Lead IT Security Specialist - Governance and Compliance in Secaucus, NJ at Quest Diagnostics

Date Posted: 5/27/2020

Job Snapshot

Job Description

Look for more than answers. 

At Quest, we are on a continuous journey of discovery and development. It’s this attitude that has made us an industry leader and the #1 Diagnostic Lab in the US. For those joining us, we offer exciting and fast-moving career opportunities where you can affect change at a rate unheard of in many organizations of our size and scope. While we invest in and develop technology to drive our innovations, our ongoing success relies on our people.

As a Lead IT Security Specialist - Governance and Compliance, you will work for the world leader in the industry, with a career where you will have the opportunity to collaborate and affect change while expanding your leadership skills and technical knowledge. You can make a real impact in a market that is growing and developing.

This professional will work from our Secaucus, NJ location.

Lead IT Security Specialist - Governance and Compliance, the role:


The Lead IT Security Specialist - Governance and Compliance will be responsible for supporting the IT Security Governance and Compliance Program.  This professional will be responsible for regulatory oversight for IT security policy and standards, guidelines, presentations and communications, technology policy and standards development, IT control management updates and facilitation within internal departments. The Lead IT Security Specialist - Governance and Compliance will perform risk assessments  and controls mapping to regulations and security standards such as HIPAA/HITECH, National Institute of Standards and Technology (NIST 800-53), ISO 27001 and other security frameworks, manage regulated audits and evaluate IT Contracts.

The ideal candidate will be a self-starter and have an inquisitive, analytical mind that constantly looks for solutions to difficult problems. The specialist must have the ability to convey technology and security concepts to management and ideally has technical knowledge and/or experience in security with a proficiency in a risk management framework with the ability to assess administrative and technical controls. 

Lead IT Security Specialist - Governance and Compliance, the role:

  • Develop, initiate, maintain, and revise policies and procedures for the general operation of the IT Security Program and its related activities to prevent illegal, and non-industry standard conduct.

  • Serve as key resource for IT Security to ensure compliance to government and regulatory requirements and assess compliance, quality and cyber security risk within the organization and recommend solutions to mitigate and reduce IT risks, while improving compliance.

  • Build and manage implementation plans, schedules and activities to achieve various compliance requirements (SOC2, SOX, PCI, EHNAC, etc.)

  • Operate as a consultant, researching and recommending changes to enhance or streamline information security procedures. 

  • Conduct controls mapping exercises between company policy to regulations, laws, frameworks, etc.

  • Participate in security investigations and compliance reviews as required by customer requirements or internal or external audits.

  • Provide education, guidance, consultative support in order to respond to all IT risk and compliance inquiries timely

To qualify, the ideal candidate will have the following skills and experience

  • Bachelor's degree and 5+ years of experience in IT Security, IT Risk Management, Compliance, Privacy or related field, or equivalent

  • IT Security certifications are a plus e.g. CISA, CRISC, CISM, CISSP, HCISSP

  • Strong understanding of best practices for information security and data privacy

  • Strong background implementing and managing regulatory requirements and security frameworks such as HIPAA/HITECH,  EU-US Privacy Shield, GDPR, State Privacy Laws, 21 CFR Part 11, NIST, HITRUST, ISO 27001, FISMA,  Service Organization Control criteria (SSAE 18 / SOC), PCI, EHNAC

  • Drive and goal-oriented with the ability to complete tasks with limited supervision within an evolving and entrepreneurial environment.

  • Ability to work with other departments throughout Quest Diagnostics; detail-oriented to successfully manage multiple projects at the same time. 

  • Highly motivated with excellent organizational skills and the ability to stay on top of a variety of commitments and deadlines; must be able to work independently and as a team to maintain workload, and report on problems or progress in a timely manner

  • Strong time management skills (schedules, timelines, and task prioritization) and ability to work with minimal supervision or guidance

  • Excellent communication, analysis and collaboration skills are essential

  • Knowledge of and ability to use and influence organization s policies, standards, and procedures guiding organizational processes

  • The ability to be flexible with others, to display tact and diplomacy, and to maintain a high degree of confidentiality

  • Strong interpersonal skills with a proven ability to work well within a team environment while accomplishing individual projects

  • Skilled with Microsoft Excel and RSA Archer

Apply Today

Join us for competitive benefits and development opportunities in a progressive and supportive environment. Help us improve our service, and the experiences of our patients and colleagues. Work with us and together we can be better.

Your Quest career. Seek it out.

All requirements are subject to possible modifications to reasonably accommodate individuals with disabilities. Quest Diagnostics is an Equal Opportunity Employer: Women / Minorities / Veterans / Disabled / Sexual Orientation / Gender Identity or Citizenship. 

If you’re interested in career opportunities, but not ready to apply, join our talent network to stay connected to us and receive updates on the latest job opportunities and company news.

Group of people