- Plan and conduct risk assessment activities according to the appropriate framework, including but not limited to NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, in order to identify, assess, prioritize, evaluate and address financial, information security, privacy, and other areas of risk.Prepare draft reports and other management reporting deliverables.Review all work prepared by less experienced team members to ensure audit quality standards are consistently met in all forms of documentation.
- Review and interpret inherent risk assessment results, engagement risks, and developassurance plans (e.g., on-site audit, contract review, financials assessment, purchasing data analysis) to address relevant risk areas and to ensure proper controls are implemented.Accountable for the review and interpretation of authoritative guidance (including, but not limited to NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO reports) and performs qualitative and quantitative impact assessments based on physical, technical, and administrative safeguards as well as contractual requirements; conducts additional information gathering and risk assessments as-needed; documents and reports results.
- Lead development of project plans to support risk assessment and decisioning in coordination with business owners and other stakeholders within task-based budgets.Collaborate and communicate with Information Security, Privacy, Procurement, Audit, Compliance, and other teams across the Enterprise to align risk management objectives, practices and procedures.
- Interface with business areas, technical staff, project teams, and third parties to execute cross-functional risk assurance projects. Lead the communication of assessment results and findings with multiple stakeholder groups and provides consultation and direction throughout.
- Interpret complex data flow/ information sharing activities, customer integrations, and information safeguards into simplified and high-level terminology and/or process/data flows.Maintains risk management reporting dashboards in RSA Archer applications in order to keep information complete, accurate, and current.Prepare and assist with the delivery of risk assurance reports to management.
- Ensure risk questionnaires and other risk assessments are distributed and completed on-time and prepares initial impact assessments.Ensure compliance requirements are met across the Enterprise.Assist in training and mentoring team members on multi-faceted engagements, platform customer dependencies, and interpretation of complex contract agreements.
- Collaborate with lead in providing input and consultation on risk and assurance reporting.Collaborate and consult with other areas (e.g., Procurement, Privacy, Information Security, Legal) throughout the engagement lifecycleAssist in providing timely feedback on interpretations regarding authoritative guidance.
- Proactively reviews updates made to departmental desk-level procedures, risk assessment methodology, assessment procedures, questionnaires, training, etc. and is responsible for monitoring compliance with departmental metrics, internal control activities, contractual obligations, regulatory requirements, and responding to customer inquiries / audits.
- Other duties as assigned or requested
- Bachelor's Degree in Accounting, Finance, Business Administration/Management, Information Technology, Pre-Law, or related field
- 6 years of related and progressive experience in lieu of Bachelor's degree
- Master's Degree in Accounting, Finance, Business Administration/Management, Information Technology, Pre-Law, or related field
- 5 years in Audit and Compliance
- 3 years of Business Process Design
- 3 years of Project Management
- None
- None
- Certified Public Accountant (CPA)
- Certified Information Systems Analyst (CISA)
- Certified Information Privacy Professional (CIPP)
- Certified Information Systems Security Professional (CISSP)
- Demonstrate expert knowledge of business and technology processes, risk and control frameworks, and assessment methodologies, particularly as applied to healthcare (payer and provider) business processes.
- Knowledge of relevant regulatory guidelines, vendor management, sourcing and procurement, and completing assessments of vendors
- Excellent resource and project planning capabilities, decision making skills, history of results-oriented delivery, and effective team building across a cross-campus and diverse team of management and staff.
- Strong written and verbal communication skills for diverse audiences (senior management, board, peer, and team).
- Strong relationship building skills and ability to influence with and without authority in a matrixed organization.
- Leadership qualities with an ability to motivate and inspire a group of individuals to achieve superior results.
- High capacity to think analytically, interpret information / observations, apply judgment and make effective, strategic decisions.
-
Chief Operating Officer
3 days ago
Hueman Direct Hire Pennsylvania, United StatesA top client is hiring for a Chief Operations Officer (COO) to provide oversight of a National Manufacturing and Distribution Center Operations located in Northeastern Pennsylvania. · As COO, you will be on-site and responsible for overseeing operational efficiency, productivity, ...
