|

Get new similar jobs by email for

Senior Risk Manager, Security ...

Monster
 
 
 
 

Job Summary

Company
Anthem
Location
Chicago, IL
Industries
Other/Not Classified
Job Type
Full Time
Employee
Career Level
Experienced (Non-Manager)
Job Reference Code
4298_138596

Senior Risk Manager, Security Governance

About the Job

Description

Senior Risk Manager, Security Governance

Our mission: to reinvent healthcare in America to make it safer, cost effective and more appropriate. To make this possible, we need talented people like you to help us support innovation and 'speed-to-market' in our solutions and allow no barriers from technology. Working while having fun, you will grow and use your talents in ways you never thought possible.

We are AIM Specialty Health (AIM), a proud member of the Anthem family of companies, and we are looking for technology professionals who are looking to grow their talent and career while helping make a real difference in people's lives.

AIM's Security Governance team is responsible for ensuring AIM's security program complies with the legislative, regulatory, contractual and organizational requirements directly applicable to its role as a Business Associate in the healthcare industry. We are looking for a Senior Risk Manager to help assess and remediate risks to AIM's technical and operational environments. In addition, provide guidance to AIM's technical teams in terms of program scope, external requirements, corrective action plans, and assessment/audit findings. This role will also participate significantly with AIM's security certification efforts including ISO 27001:2013, HITRUST CSF, SOC 2, etc. This position reports directly to AIM's VP, Security Governance and will have considerable input to AIM's risk management program.

Responsibilities:

  • Leads AIM's security risk management program, including risk assessment, analysis and treatment components.

  • Formally documents and maintains AIM's risk strategy, risk assessment process and annual risk treatment efforts.

  • Provides guidance and support to business and technology associates in risk assessments and implementation of appropriate information security procedures, standards and technologies.

  • Maintains enterprise information security policies and both technical and operational standards.

  • Provides guidance on other elements of a security program necessary to support information security in compliance with established company policies, regulatory requirements and generally accepted information security controls.

  • Recommends enhancements and updates to security, IT and/or business strategy.

  • Ensures security solutions involving the use of technologies are well-conceived, designed and implemented in compliance with enterprise standards.

  • Provides trouble resolution and serves as point of technical escalation on complex problems.

  • May assist in the investigation and reporting of data security events and incidents.

  • Provides formal status and reporting metrics for AIM's IT Leadership and Senior Management Groups and external entities.

  • Resolves conflict and escalates issues when appropriate.

Qualified candidates will have:

  • Bachelor's Degree strongly preferred.

  • Five to eight years of experience in IT/security risk assessment, audit, governance or compliance; or any combination of education and experience, which would provide an equivalent background.

  • Proficient understanding of - and experience with - audit and regulatory requirements and standards (ISO 27001, HITRUST CSF, SOC 2 ) and other related standards and certification processes required.

  • Security, risk or audit related certifications such as CRISC, CISM, CISA, CISSP strongly desired.

  • Must be able to work in a fast-paced environment and comfortable working across multiple teams and business units.

  • Strong written and verbal communication skills required.

  • Excellent time management skills, including the ability to multitask across several large initiatives or projects.

  • Able to communicate complex technical concepts effectively and concisely with all levels in a clear and professional manner, verbally and written.

  • Healthcare experience a plus

About AIM Specialty Health

AIM Specialty Health is a leading specialty benefit management company with more than 20 years of experience and a growing presence in the management of radiology, cardiology, oncology, sleep medicine, and specialty pharmacy benefits. Our mission is to make healthcare services more clinically appropriate, safe and more affordable. As such, we promote the most appropriate use of specialty care services through the application of widely accepted clinical guidelines delivered via an innovative platform of technologies and services. With over 32 million members covered across 50 states, AIM ensures delivery of the right test at the right time in the right place.

We maintain offices in Chicago, Deerfield, Schaumburg and Westchester, IL as well as Glendale, CA.

AIM's services include:

  • Prospective clinical review of outpatient advanced imaging procedures such as CT, MRI, Nuclear Cardiology and PET Scans

  • Clinical review for cardiology and specialty pharmacology products and services

  • Oncology Management programs leveraging AIM's proven specialty benefit platform to drive consistent and effective cancer care through services review along with management of close to 70 oncologic drugs

  • Specialty Drug programs to provide review for over 142 specialty drugs offering providers an automated drug review process through our provider friendly web portal

  • Sleep Management, designed to align the diagnosis and treatment of sleep apnea against clinical guidelines, enhance member access to high value providers and ensure treatment compliance for the dispensing of supplies

Our programs combine clinical excellence, its innovative technology and a commitment to customer service, ensuring the company's on-going leadership in the rapidly evolving healthcare environment.

AIM is certified by the National Committee for Quality Assurance (NCQA) and has received Full Accreditation for Health Utilization Management from the Utilization Review Accreditation Commission (URAC).

EOE.M/F/Disability/Veteran

Qualifications

Qualified candidates will have:

  • Bachelor's Degree strongly preferred.

  • Five to eight years of experience in IT/security risk assessment, audit, governance or compliance; or any combination of education and experience, which would provide an equivalent background.

  • Proficient understanding of - and experience with - audit and regulatory requirements and standards (ISO 27001, HITRUST CSF, SOC 2 ) and other related standards and certification processes required.

  • Security, risk or audit related certifications such as CRISC, CISM, CISA, CISSP strongly desired.

  • Must be able to work in a fast-paced environment and comfortable working across multiple teams and business units.

  • Strong written and verbal communication skills required.

  • Excellent time management skills, including the ability to multitask across several large initiatives or projects.

  • Able to communicate complex technical concepts effectively and concisely with all levels in a clear and professional manner, verbally and written.

  • Healthcare experience a plus

 

Job Tools