CrawlJobs Logo

Hipaa subject matter expert

United States 125000.00 - 135000.00 USD / Year · Job Posted January 04, 2026
Apply Position
Job Link Share

Job Description

The HIPAA Subject Matter Expert supports the Health and Human Services (HHS), Office for Civil Rights (OCR) promoting the right to access health information and protection of the privacy and security of this information. These highly trained and highly skilled consultants and analysts are integral to the success and performance of OCR and to further OCR’s mission.

Job Responsibility

  • Reviews security and privacy complaints, data breach notification and cybersecurity incident reports and other correspondence and evidence to determine whether complaints, self-reported breaches or breach notification reports indicate non-compliance with the HIPAA Security Rule
  • Reviews data provided by the healthcare organizations across the nation to assess the overall impact of security and privacy incidents
  • Evaluates and determines the technical sufficiency of submissions from HIPAA covered entities and business associates in response to data and documentation requests (i.e. Assessing reports related to security baselines, penetration tests, vulnerability assessments, and digital forensics)
  • Documents processes, standard operating procedures and system requirements
  • develops reports summarizing the analysis along with formulating recommendations for OCR to consider for future action
  • Develops written reports with technical security analyses, summaries, and recommendations for action, reports on root causes of problems, efficiency, and support needs
  • Provides expertise in the development and evaluation of health information privacy policies and technologies, specifically regarding protected health information
  • deidentified/re-identified health information
  • limited data sets
  • Provides subject matter expert analysis, evaluation, and recommendations based on national security standards (NIST), industry best practices from the International Organization for Standardization and implementation specifications of the HIPAA Security Rule
  • Provides DIN designing, implementing, and managing information security, data protection, and risk management programs, including policies, procedures, and controls for protected health information based on HIPAA requirements
  • Provides advisory expertise in the areas of risk analyses, vulnerability assessments, incident response, security architecture, physical security, business continuity and disaster recovery, enterprise mobility, threat intelligence and analysis, security awareness and online safety, and resolution of highly complex security projects and issues
  • Works well with programmers, developers, content managers, and other key personnel in an interactive development situation

Requirements

  • Preference will be given to candidates with relevant industry certifications from CISSP, CISM, CIPP/CIPT/CIPT
  • Ten (10) years of relevant cybersecurity experience is preferred
  • Experience in auditing and generating audit reports is required
  • Fundamental knowledge of basic systems analysis
  • Knowledge of a broad range of relevant computer systems, applications, and/or related equipment
  • Knowledge of computer security procedures and protocol
  • Basic knowledge of advanced operating system, network, or application management tasks
  • Knowledge of current technological developments/trends in area of expertise
  • Knowledge of federal copyright laws as they pertain to the use of computer software
  • Ability to integrate emerging technologies and applications into current environment and to identify technical specifications to meet user needs including operating system and network or application configuration
  • Ability to identify technical specifications to meet user needs including operating system and network or application configuration
  • Skills in planning, organizing, and adapting within a multi-tasking environment
  • Strong interpersonal skills, flexibility, and customer service orientation
  • Ability to gather facts and data for technical proposals and to expand upon them or develop alternatives and to evaluate emerging technologies and identify their potential impact within the existing environment
  • Ability to evaluate emerging technologies and identify their potential impact within the existing environment
  • Ability to analyze complex computer problems and provide solutions
  • Ability to communicate effectively, both orally and in writing
  • Ability to communicate technical information to non-technical personnel
  • Ability to develop and deliver presentations
  • Minimum educational experience is a Bachelor’s degree from an accredited university with the focus on Cybersecurity, Computer Science, Information Sciences, or other comparable fields of Study

What we offer

  • Medical
  • Dental
  • Vision
  • 401(k)
  • Family Planning/Fertility Assistance
  • STD/LTD/Basic Life/AD&D
  • Legal-Aid Program
  • Employee Assistance Program (EAP)
  • Paid Time Off (PTO) – (11) Federal Holidays
  • Training and Development Opportunities

