Lead Information Technology Analyst

Hiring: Lead IT Business & Security Analyst (Healthcare / Pharma)

Location: North Wales, PA (Onsite)

Duration: 6+ Months

This is strictly a W2 position and requires a US Work Authorization.

About the Role

We are seeking a Lead IT Business & Security Analyst with strong healthcare/pharma domain expertise to bridge the gap between business, clinical, and technical teams. This hybrid role combines business analysis, healthcare interoperability, and cybersecurity/compliance to ensure secure, efficient, and compliant patient data systems.

You will play a critical role in designing solutions that balance clinical usability and patient safety with robust security and regulatory compliance.

Key Responsibilities

Business Analysis & Consulting

• Conduct in-depth analysis of clinical and business needs, translating them into clear functional specifications
• Collaborate with stakeholders (clinicians, administrators, IT teams) to define system requirements (EHR, billing, workflows)
• Identify and resolve process inefficiencies (patient flow, data entry, system bottlenecks)
• Facilitate walkthroughs to align business requirements with functional/technical solutions
• Develop and support test cases aligned with requirements
• Provide user training and documentation for clinical and administrative users

Security & Compliance

• Ensure protection of Electronic Protected Health Information (ePHI)
• Conduct Security Risk Assessments (SRA) aligned with HIPAA requirements
• Implement and enforce:
• Least-privilege access
• Multi-Factor Authentication (MFA)
• Monitor, detect, and respond to security incidents (phishing, breaches, threats)
• Perform audits on system architecture, integrations, and data flows
• Manage vendor compliance through Business Associate Agreements (BAAs)

Healthcare & Interoperability

• Ensure secure interoperability using HL7, FHIR standards
• Work across product, data, and business teams to support integrated healthcare solutions
• Balance clinical efficiency with risk mitigation in system design

Mandatory Skills & Experience

• 11+ years of experience in Business Analysis / IT Security / Healthcare IT
• Strong knowledge of:
• HIPAA Security Rule & NIST frameworks
• Healthcare data security (especially pharma/patient data)
• Interoperability standards (HL7, FHIR)
• Proven ability to work with executive leadership and cross-functional teams
• Excellent communication, documentation, and stakeholder management skills

Education

• Bachelor’s Degree in Technology, Engineering, or related field

Preferred Certifications

Security & Audit (Strongly Preferred)

• CISSP (Certified Information Systems Security Professional)
• CISA (Certified Information Systems Auditor)

Healthcare Domain

• HCISPP (Healthcare Information Security & Privacy Practitioner)
• CPHIMS (Healthcare Information & Management Systems)

Business & Process

• CBAP (Certified Business Analysis Professional)
• ITIL 4 Foundation