Overview
H-E-B is one of the largest, independently owned food retailers in the nation operating over 400 stores throughout Texas and Mexico, with annual sales generating over $25 billion. Described by industry experts as a daring innovator and smart competitor, H-E-B has led the way with creative new concepts, outstanding service and a commitment to diversity in our workforce, workplace and marketplace. H-E-B offers a wealth of career opportunities to our 110,000+ Partners (employees), competitive compensation and benefits program and comprehensive training that lead to successful careers.
Responsibilities
H-E-B is a leading innovator in technology, and our Digital Technology Team collaborates to design, construct, implement, and support solutions across the enterprise.
The Security Advisor - Health & Wellness (SAHW) focuses on advisory and risk management activities for our healthcare related businesses and initiatives, ensuring information security and compliance is executed in accordance with applicable company policies, legal, and regulatory controls.
ROLE

• Working knowledge of IT security frameworks and regulations such as NIST, ISO, CSF, HIPAA, HITECH, or HITRUST
• Preferred experience in the healthcare industry, including proven experience working with the HIPAA Security and Privacy Rules, as well as the HITRUST Common Security Framework (CSF)
• An understanding of IT security technologies, including network and application security, firewalls, access management, and data protection
• Experience and knowledge of healthcare operations and business processes
• Experience with IT security vulnerabilities and IT security audit procedures
• Work collaboratively with a team of assessors as a HIPAA or HITRUST compliance specialist and assist with aspects relating to the testing and verification of requirements as set forth by legal, regulatory, or other governing bodies.
• Assess security vulnerabilities using security frameworks and risk management principles..
• Excellent communication skills, both written and verbal as well as critical thinking and reasoning skills.
• Ability to work with multiple teams, initiatives, and projects simultaneously.

RECOMMENDED

• 3+ years of IT security and compliance assessment experience
• Security certifications such as CISSP, CCSFP, HCISPP, CISM, CISA
• Bachelor's degree (four-year college or university) or equivalent combination of education and work experience. Degree preferably in Information Systems or Business.

Bonus Points:

• Experience assessing security vulnerabilities using other frameworks such as PCI-DSS, FedRAMP, ISO, SOC, etc.

#LI-TM1
#ISSEC3232