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Hipaa subject matter expert

8 matching positions

Hipaa subject matter expert

The HIPAA Subject Matter Expert supports the Health and Human Services (HHS), Of...
Location
Location
United States
Salary
Salary:
125000.00 - 135000.00 USD / Year
chickasaw.com Logo
Chickasaw Nation Industries, Inc (CNI)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Preference will be given to candidates with relevant industry certifications from CISSP, CISM, CIPP/CIPT/CIPT
  • Ten (10) years of relevant cybersecurity experience is preferred
  • Experience in auditing and generating audit reports is required
  • Fundamental knowledge of basic systems analysis
  • Knowledge of a broad range of relevant computer systems, applications, and/or related equipment
  • Knowledge of computer security procedures and protocol
  • Basic knowledge of advanced operating system, network, or application management tasks
  • Knowledge of current technological developments/trends in area of expertise
  • Knowledge of federal copyright laws as they pertain to the use of computer software
  • Ability to integrate emerging technologies and applications into current environment and to identify technical specifications to meet user needs including operating system and network or application configuration
Job Responsibility
Job Responsibility
  • Reviews security and privacy complaints, data breach notification and cybersecurity incident reports and other correspondence and evidence to determine whether complaints, self-reported breaches or breach notification reports indicate non-compliance with the HIPAA Security Rule
  • Reviews data provided by the healthcare organizations across the nation to assess the overall impact of security and privacy incidents
  • Evaluates and determines the technical sufficiency of submissions from HIPAA covered entities and business associates in response to data and documentation requests (i.e. Assessing reports related to security baselines, penetration tests, vulnerability assessments, and digital forensics)
  • Documents processes, standard operating procedures and system requirements
  • develops reports summarizing the analysis along with formulating recommendations for OCR to consider for future action
  • Develops written reports with technical security analyses, summaries, and recommendations for action, reports on root causes of problems, efficiency, and support needs
  • Provides expertise in the development and evaluation of health information privacy policies and technologies, specifically regarding protected health information
  • deidentified/re-identified health information
  • limited data sets
  • Provides subject matter expert analysis, evaluation, and recommendations based on national security standards (NIST), industry best practices from the International Organization for Standardization and implementation specifications of the HIPAA Security Rule
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • 401(k)
  • Family Planning/Fertility Assistance
  • STD/LTD/Basic Life/AD&D
  • Legal-Aid Program
  • Employee Assistance Program (EAP)
  • Paid Time Off (PTO) – (11) Federal Holidays
  • Training and Development Opportunities
  • Fulltime
Read More
Arrow Right

Hipaa subject matter expert

The HIPAA Subject Matter Expert supports the Health and Human Services (HHS), Of...
Location
Location
United States
Salary
Salary:
125000.00 - 135000.00 USD / Year
chickasaw.com Logo
Chickasaw Nation Industries, Inc (CNI)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Preference will be given to candidates with relevant industry certifications from CISSP, CISM, CIPP/CIPT/CIPT
  • Ten (10) years of relevant cybersecurity experience is preferred
  • Experience in auditing and generating audit reports is required
  • Fundamental knowledge of basic systems analysis
  • Knowledge of a broad range of relevant computer systems, applications, and/or related equipment
  • Knowledge of computer security procedures and protocol
  • Basic knowledge of advanced operating system, network, or application management tasks
  • Knowledge of current technological developments/trends in area of expertise
  • Knowledge of federal copyright laws as they pertain to the use of computer software
  • Ability to integrate emerging technologies and applications into current environment and to identify technical specifications to meet user needs including operating system and network or application configuration
Job Responsibility
Job Responsibility
  • Reviews security and privacy complaints, data breach notification and cybersecurity incident reports and other correspondence and evidence to determine whether complaints, self-reported breaches or breach notification reports indicate non-compliance with the HIPAA Security Rule
  • Reviews data provided by the healthcare organizations across the nation to assess the overall impact of security and privacy incidents
  • Evaluates and determines the technical sufficiency of submissions from HIPAA covered entities and business associates in response to data and documentation requests (i.e. Assessing reports related to security baselines, penetration tests, vulnerability assessments, and digital forensics)
  • Documents processes, standard operating procedures and system requirements
  • develops reports summarizing the analysis along with formulating recommendations for OCR to consider for future action
  • Develops written reports with technical security analyses, summaries, and recommendations for action, reports on root causes of problems, efficiency, and support needs
  • Provides expertise in the development and evaluation of health information privacy policies and technologies, specifically regarding protected health information
  • deidentified/re-identified health information
  • limited data sets
  • Provides subject matter expert analysis, evaluation, and recommendations based on national security standards (NIST), industry best practices from the International Organization for Standardization and implementation specifications of the HIPAA Security Rule
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • 401(k)
  • Family Planning/Fertility Assistance
  • STD/LTD/Basic Life/AD&D
  • Legal-Aid Program
  • Employee Assistance Program (EAP)
  • Paid Time Off (PTO) – (11) Federal Holidays
  • Training and Development Opportunities
  • Fulltime
Read More
Arrow Right

