Epic Security & Compliance Technical Application Specialist, Consultant Specialist Job in Pasadena, California US

Epic Security Compliance Technical Application Specialist, Consultant Specialist

At Kaiser Permanente, every technology we design, system we maintain, and petabyte of data we manage supports the health and well-being of our members-all 8.6 million of them. Here, you'll build and support systems that support life-systems like KP HealthConnect, a unique information management and care delivery infrastructure that integrates our members electronic medical records with appointments, registration, and billing. Growing and maintaining this advanced system calls for people with specialized skills-most importantly proficiency in Epic software. In these highly independent roles, you'll apply your knowledge to potentially life-saving data. Come lend your Epic skills to an epic opportunity. This position, as an individual contributor, provides subject matter expertise from technical, project management and business consulting perspective in support of Sarbanes-Oxley (SOX), Health Insurance Portability Accountability Act (HIPAA) and Epic Security and other compliance activities.Reporting to the Manager, Security and Compliance, this position will have Southern California and enterprise wide responsibility for maintaining and supporting CD BIO KP HealthConnect IT in the areas of audit, IT change control, management of protected health information, segregation of duties and provisioning deprovisioing of users. Members of this team work across a number of compliance related initiatives to ensure appropriate processes, procedures and controls are adequately designed, implemented or remediated to meet audit and compliance expectations, operating efficiency goals, and other business objectives. Additionally, this position will lead, facilitate, and support Epic security build, deployment and optimization of cross-functional Epic applications. The skills required for the job include a well-rounded set of experience within IT compliance, conducting audit and reporting/remediating findings is required. Must be a team player, with strong interpersonal and written communication skills as well as people management skills. Essential Functions: - Assist in management of large scale risk/security assessment studies and projects to validate and remediate perceived risks - Perform interviews, document design assessments and walkthroughs of key controls (both new and existing) - Conduct post-change review sessions; analyze post-implementation data for future improvement - Oversee and address situations where there is deviation of practice from the regional change management policy - Develop and nurture trusted relationships with Business Partners, KP IT Executives, Security Compliance Officers and other Compliance Team Members to gain consensus approvals on strategies, recommendations, findings, project plans, etc. - Assist in developing and maintaining security and compliance training programs - Promote awareness of Information Protection policies, standards and procedures to users through daily interactions - Work under the direction of the Security and Compliance Manager, Technical Applications Specialist - Consultant Specialist functions as Subject Matter Expert to configure, build, and troubleshoot Epic security compliance tasks projects - Work collaboratively with inter-regional sub-teams to document and coordinate changes to shared masterfiles - Work independently to research complex business requirements, workflows, application issues, and root cause analysis - Ability to work in a matrix organization to lead group discussions and influence decision making - Identify opportunities where KP HealthConnect can support key initiatives for work flow and process improvements for optimization - Support compliance and the Principles of Responsibility (KP's Code of Conduct) by maintaining the privacy and confidentiality of information, protecting the assets of the organization, acting with ethics and integrity, reporting non-compliance, and adhering to applicable federal, state and local laws and regulations, accreditation and licenser requirements (if applicable), and KP's policies and procedure Qualifications: Basic Qualifications: - Bachelor's degree in MIS, CS, College of Business majors, or related subject preferred and/or equivalent experience - 12+ years of professional experience in analysis of complex business requirements, systems upgrades, workflows and application capabilities. - 8+ years of professional experience in healthcare or information technology organization - One or more Epic certification OR required to pass Epic certification exam (if not certified) in two attempts within three months of hire - Strong detailed analytical thinking, problem solving, and results oriented skills - Ability to manage multiple and competing tasks and projects - Strong communication and organizational skills - Ability to work effectively as a team player and work with people of all backgrounds and at all levels - Project management skills (ability to lead meetings, prioritize tasks, resolve conflicts, maintain issues list, manage project plan) - Ability to work in a matrix organization to lead group discussions and influence decision making - Practical experience in managing or working on compliance/audit projects - Willing to travel up to 10% of time Preferred Qualifications: - 5+ years Epic application experience - Knowledge of change management, as it relates to Sarbanes-Oxley(SOX) - Knowledge of regulatory requirements, in particular, HIPAA and PHI - Epic Security experience - Practical experience in managing or working on multiple large-scale compliance/audit projects concurrently - Experience with KP HealthConnect - Strong understanding of Epic Security functionality - Experience with internal consulting, customer management, and defining engagement scope, negotiating commitments, gathering requirements, defining deliverables, designing integrated solutions, and overseeing technical implementations considered a plus