Upvote
Downvote
Senior Risk & Compliance Analyst
Share Job
- Suggest Revision
Full-time
- Description : JOB SUMMARYThis job works collaboratively to support of all risk and compliance assessment activities of Highmark Health across a broad range of frameworks including NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, etc.
- The incumbent will partner with the organizational risk and business partners, the technology organization, and global delivery teams to meet Highmark Health’s mission requirements in a manner consistent with the enterprise risk appetite.
- ESSENTIAL RESPONSIBILITIESPlan and conduct risk assessment activities according to the appropriate framework, including but not limited to NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, in order to identify, assess, prioritize, evaluate and address financial, information security, privacy, and other areas of risk.
- Review and interpret inherent risk assessment results, engagement risks, and developassurance plans (e.g., on-site audit, contract review, financials assessment, purchasing data analysis) to address relevant risk areas and to ensure proper controls are implemented.
- Accountable for the review and interpretation of authoritative guidance (including, but not limited to NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO reports) and performs qualitative and quantitative impact assessments based on physical, technical, and administrative safeguards as well as contractual requirements; conducts additional information gathering and risk assessments as-needed; documents and reports results.
Active Job
Updated TodaySimilar Job
Relevance
Active