Zelis - Plano, TX
posted 25 days ago
Full-time - Mid Level
Remote - Plano, TX
About the position
The IT Risk and Compliance Program Manager will play a crucial role in enhancing Zelis' Risk Strategy and ensuring compliance with various regulatory frameworks. This position involves coordinating activities across teams to streamline internal controls and support IT risk assessment and oversight, focusing on frameworks such as SOX, HITRUST, PCI, SOC 1, and SOC 2.
Responsibilities
- Support the design, strategy, and oversight of IT controls coordinating with IT audit to implement, monitor, and design remediation strategies.
- Design and lead formal IT Risk Assessment strategy aligning to Zelis' control frameworks.
- Mature risk strategy including identification, reporting, and tracking of IT risks.
- Coordinate and communicate risks to Zelis leadership.
- Collaborate with Zelis leadership in developing corrective action plans for information security, financial, and business process risks.
- Lead certification strategy and maturity related to key frameworks including SOX, HITRUST, and PCI.
- Assessment and oversight of control framework changes and upgrades.
- Mature GRC tooling, tracking, and reporting for automation and efficiency.
- Support IT Audit to achieve control automation.
Requirements
- Six (6) + years' experience in Governance, Risk, and Compliance or Cyber Security and/or Risk Management.
- Experience performing Information Security / Technology risk assessments.
- Experience overseeing adherence to policies and remediation efforts.
- Experience overseeing adherence to and architecting secure solutions utilizing policy, control, and industry leading practices.
- Oversight of SOX control implementation and audit management.
- Experience with regulatory requirements such as HIPAA, HITRUST, and PCI.
- BIG 4 experience or experience leading and designing IT controls related to SOX.
Nice-to-haves
- CISA / CISM or related certifications.
- Ability to manage multiple work streams simultaneously.
- Strong verbal and written communications skills.
- Strong relationship management experience and skills.
- Excellent research and analytical skills.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
Benefits
- Hybrid and remote friendly work culture.
- Flexible work locations based on position needs.
- Commitment to diversity, equity, inclusion, and belonging.
