Cybersecurity & Technology Compliance Principal

Job Summary:

This individual contributor position is accountable for multiple large-scale ITRM service delivery and engagements, including managing resources and financials. These engagements include compliance assessments and consulting projects that span multiple businesses, as well as driving and overseeing the design and implementation of appropriate controls. This role is also responsible for the direction of performance metrics and reporting tools, including the identification of new methods for compiling and correlating data. This position is expected to work collaboratively with leadership to develop the overall ITRM strategy and define goals, objectives, deliverables, and guardrails within the governance framework to ensure the development and implementation of efficient, effective, measurable, and sustainable ITRM processes and controls.

Essential Responsibilities:

• Drives the execution of multiple work streams by identifying customer and operational needs; developing and updating new procedures and policies; gaining cross-functional support for objectives and priorities; translating business strategy into actionable business requirements; obtaining and distributing resources; setting standards and measuring progress; removing obstacles that impact performance; guiding performance and developing contingency plans accordingly; solving highly complex issues; and influencing the completion of project tasks by others.

• Practices self-leadership and promotes learning in others by soliciting and acting on performance feedback; building collaborative, cross-functional relationships; communicating information and providing advice to drive projects forward; adapting to competing demands and new responsibilities; providing feedback to others, including upward feedback to leadership; influencing, mentoring, and coaching team members; fostering open dialogue amongst team members; evaluating and responding to the strengths and weaknesses of self and unit members; and adapting to and learning from change, difficulties, and feedback.

• Drives ITRM processes and/or methodology for designated ITRM initiatives by leading or directing team members in the documentation of process and/or service requirements and acceptance criteria from process owners and key stakeholders; working collaboratively with leadership to develop the ITRM strategy; defining goals, objectives, deliverables, and guardrails within the governance framework to ensure the development and implementation of efficient, effective, measurable, and sustainable ITRM processes and controls; and driving the direction of performance metrics and reporting tools, suggesting process improvements for gathering metrics and identifying new methods for compiling and correlating data sets within the organization.

• Executes and plans large complex ITRM compliance assessments and consulting projects spanning multiple business units and operational areas by leading intake, planning and coordination activities for new or revisions to technology systems or services; and driving and overseeing the design and implementation of appropriate controls through the sustainment phase.

• Leads multiple large-scale ITRM service delivery and engagements with full responsibility and accountability for outcomes by overseeing multiple workstreams, including stakeholder communications and team mentorship; managing and monitoring financials; allocating resources; establishing schedules; and making task assignments.

Minimum Qualifications:

• Minimum five (5) years in an informal leadership role working with business or technical teams.

• Bachelors Degree in MIS, Information Security, Accounting, Finance, Audit, or related field and Minimum ten (10) years experience in IT risk management, compliance, auditing, or information security, including Minimum two (2) years developing IT compliance frameworks or ITRM methodologies. Additional equivalent work experience in a directly related field may be substituted for the degree requirement.

Additional Requirements:

PrimaryLocation : Colorado,Greenwood Village,Greenwood Plaza IT

HoursPerWeek : 40

Shift : Day

Workdays : Mon, Tue, Wed, Thu, Fri

WorkingHoursStart : 08:00 AM

WorkingHoursEnd : 05:00 PM

Job Schedule : Full-time

Job Type : