Epic Compliance & Environment Management Analyst Job Fort Collins area,Colorado USA,IT/Tech

We’re building a world of health around every individual — shaping a more connected, convenient and compassionate health experience. At CVS Health®, you’ll be surrounded by passionate colleagues who care deeply, innovate with purpose, hold ourselves accountable and prioritize safety and quality in everything we do. Join us and be part of something bigger — helping to simplify health care one person, one family and one community at a time.

Position

Summary

The Epic Security Compliance Analyst monitors and reports on adherence to role-based access controls, performs regular internal audits to ensure data integrity and privacy. Engage in and respond to third-party audit requests. Must exhibit a professional attitude, communication style, and presence.

Basic Function

Qualifications

Minimum Qualifications

3 years of experience in healthcare IT
Demonstrated experience with EMR software, including audit reporting, and change control processes using tools like Data Courier, Content Management and Analytics Catalog.
elf-direct

Sed learning, multi-tasking, organizational, communication, and IT project management skills.

Preferred Qualifications

Some experience specifically supporting Epic environments.
Demonstrated experience with Epic software, including audit reporting, and change control processes using tools like Data Courier, Content Management and Analytics Catalog.
Relevant Epic certifications (e.g., Data Courier, Bridges) are often preferred. ITIL certification is also a common preference.
Certified Information Systems Security Professional (CISSP) preferred.

Education

Degree in Information Technology, Computer Science, or a related field; or comparable industry and vendor-provided Certifications

Principal Accountabilities Security Compliance

Conducts Routine Audits:
Reviews and assesses compliance with departmental policies and procedures on data migration, EPCS, system access.
Complies with Audit Board Requests:
Provides requested reports and documentation as required and coordinates with IA SOX to respond to any findings.
Configures Compliance Reports:
Highlighting findings, recommendations and areas of concern.
Administers investigations into potential compliance violations or breaches:
Gathers evidence, conducts interviews, and prepares reports on the findings.
Monitors Disaster Recovery Exercises:
Tracks scheduling compliance, and completion.

Collaboration and Communication

Act as a Liaison:
Serve as a bridge between Epic technical teams and Internal Audit.
Host and Facilitate Meetings:
Coordinate meetings to review any findings and deficiencies with teams and assist in remediation plans.
Communicate Effectively:
With minimal manager supervision, draft, prepare and disseminate education on identified compliance violations.
Project Management:
Manages smaller projects with multiple teams and participates in multi-disciplined project teams.

Monitoring and Support

Track and Document:
Maintain documentation for routine audits, compliance reports and Audit Board requests.
Monitor Performance:
Track clinical and technical team adherence to policies and procedures.
Analyzes internal controls, policies and procedures:
Identifies weaknesses and recommend improvements.
Monitors Epic Access:
Collaborate with Epic Security group to confirm all Epic certifications are up to date for Epic analysts with EMR access.
Track downtime:
Monitor the planning and testing of downtime and disaster recovery procedures.
Leverages ITSM services:
Leverages Service Now for incident management review and change control compliance.

General

Demonstrate ability to integrate into multiple work teams.
Responsible for understanding the technological advances and innovations available in the healthcare industry.
Promotes individual professional growth and development by meeting requirements for mandatory/continuing education, skills competency, supports…