Manager of IPS Risk Management

Manager of IPS Risk ManagementDo you have the career opportunities as a Manager of IPS Risk Management you want with your current employer? We have an exciting opportunity for you to join HCA Healthcare which is part of the nation's leading provider of healthcare services, HCA Healthcare.HCA Healthcare offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:Comprehensive medical coverage that covers many common services at no cost or for a low copay.Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans.Free counseling services and resources for emotional, physical and financial wellbeing.401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service).Employee Stock Purchase Plan with 10% off HCA Healthcare stock.Family support through fertility and family building benefits.Referral services for child, elder and pet care.Consumer discounts through Abenity and Consumer Discounts.Retirement readiness, rollover assistance services and preferred banking partnerships.Education assistance (tuition, student loan, certification support, dependent scholarships).Colleague recognition program.Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence).Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.Our teams are a committed, caring group of colleagues. Do you want to work as a Manager of IPS Risk Management where your passion for creating positive patient interactions is valued? If you are dedicated to caring for the well-being of others, this could be your next opportunity. We want your knowledge and expertiseJob SummaryThe Manager of IPS Risk Management leads a subset of the Risk, Governance, & Compliance (GRC) team and reports directly to the Director of GRC. Risk Management and Governance plays a critical role in the efforts to develop multi-year strategic roadmaps for key IPS risk areas to make risk visible, facilitate well-informed decision making, and drive accountability. This position requires a candidate who can, with minimal guidance, analyze business requirements and processes, understand colleague behaviors, facilitate and lead meetings with key stakeholders within the organization, provide industry risk management expertise and knowledge in the identification and mitigation of organizational risk, and enable risk based decision making to support business in making cyber risk base decision and adhere to industry standards and federal regulations. The Manager of IPS Risk Management provides guidance, direction, and mentorship to staff members to support the overall team goals and deliverables. A qualified candidate must be a highly motivated self-starter and be committed to delivering quality outcomes that meet team and organizational goals. This individual will have at least two individuals reporting directly to them.Major ResponsibilitiesQuality:Work as part of the Information Protection and Security (IPS) department's leadership team to develop company requirements, strategies, priorities, processes, implementation plans, and assurance necessary to protect the company against information protection and security risks that could impact patients, employees, and the financial success of the business.Develop and lead the strategy to mature cyber risk framework, create program roadmaps where needed, and ensure all work and roadmaps align with business objectives for the key focus areas.Work across the organization to provide consistent risk-based methodology to identify, recommend and prioritize risk reduction efforts.Ensure cyber risk framework, risk register, risk program processes are aligned with industry best practices and are continually maintained as Source of Record within the industry standard platforms.Conduct and support team in the conduct of risk assessments including annual enterprise assessment, program maturity assessment and ad-hoc on request risk assessments to support business decisions across the enterprise leveraging GRC platform capability, ServiceNow.Ensure Information Protection & Security guidance and solutions meet business needs and enterprise strategies.Ensure the team is involving all relevant stakeholders in major decisions; recognizing multiple agendas and making/communicating final decision in ways that foster maximum ownership and minimum resistance.Act as key owner of Governance Risk and Compliance technology, working with technology teams to maintain process, integrity and functionality to support overall cyber risk management program.Service:Lead the development and implementation of cyber risk framework, assessment methodology and roadmaps for the cyber risk management program.Lead the team in providing cyber risk perspective through consulting and collaboration.Lead the team in facilitating and guiding business decisions and solutions through consistent risk assessment process leveraging Governance, Risk and Compliance solutions.Lead team in the continued development of GRC platform to support overall GRC functionality.Provide cyber risk reporting and metrics as part of overall Risk Governance Structure.People:Delegate responsibility and accountability for major work (including setting due dates and identifying key milestones) based on staff competency and interest.Establish mutual objectives and targets for team members.Mentor team members, including developing and monitoring their personal development plans, and provide feedback via the annual performance review process.Promote a culture of collaboration, work/life balance, and open communication.Encourage new ways of thinking and problem solving.Create a team environment where members embrace change and adopt new practices.Stay engaged with team members through 1:1s, rounding, and performance review activities.Growth:Maintain knowledge of legislative, regulatory, contractual, and other compliance requirements as well as departmental policies, standards, and procedures and participate in the revision process.Monitor developments in related industries and communicate on the potential impact on or applicability to the organization.Build rapport, credibility, and cohesion within IPS and with other stakeholders across the enterprise.Participate in educational opportunities to build and maintain team knowledge of evolving privacy and information security concepts.Finance:Responsible for ensuring proposed future work efforts/projects are appropriately captured with labor and spend estimates and submitted for leadership prioritization and funding.Education & Experience:Bachelor's degree Required. Master's degree Preferred. 3+ years of experience in a leadership role Preferred. 7+ years of experience in information technology, information security, privacy, and/or healthcare Required. Or equivalent combination of education and/or experience.Licenses, Certifications, & Training:CISSP Preferred. HCISPP Preferred.HCA Healthcare has been recognized as one of the World's Most Ethical Companies by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.If you are looking for an opportunity that provides satisfaction and personal growth, we encourage you to apply for our Manager of IPS Risk Management opening. We promptly review all applications. Highly qualified candidates will be contacted for interviews.Unlock the possibilities and apply today We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.