segurança Patrimonial na Hershey Brasil, responsável por suporte de segurança física e gestão de serviços de segurança. Atuará em conformidade e gestão de crise em São Roque.
Senior Security Architect managing security architecture for Fitch Group. Leading design and implementation of control sets for emerging technologies.
Regional Information Security Officer managing security protocols and compliance for KARL STORZ. Leading local ISOs and enhancing information security measures across subsidiaries.
CISO managing information security and privacy governance at Puzzel, a leading cloud - based contact center provider in Europe. Engaging with stakeholders for compliance and risk management.
Manager of IT Support & Endpoint Security overseeing service desk operations and endpoint security strategies. Leading a team to deliver high - quality technical support and manage IT security policies.
Senior Security Officer responsible for security and safety duties in acute care settings. Providing armed presence and response, coordinating with law enforcement as required.
Security Officer overseeing sensitive information protection and compliance with regulations. Collaborating with internal teams ensure security policy implementation and risk management under EU standards.
Technical consultant addressing information security risks for USAA and guiding strategic security direction. Leading peers in assessing security strategies and educating on best practices.