HITRUST CCSFP, preferred Additional At VHC Health, every role contributes to exceptional care, better outcomes, and stronger communities. In addition to your base compensation, VHC Health offers a ...
HITRUST CCSFP, preferred Additional At VHC Health, every role contributes to exceptional care, better outcomes, and stronger communities. In addition to your base compensation, VHC Health offers a ...
Either actively hold, or willingness to pursue relevant additional professional certifications (e.g., CISA, CISM, CISSP, ISO 27000 LA, PCI QSA, HITRUST CCSFP, CCP, CCA, etc.) * Working knowledge of ...
Quick apply
Either actively hold, or willingness to pursue relevant additional professional certifications (e.g., CISA, CISM, CISSP, ISO 27000 LA, PCI QSA, HITRUST CCSFP, CCP, CCA, etc.) * Working knowledge of ...
HITRUST Certified CSF Practitioner (CCSFP) - required * Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) - preferred * Certified Information ...
HITRUST Certified CSF Practitioner (CCSFP) - required * Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) - preferred * Certified Information ...
Willingness to pursue relevant additional professional certifications (e.g., CPA, CISA, CISM, CISSP, ISO 27000 LA, PCI QSA, HITRUST CCSFP, etc.) * Working knowledge of multiple cybersecurity ...
Quick apply
Willingness to pursue relevant additional professional certifications (e.g., CPA, CISA, CISM, CISSP, ISO 27000 LA, PCI QSA, HITRUST CCSFP, etc.) * Working knowledge of multiple cybersecurity ...
ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. * Experience leading ISO 27001, SOC2, or HITRUST audits, including ISMS implementation and external audit coordination.
ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. * Experience leading ISO 27001, SOC2, or HITRUST audits, including ISMS implementation and external audit coordination.
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Quick apply
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
HITRUST Certified Common Security Framework Practitioner (CCSFP) or equivalent HITRUST training * One or more professional security certifications: CISSP, CISM, or CISA. * AWS Security Specialty or ...
HITRUST Certified Common Security Framework Practitioner (CCSFP) or equivalent HITRUST training * One or more professional security certifications: CISSP, CISM, or CISA. * AWS Security Specialty or ...
Senior Security Compliance Analyst
Boston, MA · Remote
$110K - $140K/yr
ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. * Experience leading ISO 27001, SOC2, or HITRUST audits, including ISMS implementation and external audit coordination.
Quick apply
Senior Security Compliance Analyst
Boston, MA · Remote
$110K - $140K/yr
ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. * Experience leading ISO 27001, SOC2, or HITRUST audits, including ISMS implementation and external audit coordination.
Professional certifications such as CISSP, CISA, CRISC, CISM, or HITRUST CCSFP preferred; experience with HITRUST, GRC platforms (Drata, ServiceNow GRC, OneTrust, Archer), healthcare compliance, or ...
Professional certifications such as CISSP, CISA, CRISC, CISM, or HITRUST CCSFP preferred; experience with HITRUST, GRC platforms (Drata, ServiceNow GRC, OneTrust, Archer), healthcare compliance, or ...
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Quick apply
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Quick apply
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Professional certifications such as CISSP, CISA, CRISC, CISM, or HITRUST CCSFP preferred; experience with HITRUST, GRC platforms (Drata, ServiceNow GRC, OneTrust, Archer), healthcare compliance, or ...
Professional certifications such as CISSP, CISA, CRISC, CISM, or HITRUST CCSFP preferred; experience with HITRUST, GRC platforms (Drata, ServiceNow GRC, OneTrust, Archer), healthcare compliance, or ...
Senior Practice Manager/IT Auditing
Saint Petersburg, FL · On-site
$88K - $116K/yr
Willingness to pursue relevant additional professional certifications (e.g., CPA, CISA, CISM, CISSP, ISO 27000 LA, PCI QSA, HITRUST CCSFP, etc.) * Working knowledge of multiple cybersecurity ...
