Description
39626-Security & Compliance Project Manager
Pleasanton,CA 94588
Position type: w2
Contact duration: 4 months + (Strong possibility of extension)
The Manager, IRISS is a key position in the Technology Risk Office (TRO) reporting to the Director, IRISS. Healthcare Reform has brought new regulatory requirements and scrutiny to the healthcare industry, especially in the areas of IT Security and HIPAA Security to support the Meaningful Use Incentive program that incents entities to adopt electronic health care records and systems. The position supports the compliance strategy for relevant regulations including HIPAA Security, Payment Card Industry (PCI) Security Standards and Sarbanes-Oxley (SOX). The manager works with a team of professionals, interacts with leadership at all levels and works in partnership with other leaders in IT, TRO, SOX PMO, NCO and other areas.
The Manager, IRISS performs the following:
Lead one or more project initiatives that includes
Project Management
Execution of deliverables
Collaboration and socialization with constituents and stakeholders
Alignment with other project workstreams
Quality assurance and critical review of deliverables
Supports the following efforts
Strategies for integrating HIPAA, SOX, & PCI and other requirements
Risk analysis, risk management, and risk decision making
OCR/regulatory audit response
Requirements and guidance documentation
System Development Life Cycle (SDLC) intake and assessment processes
Control assessments (facilitated & self-based)
Control design and implementation
Stakeholder analysis & engagement
Organizational change management
Communications
Training
Metrics and reporting
Compliance tool & technology roadmap and requirements
Process design & implementation
Minimum number of years of experience required
10 Years
Top 3 - 5 Daily responsibilities
Lead or co-lead one or more HIPAA Security Project Workstreams
Project Manage consulting resources and project deliverables
Provide critical and detailed review of deliverables and suggesting improvements
Top 3 - 5 Required Skills
Public Accounting/Internal Audit/Compliance
HIPAA/HIPAA Security/Meaningful Use
Project Management
Desired skills
Public Accounting
Consulting
Audit/IT Audit
Testing/Design
Industry/Work Experience
Health Care Industry Business and IT Experience
Sarbanes-Oxley (SOX)/Model Audit Rule (MAR)
HIPAA Security Rule
Payment Card Industry (PCI) Security Standards
Information Security
Risk Assessment
Evaluation of Results/Findings
Governance Risk Compliance (GRC) Tools
Strong Technical knowledge:
Technology Layers (Applications, Databases, Operating Systems, Networks, Hardware)
Internal Controls
Soft Skills
Strong written and verbal communications
Strong team member
Able to work in Matrix managed organization
Strong collaborator
Strong communicator
Facilitation
Influence management
People management/coaching/mentoring
Educational Requirement: 4 year college degree (BS/BA) in a relevant field
Prefer CISA, CISM, and PMP.