About the position
Information Security Analyst - HIPAA & NIST & CMS ARC-AMPE & IRS Pub 1075
W2 Position - Contract - Remote (Montpelier, Vermont) VT - State Government Project
Must Provide 3 References
Requirements
• Experience with security frameworks such as NIST 800-53, CMS ARC-AMPE, and IRS Pub 1075 and HIPAA
• Experience working in at least two security domains, including: Security & Risk Management, Security Architecture & Engineering, Security Assessment & Testing, Security Operations
• Excellent oral and written communication skills
• Ability to work within a team
• Ability to meet shifting deadlines
• Ability to work within a defined budget
Nice-to-haves
• Experience supporting government or healthcare systems
• Experience supporting Vermont Health Connect (VHC) or IE&E programs
• Experience with audit and regulatory compliance
• Familiarity with HIPAA, CMS, and IRS security requirements
• Security frameworks (NIST 800-53, CMS ARC-AMPE, IRS Pub 1075, HIPAA)
• Risk assessments, security controls & compliance gap analysis
• Audit support & compliance reporting
• Security documentation (SSP, POA&M)
• Vendor & third-party security review