1

Hitrust Contract Jobs in Virginia (NOW HIRING)

DevOps Engineer

Mclean, VA · On-site

$62K - $141K/yr

... HITRUST, PCI DSS, or SOC2 * Experience automating tasks of multiple levels of complexity ranging ... as well as contract-specific affordability and organizational requirements. The projected ...

... HITRUST, PCI DSS, or SOC2 * Experience automating tasks of multiple levels of complexity ranging ... as well as contract-specific affordability and organizational requirements. The projected ...

DevOps Engineer

Mclean, VA · On-site

$62K - $141K/yr

... HITRUST, PCI DSS, or SOC2 * Experience automating tasks of multiple levels of complexity ranging ... as well as contract-specific affordability and organizational requirements. The projected ...

Hitrust Contract information

What is the difference between Hitrust Contract vs Security Analyst?

AspectHitrust ContractSecurity Analyst
CertificationsHITRUST CSF, HIPAACISSP, CISA, Security+
Work EnvironmentHealthcare, compliance-focusedIT security teams, various industries
Employer & IndustryHealthcare providers, vendorsAny industry with cybersecurity needs

HITRUST Contract roles focus on ensuring compliance with HITRUST standards, primarily in healthcare. Security Analysts handle broader cybersecurity tasks across industries, including threat detection and risk management. While both roles require security certifications, HITRUST Contract positions emphasize healthcare regulations, whereas Security Analysts have a wider scope in cybersecurity practices.

What are some common challenges faced by professionals working on HITRUST contract compliance projects?

Professionals working on HITRUST contract compliance projects often face challenges such as interpreting complex regulatory requirements, coordinating with multiple departments to gather documentation, and ensuring that all security controls are properly implemented and maintained. Additionally, meeting tight audit deadlines and effectively communicating technical requirements to non-technical stakeholders can be demanding. These roles frequently require strong project management skills, attention to detail, and the ability to adapt to evolving compliance standards.

What is a HITRUST contract?

A HITRUST contract is a legal agreement that outlines the requirements and responsibilities for achieving or maintaining HITRUST certification, a widely recognized standard for information security and privacy in the healthcare industry. These contracts are often used between organizations and their vendors or partners to ensure compliance with the HITRUST Common Security Framework (CSF). The contract typically specifies the controls, reporting, and audit obligations needed to protect sensitive data, such as patient health information, and to meet regulatory requirements like HIPAA. Entering into a HITRUST contract can help organizations demonstrate their commitment to security and build trust with clients and partners.

What are the key skills and qualifications needed to thrive as a HITRUST Compliance Manager, and why are they important?

To thrive as a HITRUST Compliance Manager, you need in-depth knowledge of information security, risk management, and regulatory frameworks, typically backed by a degree in IT or cybersecurity and experience with HITRUST CSF. Familiarity with compliance management tools, GRC systems, and HITRUST certification processes is crucial. Outstanding attention to detail, problem-solving skills, and strong communication abilities help you interpret standards and guide organizations through audits. These competencies ensure organizations maintain robust data protection, regulatory compliance, and successful HITRUST certification.
What are the most commonly searched types of Hitrust jobs in Virginia? The most popular types of Hitrust jobs in Virginia are:
What are popular job titles related to Hitrust Contract jobs in Virginia? For Hitrust Contract jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Hitrust Contract jobs in Virginia look for? The top searched job categories for Hitrust Contract jobs in Virginia are:
What cities in Virginia are hiring for Hitrust Contract jobs? Cities in Virginia with the most Hitrust Contract job openings:
HIPAA Compliance Assessor/Consultant (Remote, Part-Time)

HIPAA Compliance Assessor/Consultant (Remote, Part-Time)

TestPros

Sterling, VA • On-site, Remote

$50 - $85/hr

Full-time

Posted 6 days ago


Job description

TestPros delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world. We support the U.S. Federal Government and Commercial clients within the continental USA. TestPros is dedicated to making lives better, safer and more secure.
Focus: HIPAA Assessment and Consultation
Start: Future projects late 2026 or 2027 (not an immediate job opening)
Type: Part-time consulting
Overview
We are seeking a HIPAA Compliance Assessor / Consultant to support independent assessments of HIPAA compliance.
This role will evaluate how websites, apps, or platforms collect, use, and protect user data, with a focus on minors/children.
Key Responsibilities
  1. Identify Electronic Protected Health Information (ePHI): Locate all systems holding sensitive data.
  2. Identify Threats and Vulnerabilities: Determine potential, reasonably anticipated threats.
  3. Assess Security Measures: Evaluate current safeguards.
  4. Determine Likelihood and Impact: Evaluate the probability and impact of potential breaches.
  5. Document and Prioritize Findings: Create the formal report and risk mitigation plan.
Required Skills / Experience
  • 5+ years of experience with HIPAA Assessments and Reporting
  • 5+ years of experience with HIPAA guidelines, such as:
    • NIST Special Publication 800-66 Rev. 2: Implementing the HIPAA Security Rule
    • NIST Cyber Security Framework to HIPAA Security Rule Crosswalk
    • Health Information Trust Alliance (HITRUST)
  • Hands-on experience conducting:
    • Privacy assessments / audits
    • PIA / DPIA
  • Strong understanding of:
    • Data flows & data lifecycle
    • User data handling in web/mobile applications
  • Experience reviewing:
    • Consumer-facing systems (apps, websites)
    • Consent, transparency, and privacy controls
  • Ability to translate regulations into practical findings and recommendations
Nice to Have
  • Background in GRC, cybersecurity, or product compliance
  • Certifications such as:
    • CIPP, CIPM, CISM, or similar
Work Setup
  • Part-time (consulting basis)
  • 1099 or Corp-to-Corp
  • Flexible hours
  • Project-based (initial assessment engagement)

Rate: $50-85/hr (1099 or Corp. to Corp.) This range represents a good-faith estimate and is not a guarantee; final compensation is determined by factors such as experience, qualifications, and government contract labor rate requirements and may fall outside the stated range.
Equal Opportunity Employer
TestPros is an equal-opportunity employer and does not discriminate in employment based on race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or any other non-merit factor.
Offer Considerations
TestPros considers several factors when extending an offer, including but not limited to, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications.
Federal Compliance
As a federal contractor, TestPros is subject to all federal and state mandates and/or other customer requirements.