Hipaa subject matter expert

The HIPAA Subject Matter Expert supports the Health and Human Services (HHS), Of...
Location
Location
United States
Salary
Salary:
125000.00 - 135000.00 USD / Year
chickasaw.com Logo
Chickasaw Nation Industries, Inc (CNI)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Preference will be given to candidates with relevant industry certifications from CISSP, CISM, CIPP/CIPT/CIPT
  • Ten (10) years of relevant cybersecurity experience is preferred
  • Experience in auditing and generating audit reports is required
  • Fundamental knowledge of basic systems analysis
  • Knowledge of a broad range of relevant computer systems, applications, and/or related equipment
  • Knowledge of computer security procedures and protocol
  • Basic knowledge of advanced operating system, network, or application management tasks
  • Knowledge of current technological developments/trends in area of expertise
  • Knowledge of federal copyright laws as they pertain to the use of computer software
  • Ability to integrate emerging technologies and applications into current environment and to identify technical specifications to meet user needs including operating system and network or application configuration
Job Responsibility
Job Responsibility
  • Reviews security and privacy complaints, data breach notification and cybersecurity incident reports and other correspondence and evidence to determine whether complaints, self-reported breaches or breach notification reports indicate non-compliance with the HIPAA Security Rule
  • Reviews data provided by the healthcare organizations across the nation to assess the overall impact of security and privacy incidents
  • Evaluates and determines the technical sufficiency of submissions from HIPAA covered entities and business associates in response to data and documentation requests (i.e. Assessing reports related to security baselines, penetration tests, vulnerability assessments, and digital forensics)
  • Documents processes, standard operating procedures and system requirements
  • develops reports summarizing the analysis along with formulating recommendations for OCR to consider for future action
  • Develops written reports with technical security analyses, summaries, and recommendations for action, reports on root causes of problems, efficiency, and support needs
  • Provides expertise in the development and evaluation of health information privacy policies and technologies, specifically regarding protected health information
  • deidentified/re-identified health information
  • limited data sets
  • Provides subject matter expert analysis, evaluation, and recommendations based on national security standards (NIST), industry best practices from the International Organization for Standardization and implementation specifications of the HIPAA Security Rule
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • 401(k)
  • Family Planning/Fertility Assistance
  • STD/LTD/Basic Life/AD&D
  • Legal-Aid Program
  • Employee Assistance Program (EAP)
  • Paid Time Off (PTO) – (11) Federal Holidays
  • Training and Development Opportunities
  • Fulltime
Read More
Arrow Right

Subject Matter Expert (Sme) – Healthcare Administration

We are looking for an experienced Subject Matter Expert (SME) in Healthcare Admi...
Location
Location
Salary
Salary:
Not provided
hurix.com Logo
HurixDigital
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Healthcare Administration, Public Health, Business Administration, or a related field
  • 5+ years of experience in healthcare administration, hospital operations, healthcare management, or related domains
  • Strong understanding of: Healthcare systems and operations
  • Revenue cycle management
  • Healthcare reimbursement models
  • Payer structures and CMS guidelines
  • HIPAA compliance and healthcare regulations
  • Experience working in clinical and non-clinical healthcare environments
  • Excellent analytical, communication, documentation, and presentation skills
Job Responsibility
Job Responsibility
  • Analyze and create learning objectives for assigned healthcare administration courses
  • Review and develop detailed course outlines aligned with industry standards and learning outcomes
  • Review video scripts (7–9 per course) to ensure technical and operational accuracy
  • suggest updates and enhancements where necessary
  • Provide relevant healthcare administration examples, workflows, demos, or screencasts for course integration
  • Review readings and instructional materials (4–6 per course, up to 1200 words each) for content accuracy and completeness
  • Create hands-on activities, case studies, labs, or practical exercises relevant to healthcare administration
  • Review practice quizzes and graded assessments to validate technical accuracy and alignment with learning objectives
  • Record talking-head videos virtually or onsite for approximately 20–25 minutes per course
  • Incorporate one round of internal feedback and up to two rounds of client feedback across deliverables
Read More
Arrow Right

