Risk and Compliance Program Manager

Posted:
9/5/2024, 10:15:22 AM

Location(s):
Boston, Massachusetts, United States ⋅ Florida, United States ⋅ Georgia, United States ⋅ Morristown, New Jersey, United States ⋅ New Jersey, United States ⋅ Missouri, United States ⋅ Saint Petersburg, Florida, United States ⋅ Texas, United States ⋅ Massachusetts, United States ⋅ Plano, Texas, United States ⋅ Atlanta, Georgia, United States

Experience Level(s):
Senior

Field(s):
IT & Security ⋅ Legal & Compliance ⋅ Product

Workplace Type:
Hybrid

The Risk and Compliance Program Manager will be responsible for assisting in the growth of our Risk Strategy and focused on supporting Zelis’ compliance and certifications. The individual in this position will coordinate activities across individuals and teams from around the organization to develop and maintain internal controls strategy against SOX, HITRUST, PCI, NIST, SOC 1, and SOC 2. The individual will support IT risk assessment and IT risk oversight across the organization. This includes strategy on controls consolidation, risk assessment and controls evaluation, risk reporting and maturity strategy for the program.  

Location and Workplace Flexibility: We have offices in Atlanta GA, Boston MA, Morristown NJ, Plano TX, St. Louis MO, St. Petersburg FL, and Hyderabad, India. We foster a hybrid and remote friendly culture and all of our employee's work locations are based on the needs of the position and determined by the Leadership team. In-office work and activities, if applicable, vary based on the work and team objectives in accordance with Company policies.

Key Responsibilities:

  • Design, strategy, and oversight of IT controls coordinating with IT audit to implement and monitor

  • Design and lead formal IT Risk Assessment strategy aligning to Zelis’ control frameworks

  • Mature risk strategy including identification, reporting, and tracking of IT risks

  • Coordinate and lead certification strategy and maturity related to key frameworks including HITRUST, PCI, and SOX

  • Assessment and oversight of control framework changes and upgrades

  • Maturity of GRC tooling, tracking, and reporting for automation and efficiency

  • Support IT Audit to achieve control automation

  • Collaborates with Zelis leadership in developing corrective action plans for information security, financial, and business process risks

Required Experience:

  • Six (6) + years’ experience in Governance, Risk, and Compliance or Cyber Security and/or Risk Management

  • Experience performing Information Security / Technology risk assessments

  • Experience overseeing adherence to policies and remediation efforts

  • Experience overseeing adherence to and architecting secure solutions utilizing policy, control, and industry leading practices

  • Experience with regulatory requirements such as HIPAA, HITRUST, PCI, SOX, SOC 1, or  SOC 2

Preferred Experience:

  • BIG 4 experience or experience leading and designing IT controls related to SOX

  • CISA / CISM or related certifications

  • Ability to manage multiple work streams simultaneously

  • Strong verbal and written communications skills

  • Strong relationship management experience and skills

  • Excellent research and analytical skills

  • Ability to effectively prioritize and execute tasks in a high-pressure environment

Zelis is modernizing the healthcare financial experience by providing a connected platform that bridges the gaps and aligns interests across payers, providers, and healthcare consumers. This platform serves more than 750 payers, including the top 5 national health plans, BCBS insurers, regional health plans, TPAs and self-insured employers, and millions of healthcare providers and consumers. Zelis sees across the system to identify, optimize, and solve problems holistically with technology built by healthcare experts – driving real, measurable results for clients.

Commitment to Diversity, Equity, Inclusion, and Belonging 
At Zelis, we champion diversity, equity, inclusion, and belonging in all aspects of our operations. We embrace the power of diversity and create an environment where people can bring their authentic and best selves to work. We know that a sense of belonging is key not only to your success at Zelis, but also to your ability to bring your best each day.

Equal Employment Opportunity  
Zelis is proud to be an equal opportunity employer. All applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. 

We encourage members of traditionally underrepresented communities to apply, even if you do not believe you 100% fit the qualifications of the position, including women, LGBTQIA people, people of color, and people with disabilities.  

Accessibility Support 

We are dedicated to ensuring our application process is accessible to all candidates. If you are a qualified individual with a disability or a disabled veteran and require a reasonable accommodation with any part of the application and/or interview process, please email [email protected]   

SCAM ALERT: There is an active nationwide employment scam which is now using Zelis to garner personal information or financial scams. This site is secure, and any applications made here are with our legitimate partner. If you’re contacted by a Zelis Recruiter, please ensure whomever is contacting you truly represents Zelis Healthcare. We will never asked for the exchange of any money or credit card details during the recruitment process. Please be aware of any suspicious email activity from people who could be pretending to be recruiters or senior professionals at Zelis.