Information Security Risk and Governance Specialist, Consultant

Your Role:

The IT Risk Assurance team drives Blue Shield’s information security program for technology risk identification, risk consequence management and third-party risk management with the goal of safeguarding and maintaining confidentially, integrity and availability of information. The Information Security Risk & Governance Specialist, Consultant will report to the Senior Manager, Information Security. In this role you will be a key individual contributor to the Information Security team and Blue Shield’s overall strategy and goals by providing consistent, coordinated security risk governance and reporting in a partnership with leaders, stakeholders, and the business.

Your Work:

In this role, you will:

• Implement agile methodologies to coordinate meetings, calendars and track on committee deliverables to align with strategic goals established by IT Security leadership
• Develop and implement vulnerability and governance management program, including metrics that will help BSC understand its inherent and residual risk exposure
• Assess governance and risk management tools, techniques, and procedures to enhance risk management capabilities throughout the company
• Be responsible for third-party security risk activities ensuring Blue Shield’s data is stored, transmitted, and processed in a secure manner
• Partner with cross functional operational business partners to operationalize and socialize the risk management framework and program and to identify shifts in the organization's implicit risk appetite.
• Lead and support the development of reporting processes to communicate progress of in-flight initiatives, risks and planned initiatives to senior executives and stakeholders in other business units. Participate in technology risk governance activities (e.g., committees, presentation preparations, training and awareness, etc.)

Your Knowledge and Experience:

• Requires a bachelor's degree or equivalent experience
• Requires at least 7 years of prior relevant experience
• Previous experience working in the healthcare, pharmaceutical, biotechnology or related services industry
• Proven experience as an Information security governance, compliance and/or risk expert and knowledge of various information security governance and control frameworks such as NIST, HITRUST and PCI-DSS, HIPAA, SOC experience is required
• Requires business acumen, strategic thinking, financial analytical skills, and decision-making skills
• Excellent communication and presentation skills at every level including executives is required
Professional security certification desired (e.g., CISSP, CEH, Security , GSEC, CISM, CRISC, etc.)

Pay Range:

The pay range for this role is: $ 119130.00 to $ 178860.00 for California.

Notes:

Please note that this range represents the pay range for this and many other positions at Blue Shield that fall into this pay grade. Blue Shield salaries are based on a variety of factors, including the candidate's experience, location (California, Bay area, or outside California), and current employee salaries for similar roles.

#LI-FB1

ABOUT THE TEAM
Blue Shield of California’s mission is to ensure all Californians have access to high-quality health care at a sustainably affordable price. We are transforming health care in a way that genuinely serves our nonprofit mission by lowering costs, improving quality, and enhancing the member and physician experience.

To fulfill our mission, we must ensure a diverse, equitable, and inclusive environment where all employees can be their authentic selves and fully contribute to meet the needs of the multifaceted communities we serve. Our continued commitment to diversity, equity, and inclusion upholds our values and advances our goal of creating a healthcare system that is worthy of our family and friends while addressing health disparities, promoting social justice, and integrating health equity through our products, business practices, and presence as a corporate citizen.

Blue Shield has received awards and recognition for being a certified Fortune 100 Best Companies to Work, Military Friendly Employer, People Companies that Care, a Leading Disability Employer, and one of California’s top companies in volunteering and giving. Here at Blue Shield, we strive to make a positive change across our industry and communities – join us!

Our Values:

• Honest . We hold ourselves to the highest ethical and integrity standards. We build trust by doing what we say we're going to do and by acknowledging and correcting where we fall short.
• Human . We strive to be our authentic selves, listening and communicating effectively, and showing empathy towards others by walking in their shoes.
• Courageous . We stand up for what we believe in and are committed to the hard work necessary to achieve our ambitious goals.

Physical Requirements:

Office Environment - roles involving part to full time schedule in Office Environment. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.

Equal Employment Opportunity:

External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, State and local laws.