Subject Matter Expert – Healthcare Administration & Financial Analysis

Location
Location
Salary
Salary:
Not provided
hurix.com Logo
HurixDigital
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Healthcare Administration, Finance, Business Administration, or a related field
  • 5+ years of proven experience in healthcare finance, revenue cycle management, or hospital administration
  • Strong expertise in healthcare financial statements, budgeting cycles, and expense management practices
  • Hands-on experience with healthcare financial data analysis tools and reporting platforms
  • Solid understanding of healthcare reimbursement models, payer structures, and cost accounting
  • Familiarity with healthcare compliance regulations including HIPAA and CMS guidelines
  • Experience applying financial management strategies specific to clinical and non-clinical settings
  • Ability to interpret and communicate financial performance data to both clinical and administrative stakeholders
  • Excellent analytical, documentation, and presentation skills
Job Responsibility
Job Responsibility
  • Analyze/create learning objectives for each course
  • Review/create Course Outline for each of the courses
  • Review video scripts (7–9 per course) and confirm technical accuracy of the content, suggest edits and updates as required
  • Incorporate one round of internal and client feedback
  • Provide relevant static or recorded demos/screencast to be integrated in the videos
  • In case of AI/software/tool-based courses, suggest relevant freeware
  • Write/review and test the codes to check
  • Review readings (4–6 per course, each up to 1200 words) and confirm technical accuracy of the content, suggest edits and updates as required
  • Create hands-on activities (1–2 lab or any other client preferred format) per course
  • Review practice quiz and graded assessments (5 files, each comprising 5–10 questions) and suggest suitable edits, confirm technical accuracy
Read More
Arrow Right

GRC AI Subject Matter Expert, Product

As a GRC AI Subject Matter Expert (AI SME), you’ll help make sure our AI feature...
Location
Location
United States
Salary
Salary:
163000.00 - 192000.00 USD / Year
vanta.com Logo
Vanta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7+ years of GRC or InfoSec experience across frameworks like SOC 2, ISO 27001, HIPAA, PCI DSS, or NIST
  • 1-3 years applying that expertise to AI-assisted workflows - building evaluation sets, reviewing AI outputs, or helping ship AI features
  • Strong understanding of evidence, controls, and compliance workflows (TPRM, risk, policy, customer trust)
  • Skilled at writing clear instructions and evaluation guides others can follow consistently
  • Comfortable working with structured data (Sheets, logs, exports) and translating GRC artifacts into usable AI context
  • Curious, methodical, and motivated to build systems that make AI both smarter and safer
  • Certifications like CISA, CISSP, CCSK, or CIPM/CIPT are a plus
  • Open to using AI to amplify their skills and strengthen their work - demonstrating curiosity, a willingness to learn, and sound judgment in applying AI responsibly to improve efficiency and impact
Job Responsibility
Job Responsibility
  • Design and test prompts: Work with engineers and PMs to shape AI behavior, define edge cases, and review outputs for accuracy and usefulness
  • Own the ground truth: Build and maintain the “truth layer” — datasets and rating guides that represent correct, real-world GRC answers
  • Evaluate and improve quality: Run side-by-side reviews, define launch-readiness criteria, and measure ongoing quality and drift after release
  • Ensure responsible AI use: Help design AI systems that respect privacy, minimize hallucinations, and produce explainable, auditable results
  • Document and teach: Write clear guides, checklists, and examples others can reuse
  • host short training sessions to raise the bar for AI quality across teams
  • Collaborate widely: Partner with Product, Eng, and GTM teams to connect AI improvements directly to customer trust and business impact
What we offer
What we offer
  • Offers Equity
  • medical benefits
  • 401(k) plan
  • other company perk programs
  • Comprehensive medical, dental, and vision coverage, with 100% of employee-only benefit premiums covered for most medical plans
  • 16 weeks fully-paid Parental Leave for all new parents
  • Health & wellness stipend
  • Remote workspace, internet, and cellphone stipend
  • Commuter benefits for team members who report to the SF and NYC office
  • Family planning benefits
  • Fulltime
Read More
Arrow Right

