1

Hitrust Jobs in Chicago, IL (NOW HIRING)

Facilitate and support HITRUST readiness activities in collaboration with internal stakeholders, enhancing platform trustworthiness and compliance. Qualifications & Requirements: * 8+ years in ...

next page

Showing results 1-20

Hitrust information

Is cybersecurity a dying field?

Cybersecurity professionals, including those working with HITRUST compliance, are in high demand due to increasing cyber threats and data protection regulations. The field is expected to grow steadily as organizations prioritize security, requiring skills in risk management, threat detection, and security frameworks. Continuous learning and certifications like CISSP or CISA enhance job prospects in this evolving industry.

What are the key skills and qualifications needed to thrive in the Hitrust position, and why are they important?

To thrive in a HITRUST professional role, you need a robust understanding of information security, healthcare compliance, and risk assessment, typically supported by a relevant degree or certifications such as HITRUST Certified CSF Practitioner (CCSFP). Proficiency with regulatory frameworks like HIPAA, GRC tools, and HITRUST’s MyCSF platform is crucial. Strong attention to detail, analytical thinking, and effective communication are key soft skills for working with cross-functional teams and translating complex requirements. These skills enable professionals to ensure organizational compliance, manage complex security assessments, and foster trust in healthcare data protection programs.

What jobs in the US pay $300,000 a year?

High-paying jobs that can reach or exceed $300,000 annually include roles such as senior cybersecurity professionals, chief information security officers, and IT directors, especially in large organizations. These positions often require extensive experience, advanced certifications like CISSP or CISM, and leadership responsibilities within cybersecurity or technology departments.

What typical responsibilities can I expect as a HITRUST professional in a healthcare organization?

As a HITRUST professional, you will be responsible for guiding organizations through the HITRUST CSF certification process, conducting comprehensive risk and gap assessments, and creating remediation plans to address compliance issues. Your work will often involve collaborating with IT, compliance, and executive teams to implement policies, improve security controls, and ensure adherence to industry standards like HIPAA and HITECH. You can also expect to manage regular audits, prepare documentation, and educate staff on emerging security requirements. This role plays a key part in maintaining regulatory compliance and safeguarding sensitive patient data.

What is a HITRUST job?

A HITRUST job typically involves working with the HITRUST Common Security Framework (CSF) to help organizations achieve and maintain regulatory compliance, data security, and risk management. Professionals in this role may conduct risk assessments, implement security controls, and guide organizations through the HITRUST certification process. Common job titles include HITRUST Consultant, Compliance Analyst, and Security Auditor. These roles require expertise in cybersecurity, regulatory frameworks, and industry best practices.

How much do HITRUST analysts make?

HITRUST analysts typically earn between $70,000 and $110,000 annually, depending on experience, certifications, and location. They often work with compliance frameworks, security assessments, and risk management tools in healthcare or cybersecurity environments.
What are the most commonly searched types of Hitrust jobs in Chicago, IL? The most popular types of Hitrust jobs in Chicago, IL are:
Infographic showing various Hitrust job openings in Chicago, IL as of July 2026, with employment types broken down into 91% Full Time, 7% Part Time, and 2% Contract. Highlights an 61% Physical, 4% Hybrid, and 35% Remote job distribution.

Compliance Specialist FedRAMP & HITRUST

Jorie AI

Oak Brook, IL • Remote

Full-time

This job post has expired today. Applications are no longer accepted.


Job description

Salary: $120,000-$150,000

Jorie AI is transforming healthcare operations through intelligent automation, secure cloud solutions, and data-driven insights. As a Compliance Specialist FedRAMP, you will play a key role in ensuring Jories cloud infrastructure and services meet stringent federal security and compliance standards while maintaining alignment with existing HITRUST and HIPAA
frameworks.

This position requires deep understanding of FedRAMP authorization processes, cloud security compliance, and the integration of HITRUST controls across multi-framework compliance programs. The ideal candidate is proactive, detail-oriented, and comfortable working cross-functionally with IT, security, and audit teams in a fast-paced technology environment.


Key Responsibilities

FedRAMP Compliance Oversight

  • Support the implementation and maintenance of Jories FedRAMP authorization program in alignment with agency and customer requirements.
  • Develop and maintain FedRAMP System Security Plans (SSP), POA&Ms, and supporting documentation.
  • Coordinate with internal IT and cloud engineering teams to ensure continuous compliance of systems within AWS, Azure, or other CSP environments.
  • Liaise with 3PAOs (Third-Party Assessment Organizations) and government stakeholders during audits and assessments.

HITRUST and Multi-Framework Alignment

  • Ensure consistent control alignment between FedRAMP Moderate/High baselines, HITRUST CSF, and NIST 800-53 frameworks.
  • Maintain evidence documentation, control mapping, and compliance matrices for overlapping regulatory programs (HITRUST, SOC 2, HIPAA, PCI).
  • Participate in ongoing HITRUST recertification processes, including control review, evidence validation, and policy updates.
  • Collaborate with internal and external auditors (e.g., ISP) to ensure accurate reporting and compliance posture visibility.

Risk Management & Continuous Monitoring

  • Assist in continuous monitoring of security controls and remediation of POA&M items.
  • Conduct risk assessments for cloud systems, vendors, and new integrations impacting the FedRAMP boundary.
  • Coordinate vulnerability scans, incident response activities, and configuration management documentation in alignment with FedRAMP and HITRUST requirements.

Policy, Documentation, and Training

  • Develop, update, and enforce policies related to data security, cloud compliance, and regulatory reporting.
  • Provide compliance guidance and training to engineering, DevOps, and IT personnel involved in the FedRAMP environment.
  • Support internal readiness reviews, gap assessments, and compliance roadmap initiatives.


Qualifications

Education

  • Bachelors degree in Information Security, Computer Science, Compliance, or related field required.

Experience

  • 36 years of experience in compliance, information security, or risk management.
  • At least 2 years of direct experience supporting FedRAMP programs or equivalent government compliance frameworks.
  • Hands-on experience with HITRUST CSF certification processes, evidence collection, and auditor coordination.
  • Experience working in cloud-based environments (AWS, Azure, or GCP) and familiarity with continuous monitoring tools (Splunk, Qualys, Nessus, etc.).
  • Background in healthcare, AI, or SaaS industries strongly preferred.


Skills & Competencies

  • In-depth understanding of NIST 800-53, FedRAMP Moderate/High baselines, and HITRUST CSF control mapping.
  • Strong knowledge of HIPAA, HITRUST, SOC 2, and ISO 27001 standards.
  • Excellent documentation and writing skills ability to produce and maintain formal compliance deliverables.
  • Strong analytical, organizational, and communication skills, with the ability to work across technical and non-technical teams.
  • FedRAMP (3PAO) Assessor or equivalent experience

Preferred Certifications

  • HITRUST Certified CSF Practitioner (CCSFP) required
  • Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) preferred
  • Certified Information Systems Security Professional (CISSP) a plus
  • Security+ or CCSP (Certified Cloud Security Professional)