-
Vice President, Senior Sales Manager
2 weeks ago
HSBC Pennsylvania, United StatesOur purpose – Opening up a world of opportunity – explains why we exist. Here at HSBC we use our unique expertise, capabilities, breadth and perspectives to open up new kinds of opportunity for our more than 40 million customers. We're bringing together the people, ideas and capi ...
-
Vice President of Engineering and Automation
3 weeks ago
Hamlyn Williams Pennsylvania, United StatesThe Vice President of Engineering and Automation is a strategic leadership role responsible for overseeing the engineering, automation, and maintenance functions within our pharmaceutical manufacturing facilities. This role is critical for driving innovation, ensuring operational ...
-
Professional Liability Claims Specialist
5 days ago
Brown & Brown Insurance Pennsylvania, United States Full timeBuilt on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers. · Professional Protector Plan is seeking a Claims Specialist to join our team. Adjust claims for the Professional Protector Plan (PPEL) a di ...
-
Suffolk Construction Pennsylvania, United StatesThe Role · Suffolk is seeking people who are bold. Curious. Innovative. Caring. Looking for the career opportunity of a lifetime. We'll challenge and inspire you to be your very best. We'll embrace what makes you unique and lift you up as you take chances. Here, you'll find a pla ...
-
Senior Program Manager
3 weeks ago
Blackbaud Pennsylvania, United States Full timeBlackbaud unleashes the potential of the people and organizations who change the world, and we're growing our team. As the leading software provider exclusively dedicated to powering social impact, expand what is possible across the nonprofit and education sectors, at companies c ...
-
Cloud Security Advisor
3 weeks ago
Federal Reserve System Pennsylvania, United States Full timeCompany · Federal Reserve Bank of RichmondWhen you join the Federal Reserve—the nation's central bank—you'll play a key role, collaborating with leading tech professionals to strengthen and protect our economic, financial and payments systems. We invest in contemporary and emer ...
-
Construction Project Manager
1 week ago
JD Group Pennsylvania, United States Full timeCome work for us · We are looking for dedicated employees to join our team to help our customers have the best experience possible every time they enter a JD Finish Line store. · Our employees are key to our success. · This candidate can live anywhere in the East Coast, ideally i ...
-
Cybersecurity System Engineer
2 weeks ago
Covetrus Pennsylvania, United States Full timeCovetrus Global Cybersecurity Team seeks a highly skilled Security System Engineer with extensive hybrid-cyber experience both in infrastructure and endpoint management. The ideal candidate will have a deep understanding of cloud workload architecture as well as traditional works ...
-
Area Sales Director
3 weeks ago
Workiva Inc. Pennsylvania, United States Full timeAt Workiva, the Area Sales Director (ASD) delivers sales results on predetermined growth revenue targets through leadership and management of individual contributors known as Regional Sales Directors. Utilizing their influence, the Area Sales Director performs a strategic leader ...
-
PA - Medicine
4 weeks ago
Medicorp, Inc. dba Physician Empire Pennsylvania, United StatesInterventional Cardiology in PA · On Lake Erie · 5 miles from the beaches of Presque Isle · 90 minute drive to Pittsburgh, Cleveland and Buffalo · 195 miles to downtown Toronto · Join a Hospital employed group of 30 Cardiologists and 20 APP s adding an Interventional Cardiol ...
-
Cardiologist / Cardiology
4 weeks ago
Medicorp, Inc Pennsylvania, United StatesPennsylvania - Interventional Cardiology · • I would like to introduce you to an opportunity to practice cardiology in an practice located on the southern shore of Lake Erie. · • The practice is constructed of 27 cardiologists providing care to the residents of the Tri-State re ...
-
UPMC Pennsylvania, United StatesExciting Opportunity for a Primary Care CRNP or PA-C at Chambers Hill Family Practice · Join our vibrant healthcare team of more than 230 primary care physicians and advanced practice providers at UPMC Medical Group in Central PA, where we're thrilled to offer a compelling oppor ...