Quick apply
Senior Practice Manager/IT Auditing
Saint Petersburg, FL · On-site
$88K - $116K/yr
Willingness to pursue relevant additional professional certifications (e.g., CPA, CISA, CISM, CISSP, ISO 27000 LA, PCI QSA, HITRUST CCSFP, etc.) * Working knowledge of multiple cybersecurity ...
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Quick apply
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Senior GRC Associate
Chicago, IL · On-site
$70K - $94K/yr
CCSFP, CRISC, CISA Estimated Salary Range: $70,000 - $94,000 Actual salary will be determined based on factors including, but not limited to, skill set and level of experience. This salary range is a ...
Senior GRC Associate
Chicago, IL · On-site
$70K - $94K/yr
CCSFP, CRISC, CISA Estimated Salary Range: $70,000 - $94,000 Actual salary will be determined based on factors including, but not limited to, skill set and level of experience. This salary range is a ...
Relevant certifications (e.g., CISSP, CISA, CISM, HCISPP, Security+, CCSFP ). * Successful candidate must be able to successfully complete a background check and drug screening. At MHK we help health ...
Relevant certifications (e.g., CISSP, CISA, CISM, HCISPP, Security+, CCSFP ). * Successful candidate must be able to successfully complete a background check and drug screening. At MHK we help health ...
Senior Security Compliance Analyst
$110K - $140K/yr
ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. * Experience leading ISO 27001, SOC2, or HITRUST audits, including ISMS implementation and external audit coordination.
Senior Security Compliance Analyst
$110K - $140K/yr
ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. * Experience leading ISO 27001, SOC2, or HITRUST audits, including ISMS implementation and external audit coordination.
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Quick apply
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Quick apply
Director, Information Security
$175K - $200K/yr
CISSP, CISM, or CCSFP (Certified CSF Practitioner) are highly desirable. This is a full-time (40hrs per week) remote position. #LIRemote #zr #director Recruitment Scam Notice We are aware of ...
Ccsfp information
See salary details
$61.5K - $65.9K
12% of jobs
$69.8K is the 25th percentile. Wages below this are outliers.
$65.9K - $70.3K
14% of jobs
$70.3K - $74.7K
12% of jobs
The median wage is $78K / yr.
$74.7K - $79.1K
14% of jobs
$79.1K - $83.5K
2% of jobs
$83.5K - $88K
0% of jobs
$88K - $92.4K
0% of jobs
$92.4K - $96.8K
0% of jobs
$96.8K - $101.2K
0% of jobs
$101.2K - $105.6K
0% of jobs
$107.5K is the 75th percentile. Wages above this are outliers.
$105.6K - $110K
44% of jobs
$61.5K
$89.7K
$110K
How much do ccsfp jobs pay per year?
What are the key skills and qualifications needed to thrive in the Ccsfp position, and why are they important?
To thrive as a CCSFP (Certified Cybersecurity Framework Professional), you need a thorough understanding of cybersecurity frameworks (such as HITRUST CSF, NIST, or ISO 27001), risk management, and compliance regulations, typically backed by relevant experience and industry-recognized certifications. Familiarity with assessment tools, audit software, and governance, risk, and compliance (GRC) platforms is commonly required. Strong analytical thinking, meticulous attention to detail, and effective communication help professionals excel when working with clients or cross-functional teams. These skills ensure proper evaluation of security controls, successful client interactions, and effective guidance in meeting compliance standards.
What kind of career growth can I expect as a CCSFP?
As a CCSFP, you benefit from strong career growth opportunities in the cybersecurity and compliance domains, with potential paths leading to senior consultant, manager, or director roles in risk management and information security. Your expertise in complex cybersecurity frameworks is highly valued in industries such as healthcare, finance, and technology, opening doors to specialized advisory or leadership positions. Many professionals also broaden their credentials by pursuing advanced certifications like CISSP or CISA. The demand for compliance and risk professionals continues to grow, allowing skilled CCSFPs to shape the future of organizational security and compliance strategies.
