ZipRecruiter

Log In

1

Hitrust Contract Jobs in Virginia (NOW HIRING)

UST Inc

Healthcare Client Partner-Dallas

Richmond, VA ยท On-site

Experience working with procurement, legal, and contract teams on large deal structures * Deep ... HIPAA, HITRUST, SOC 2 Compensation can differ depending on factors including but not limited to the ...

Booz Allen Hamilton

DevOps Engineer

Mclean, VA

$62K - $141K/yr

... HITRUST, PCI DSS, or SOC2 * Experience automating tasks of multiple levels of complexity ranging ... as well as contract-specific affordability and organizational requirements. The projected ...

Booz Allen Hamilton, Inc.

DevOps Engineer

Mclean, VA ยท On-site

$62K - $141K/yr

... HITRUST, PCI DSS, or SOC2 * Experience automating tasks of multiple levels of complexity ranging ... as well as contract-specific affordability and organizational requirements. The projected ...

Booz Allen Hamilton, Inc.

DevOps Engineer

Mclean, VA ยท On-site

$62K - $141K/yr

... HITRUST, PCI DSS, or SOC2 * Experience automating tasks of multiple levels of complexity ranging ... as well as contract-specific affordability and organizational requirements. The projected ...

All JobsHitrust Contract JobsHitrust Contract Jobs in Virginia

Hitrust Contract information

What is the difference between Hitrust Contract vs Security Analyst?

AspectHitrust ContractSecurity Analyst
CertificationsHITRUST CSF, HIPAACISSP, CISA, Security+
Work EnvironmentHealthcare, compliance-focusedIT security teams, various industries
Employer & IndustryHealthcare providers, vendorsAny industry with cybersecurity needs

HITRUST Contract roles focus on ensuring compliance with HITRUST standards, primarily in healthcare. Security Analysts handle broader cybersecurity tasks across industries, including threat detection and risk management. While both roles require security certifications, HITRUST Contract positions emphasize healthcare regulations, whereas Security Analysts have a wider scope in cybersecurity practices.

What are some common challenges faced by professionals working on HITRUST contract compliance projects?

Professionals working on HITRUST contract compliance projects often face challenges such as interpreting complex regulatory requirements, coordinating with multiple departments to gather documentation, and ensuring that all security controls are properly implemented and maintained. Additionally, meeting tight audit deadlines and effectively communicating technical requirements to non-technical stakeholders can be demanding. These roles frequently require strong project management skills, attention to detail, and the ability to adapt to evolving compliance standards.

What is a HITRUST contract?

A HITRUST contract is a legal agreement that outlines the requirements and responsibilities for achieving or maintaining HITRUST certification, a widely recognized standard for information security and privacy in the healthcare industry. These contracts are often used between organizations and their vendors or partners to ensure compliance with the HITRUST Common Security Framework (CSF). The contract typically specifies the controls, reporting, and audit obligations needed to protect sensitive data, such as patient health information, and to meet regulatory requirements like HIPAA. Entering into a HITRUST contract can help organizations demonstrate their commitment to security and build trust with clients and partners.

What are the key skills and qualifications needed to thrive as a HITRUST Compliance Manager, and why are they important?

To thrive as a HITRUST Compliance Manager, you need in-depth knowledge of information security, risk management, and regulatory frameworks, typically backed by a degree in IT or cybersecurity and experience with HITRUST CSF. Familiarity with compliance management tools, GRC systems, and HITRUST certification processes is crucial. Outstanding attention to detail, problem-solving skills, and strong communication abilities help you interpret standards and guide organizations through audits. These competencies ensure organizations maintain robust data protection, regulatory compliance, and successful HITRUST certification.
What are the most commonly searched types of Hitrust jobs in Virginia? The most popular types of Hitrust jobs in Virginia are:
What are popular job titles related to Hitrust Contract jobs in Virginia? For Hitrust Contract jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Hitrust Contract jobs in Virginia look for? The top searched job categories for Hitrust Contract jobs in Virginia are:
What cities in Virginia are hiring for Hitrust Contract jobs? Cities in Virginia with the most Hitrust Contract job openings:
Hitrust Contract jobs near you
Senior Security Engineer - SOC 2, HITRUST & HIPAA

Senior Security Engineer - SOC 2, HITRUST & HIPAA

eSolutionsFirst, LLC

Mclean, VA โ€ข On-site

$117K - $161K/yr

Other

Posted 2 days ago

Job description

Senior Security Engineer โ€“ SOC 2, HITRUST & HIPAA Complianceย ย 

6 -12 Months contract โ€“ ย ย extensionย  ย (W2 - Contract)

McLean , VA โ€“ On-site ย ย M-F ย 

Job Description:

Position Summary:

  • Seeking a hands-on Senior Security Engineer to lead security controls, cloud security, compliance initiatives, and audit readiness for SOC 2 Type II, HITRUST, and HIPAA.
  • This role partners with Engineering, Product, and Compliance teams to implement, automate, and maintain security programs across the organization.

Key Responsibilities:

  • Lead implementation and maintenance of SOC 2, HITRUST, and HIPAA security controls.
  • Manage audit readiness, evidence collection, remediation, and assessor coordination.
  • Conduct security risk assessments and ensure protection of sensitive healthcare data.
  • Design and secure AWS, Azure, and/or Google Cloud Platform environments.
  • Integrate security into CI/CD pipelines and automate compliance monitoring.
  • Manage vulnerability management, SIEM monitoring, threat detection, and incident response.
  • Support customer security reviews and technical security assessments.

Required Qualifications:

  • 5+ years of experience in Security Engineering, Cloud Security, DevSecops, or Security Architecture.
  • Hands-on experience with SOC 2, HITRUST, and HIPAA compliance programs.
  • Strong knowledge of AWS, Azure, or Google Cloud Platform security.
  • Experience with SIEM, vulnerability management, CSPM, and security automation tools.
  • Proficiency in Python, Bash, or similar scripting languages.
  • Experience with Docker, Kubernetes, Terraform, encryption, and secrets management.

Preferred Qualifications

  • CISSP, CCSP, HITRUST CCSFP, AWS Security Specialty, or similar certifications.
  • Experience in healthcare SaaS, digital health, or health IT environments.
  • Knowledge of FedRAMP, StateRAMP, and AI/ML security.

Core Skills :

  • SOC 2 โ€ข HITRUST โ€ข HIPAA โ€ข Cloud Security โ€ข DevSecops โ€ข Security Automation โ€ข Risk Management โ€ข Incident Response โ€ข Vulnerability Management โ€ข Audit Leadership.

Apply