Post-Sales GRC Subject Matter Expert

As a Post-Sales Subject Matter Expert, GRC at Vanta, you will be a highly visibl...
Location
Location
United States
Salary
Salary:
163000.00 - 192000.00 USD / Year
vanta.com Logo
Vanta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep understanding of security, privacy, and AI governance frameworks (SOC 2, ISO 27001, ISO 42001, HITRUST, HIPAA, GDPR, NIST AI RMF, etc.) including experience either auditing, or participating in a cybersecurity audit
  • The ability to perform control mapping exercises for net-new frameworks, including policies to controls, risks to controls, etc.
  • Problem-solving skills in a fast-paced environment
  • Passion for leveraging AI and automation to advance GRC and risk management maturity
  • Ability to translate complex compliance requirements into actionable technical guidance for SaaS environments
  • Familiarity with cloud infrastructure, version control systems, risk management, vulnerability management, and their related security processes
  • Experience in building productive relationships and driving collaboration with both technical and non-technical teams
  • Knowledge of the cybersecurity audit process
  • Security compliance management experience within a SaaS environment preferred, but not required
  • Sales Engineering or Technical Support experience preferred, but not required
Job Responsibility
Job Responsibility
  • Partner with the Vanta's Sales and Customer Success teams to represent Vanta’s Trust Management Platform to prospects and customers
  • Facilitate onboarding and implementation of Vanta for new customers
  • Engage with executives and sr. staff at prospect and customer organizations to establish relationships with customer's Security and Compliance points of contact
  • Become an expert on the security features available for customers to deploy within Vanta, including best practices for implementation
  • Use your expert knowledge of compliance frameworks like SOC 2 and ISO 27001 to advise customers regarding questions about scoping, policy creation, detailed control requirements and security best practices
  • Collaborate with Vanta’s EPD (Product) team to improve processes and enable faster and more seamless experiences for our customers
  • Identify requirements that would enable additional customer use cases and drive implementation of customer requirements with relevant stakeholders
  • Provide input and feedback on the development of security and GRC product features for Vanta’s customers
  • Answer questions for internal and external stakeholders about security and compliance
What we offer
What we offer
  • Offers Equity
  • medical benefits
  • 401(k) plan
  • other company perk programs
  • Comprehensive medical, dental, and vision coverage, with 100% of employee-only benefit premiums covered for most medical plans
  • 16 weeks fully-paid Parental Leave for all new parents
  • Health & wellness stipend
  • Remote workspace, internet, and cellphone stipend
  • Commuter benefits for team members who report to the SF and NYC office
  • Family planning benefits
  • Fulltime
Read More
Arrow Right
New

Assistant Portfolio Director

The Assistant Portfolio Director – Training and Compliance is designated as a se...
Location
Location
United States , Sacramento
Salary
Salary:
110000.00 - 139350.27 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in criminal justice, business, or a related field with three (3) years of management experience in a high-volume workforce environment or service industry, including one (1) year managing training, compliance, or safety functions
  • Associate’s degree in criminal justice, business, or a related field with five (5) years of management experience in a high-volume workforce environment or service industry, including two (2) years managing training, compliance, or safety functions
  • High School diploma or equivalent with seven (7) years of management experience in a high-volume workforce environment or service industry, including three (3) years managing training, compliance, or safety functions
  • Obtain and maintain local and/or state security-related license
  • Valid driver’s license if driving an AUS company vehicle, or personal vehicle while conducting business
  • Must be able to attend and complete a client facility and security department orientation upon hire
  • Must be able to successfully complete the training requirements listed within the portfolio security training program
  • Must be able to successfully participate in and pass less than lethal weapon and tools training and qualification courses, to include corresponding Instructor certifications, upon hire
  • Must be able to successfully complete International Association for Healthcare Security and Safety, Inc. (IAHSS) Supervisor Level Certification (CHSS) within six (6) months of hire
  • Must be able to successfully complete International Association for Healthcare Security and Safety, Inc. (IAHSS) Workplace Violence Prevention Certificate Program within six (6) months of hire
Job Responsibility
Job Responsibility
  • Take the lead in liaising with local AUS branch office stakeholders to coordinate new employee orientations (NEO), certification training, or other training support needs for the portfolio
  • Liaise with the AUS Healthcare Vertical to share industry best practices for healthcare security training programs
  • Audit and drive security training practices across the portfolio to optimize effectiveness, efficiency, and compliance with regulatory standards
  • Develop and maintain the portfolio security training and training folder program
  • Establish contract-required training and screening elements for security personnel and ensure they have been met and maintained across all client sites
  • Establish and maintain the portfolio Post Order standards, providing guidance to the Account Manager and/or Assistant Account Manager when conducting annual, or as needed updates
  • Conduct validation audits of employee specific training folders to ensure they are maintained and available for review by client, AUS, or regulatory and accreditation agencies
  • Execute all training aspects (technical and managerial) of the security contract across portfolio locations, assigning tasks to the Portfolio Manager, Account Manager, and/or Assistant Account Manager
  • Facilitate workplace violence and de-escalation training, either in partnership with other instructors, or independently, for both client and AUS personnel
  • Maintain subject matter expertise in applicable security related topics
What we offer
What we offer
  • Employee Assistance Program
  • Employee Discount Program
  • Tuition Discount Program
  • Training & Career Development Programs
  • Fulltime
Read More
Arrow Right