-
PA position
4 weeks ago
Continuum Physician Recruiting Pennsylvania, United StatesFAMILY MEDICINE CENTRAL PENNSYLVANIA We are looking for BC/ BE Family Physicians Will consider new graduates No Visa candidates considered. Outpatient Primary Care opportunities are available in Bloomsburg, Milton, Kulpmont, Mt. Carmel, Pittston, and Tunkhannock. An innovative mo ...
-
Cardiologist / Electrophysiology / Sign on Bonus
3 weeks ago
UPMC Pennsylvania, United StatesUPMC Heart and Vascular Institute at UPMC Hamot , would like to introduce you to an opportunity to practice cardiology in Erie, PA, known as the Flagship City located on the southern shore of Lake Erie. The practice is constructed of 27 cardiologists providing care to the residen ...
-
Senior Software Engineering Manager
3 weeks ago
DICK'S Sporting Goods Pennsylvania, United StatesAt DICK'S Sporting Goods, we believe in how positively sports can change lives. We are committed to creating an inclusive and diverse workforce, reflecting the communities we serve. · If you are ready to make a difference as part of the world's greatest sports team, apply to joi ...
-
Michael Page Pennsylvania, United States Full timeAbout Our Client My client are one of the leading Independent Power Producers in N. America, with GWs of Renewable Assets in Operation, GWs of projects under Construction, and GWs of projects in their Development Pipeline - Onshore Wind, Solar, Solar+, Hydrogen, Transmission, Lon ...
-
Assoc Dir, IT Business Partner
1 week ago
Syneos Health - USA Pennsylvania, United States Full time· Associate Director, BT Business Partner · Syneos Health is a leading fully integrated biopharmaceutical solutions organization built to accelerate customer success. We translate unique clinical, medical affairs and commercial insights into outcomes to address modern market rea ...
-
Congress Project Manager
1 month ago
GSK Pennsylvania, United States OTHERPobočka: USA - Pennsylvania - Philadelphia, Durham Blackwell Street, Home Worker - USA, USA - Pennsylvania - Upper Providence · Datum zveřejnění: May · As the Congress Project Manager for the US Medical Vaccines Therapeutic Area (TA), you will be responsible for providing proces ...
Senior Risk - Pennsylvania, United States - Highmark Health
Description
Description
:JOB SUMMARY
***This is a hybrid role and you would be expected to go onsite up to 3 days a week to either our Pittsburgh, PA location or our Buffalo, NY location.
This job works collaboratively to support of all risk and compliance assessment activities of Highmark Health across a broad range of frameworks including NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, etc. The incumbent will partner with the organizational risk and business partners, the technology organization, and global delivery teams to meet Highmark Health's mission requirements in a manner consistent with the enterprise risk appetite. This individual must have a proactive mindset and approach, and feel comfortable working in a highly matrixed environment.
ESSENTIAL RESPONSIBILITIES
EDUCATION
Required
Substitution s
Preferred
EXPERIENCE
Required
To Include:
Preferred
LICENSES or CERTIFICATIONS
Required
Preferred (any of the following)
SKILLS
Language (Other than English):
None
Travel Requirement:
0% - 25%
PHYSICAL, MENTAL DEMANDS and WORKING CONDITIONS
Position Type
Office-based
Teaches / trains others regularly
Occasionally
Travel regularly from the office to various work sites or from site-to-site
Rarely
Works primarily out-of-the office selling products/services (sales employees)
Never
Physical work site required
Yes
Lifting: up to 10 pounds
Constantly
Lifting: 10 to 25 pounds
Occasionally
Lifting: 25 to 50 pounds
Rarely
Pay Range Minimum:
$67,500.00Pay Range Maximum:
$124,800.00Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, age, religion, sex, national origin, sexual orientation/gender identity or any other category protected by applicable federal, state or local law. Highmark Health and its affiliates take affirmative action to employ and advance in employment individuals without regard to race, color, age, religion, sex, national origin, sexual orientation/gender identity, protected veteran status or disability.
EEO is The Law
Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled/Sexual Orientation/Gender Identity ()
We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact number below.
For accommodation requests, please contact HR Services Online at
