Manager Information Security Risk Job at SCA Health
Overview:
As part of Optum, we participate in an integrated care delivery system that enables us to support our partners as they navigate a complex healthcare environment, Only SCA Health has a dynamic group of physician-driven, specialty care businesses that allows us to customize solutions, no matter the need or challenge:
The new SCA Health represents who we are today and where we are going—and the growing career opportunities for YOU. Accountabilities / Responsibilities:
The IT Risk & Compliance Manager will be expected to facilitate discussions, capture information, document changes and obtain signoffs from stakeholders. It will be the responsibility of this position to ensure any new controls or changes in risk levels identified are documented and prioritized according to the needs of the business. This will be to align projects with the greater goals of Information Technology and the organization.
Significant interaction with SCA leaders across the enterprise will be a requirement of this position and, therefore, this individual must be comfortable working with the highest levels of senior management.
This position is primarily responsible for managing:
Today, SCA Health has grown to 11,000 teammates who care for 1 million patients each year and support physician specialists holistically in many aspects of patient care. Together, our teammates create value in specialty care by aligning physicians, health plans and health systems around a common goal: delivering on the quadruple aim of high-quality outcomes and a better experience for patients and providers, all at a lower total cost of care.
As part of Optum, we participate in an integrated care delivery system that enables us to support our partners as they navigate a complex healthcare environment, Only SCA Health has a dynamic group of physician-driven, specialty care businesses that allows us to customize solutions, no matter the need or challenge:
- We connect patients to physicians in new and differentiated ways as part of Optum and with our new Specialty Management Solutions business.
- We have pioneered a physician-led, multi-site model of practice solutions that restores physician agency by aligning incentives to support growth and transition to value-based care.
- We lead the industry in value-based payment solutions through our Global 1 bundled payment convener, that provides easy predictable billing to patients.
- We help physicians address everything beyond surgical procedures, including anesthesia and ancillary service lines.
The new SCA Health represents who we are today and where we are going—and the growing career opportunities for YOU.
The IT Risk & Compliance Manager is responsible for overseeing the risk management function and key controls related to the IT production environment. In addition, this position will manage a team of risk professionals who will work together to ensure that risk is properly addressed. It includes participating in control design and effectiveness related to the control environment. This role will ensure IT controls are designed to properly mitigate the risks related to them and that appropriate documentation for them is maintained. To accomplish these goals, this position will interview the control owners and business process owners to identify the areas to prioritize. This position is also responsible for executing basic IT Risk & Compliance area controls to ensure our organization adheres to best practices and regulatory requirements.
The IT Risk & Compliance Manager will be expected to facilitate discussions, capture information, document changes and obtain signoffs from stakeholders. It will be the responsibility of this position to ensure any new controls or changes in risk levels identified are documented and prioritized according to the needs of the business. This will be to align projects with the greater goals of Information Technology and the organization.
Significant interaction with SCA leaders across the enterprise will be a requirement of this position and, therefore, this individual must be comfortable working with the highest levels of senior management.
This position is primarily responsible for managing:
Risk & Compliance Team
- Hiring of new risk analysts, as needed
- Assigning duties to and managing risk analysts
- Conducting performance reviews and providing coaching to the risk analysts
Risk Assessments
- Several types of IT risk assessments conducted throughout the enterprise.
- Appropriate creation, updates, and storage of necessary documentation
- Vendor relationships with third parties that assist with risk assessments
- Follow-ups for remediation of items identified as risky or out of compliance
User Access Reviews
- Collaboration with IT teams and others in the enterprise to ensure access is validated and inappropriate access is removed
- Identification of ways for continuous improvement of the process and end-user experience
Audits
- Coordinate IT response for all internal/external audits as needed
- Collaboration with IT teams to obtain requested information
- Follow-ups for remediation of items identified as risky or out of compliance
Policies
- Recertification of policies
- Creation and editing of policies as needed
- Alignment of SCA Health policies with UHG/Optum policies
Security Awareness
- Oversight of the Security Awareness Working Group for direction/content
- Phishing assessments
- Collaborating with vendor and our Learning Team to prepare annual training for teammates
- Identification of ways for continuous improvement and education our teammates
Managed services
- Oversee the third parties who provide our company with assistance in areas of risk assessment, consultation, etc.
- Assessing the performance of the managed services and providing feedback to them
- Negotiating new managed services and renewals
- Bachelor’s degree in Information Technology, Management Information Systems, Computer Science, other related business discipline, or commensurate experience
- 5+ years Information Technology or other relevant experience
- 3+ years’ experience with an enterprise-level Risk & Compliance function
- Proven ability to manage competing priorities
- Relevant certification or advanced degrees a plus (e.g., CRISC, CISSP, CISM, HITRUST, etc.)
- Strong leadership skills including conflict/issue resolution
- Ability to communicate effectively both verbally and through writing with clients, stakeholders, and senior management
- Ability to work effectively with project resources across multiple departments
Please Note :
www.bankofmontserrat.ms is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, www.bankofmontserrat.ms provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.