Cybersecurity Compliance Specialist

Our Cybersecurity Compliance Specialist will help lead implementation and ongoing management of the HITRUST certification program in a HIPAA-regulated environment.

Key Responsibilities:

• Lead and coordinate HITRUST certification readiness and assessment efforts

• Maintain the HITRUST control environment and evidence collection processes

• Coordinate with the internal teams to implement and maintain HITRUST controls

• Manage ongoing HITRUST annual maintenance and interim assessments

• Support external assessors and internal stakeholders during audits

• Ensure alignment between HITRUST, HIPAA, and internal security frameworks

Location: this position has preference to based in hybrid work location (onsite at Meridian Idaho campus and WFH). There may be opportunity for fully remote within a mutually acceptable location. #LI-Hybrid

Required Education (must meet one of the following):

• Bachelor or International Equivalency degree in Cybersecurity, Computer Science, Electrical Engineering, Information Systems, or closely related field of study; or equivalent work experience (Two years’ relevant work experience is equivalent to one-year college)

• Associate Degree in Computer Science, Electrical Engineering, Information Systems, or closely related field of study + 2 years additional experience

• Preferred: HITRUST CCSFP designation

Required Experience: 2-3/+ years’ relative information/cybersecurity experience, to include:

• Experience implementing or managing HITRUST certification

• Strong knowledge of HIPAA security requirements

• Experience coordinating control implementation across multiple teams

• Experience with audit evidence management

Preferred Experience:

• HITRUST CCSFP or practitioner experience

• Experience with SOC2, NIST 800-53, and/or NIST CSF

• Background in healthcare or health insurance environments

As of the date of this posting, a good faith estimate of the current pay range is $78,064 to $117,095. The position is eligible for an annual incentive bonus (variable depending on company and employee performance). The pay range for this position takes into account a wide range of factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, relevant experience, skills, seniority, performance, travel requirements, internal equity, business or organizational needs, and alignment with market data. At Blue Cross of Idaho, it is not typical for an individual to be hired at or near the top range for the position. Compensation decisions are dependent on factors and circumstances at the time of offer.

We offer a robust package of benefits including paid time off, paid holidays, community service and self-care days, medical/dental/vision/pharmacy insurance, 401(k) matching and non-contributory plan, life insurance, short and long term disability, education reimbursement, employee assistance plan (EAP), adoption assistance program and paid family leave program.

We will adhere to all relevant state and local laws concerning employee leave benefits, in line with our plans and policies.

Reasonable accommodations

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed above are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.