What is a CCSFP job?
A CCSFP (Certified CSF Practitioner) is a cybersecurity professional specializing in the HITRUST Common Security Framework (CSF). They help organizations assess, implement, and maintain compliance with HITRUST CSF requirements. Their role often includes risk assessments, gap analyses, and advisory services to ensure organizations meet security and regulatory standards. CCSFPs typically work in healthcare, finance, and other regulated industries that require strong data protection.

Full-time
Medical, Dental, Vision, Retirement
Posted 18 days ago
VHC Health rating
7.9
Based on 33 frontline employees who took The Breakroom Quiz
104th of 877 rated healthcare providers
Job description
Purpose & Scope:
The Director of Cybersecurity Compliance leads the healthcare organization's information security governance, risk, and compliance (GRC) program. This role is accountable for defining regulatory requirements, establishing risk management frameworks, and independently assessing the effectiveness of cybersecurity controls to ensure alignment with healthcare regulations, patient privacy obligations, and industry standards.
This leader serves as the independent oversight function for cybersecurity, ensuring that controls implemented by cybersecurity and IT teams meet regulatory, audit, and risk expectations without introducing bias from operational ownership. The Director partners closely with cybersecurity operations, clinical leadership, legal, and compliance to embed security and compliance into workflows while maintaining safe and uninterrupted patient care.
Education:
Bachelor's degree in Information Security, Information Technology, Healthcare Administration, or related field. Master's preferred.
Experience:
10+ years of experience in IT security, risk, or compliance, with significant experience in healthcare
5+ years in a leadership role within a healthcare or regulated environment
Knowledge and Skills
- Deep knowledge of healthcare regulations (HIPAA/HITECH) and security frameworks (NIST, HITRUST, ISO)
- Strong understanding of risk management methodologies and audit practices
- Experience with GRC platforms and compliance tooling
- Ability to independently assess control effectiveness and identify gaps
- Strong understanding of PHI handling, privacy requirements, and breach response obligations
- Ability to translate regulatory requirements into practical governance structures
Certification/Licensure:
- CISSP, CISM, CISA, or CRISC, preferred
- HCISPP (Healthcare Information Security and Privacy Practitioner), preferred
- HITRUST CCSFP, preferred
At VHC Health, every role contributes to exceptional care, better outcomes, and stronger communities. In addition to your base compensation, VHC Health offers a comprehensive benefits package, including medical, dental, and vision coverage (subject to eligibility requirements), as well as additional wellness and retirement benefits designed to support our employees and their families. VHC Health is committed to wage transparency and equitable pay practices. The compensation offered for this position-whether expressed as an annual salary or hourly rate-is determined based on a variety of legitimate, non-discriminatory factors. These factors include, but are not limited to, a candidate's qualifications, relevant training and experience, skill level, shift differentials (where applicable), internal equity, and current market conditions. The posted hiring range reflects the range VHC Health, in good faith, believes is appropriate for this role at the time of posting. This range may be adjusted in the future based on business needs or market changes. No portion of compensation is considered earned until it is vested and determined in accordance with the terms of applicable policies and benefit plans. The availability and amount of any bonuses, incentives, or other benefits are subject to the terms of those plans and may be modified at the sole discretion of VHC Health, in accordance with applicable law. VHC Health is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender identity or expression, marital status, national or ethnic origin, political affiliation, pregnancy (including childbirth, pregnancy-related conditions and lactation), race, religion, sex, sexual orientation, veteran status, genetic information, or any other characteristics protected by law. VHC Health maintains a drug-free workplace. The unlawful manufacture, distribution, dispensing, possession, or use of a controlled substance is prohibited at all VHC Health locations.
Employment Type: FULL_TIMEWhat VHC Health employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About VHC Health
Sourced by ZipRecruiter
Industry
Health care and social assistance
Company size
1,001 - 5,000 Employees
Headquarters location
Arlington, VA, US
Year founded
1944