[Remote] HIPAA Compliance Assessor/Consultant (Remote, Part-Time)
Note: The job is a remote job and is open to candidates in USA. TestPros, Inc. delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world. They are seeking a HIPAA Compliance Assessor / Consultant to support independent assessments of HIPAA compliance, focusing on how websites, apps, or platforms collect, use, and protect user data, particularly for minors.
Responsibilities
- Identify Electronic Protected Health Information (ePHI): Locate all systems holding sensitive data
- Identify Threats and Vulnerabilities: Determine potential, reasonably anticipated threats
- Assess Security Measures: Evaluate current safeguards
- Determine Likelihood and Impact: Evaluate the probability and impact of potential breaches
- Document and Prioritize Findings: Create the formal report and risk mitigation plan
Skills
- 5+ years of experience with HIPAA Assessments and Reporting
- 5+ years of experience with HIPAA guidelines, such as: NIST Special Publication 800-66 Rev. 2: Implementing the HIPAA Security Rule, NIST Cyber Security Framework to HIPAA Security Rule Crosswalk, Health Information Trust Alliance (HITRUST)
- Hands-on experience conducting: Privacy assessments / audits, PIA / DPIA
- Strong understanding of: Data flows & data lifecycle, User data handling in web/mobile applications
- Experience reviewing: Consumer-facing systems (apps, websites), Consent, transparency, and privacy controls
- Ability to translate regulations into practical findings and recommendations
- Background in GRC, cybersecurity, or product compliance
- Certifications such as: CIPP, CIPM, CISM, or similar
Benefits
- Flexible hours
- 1099 or Corp-to-Corp
- Project-based (initial assessment engagement)
Company Overview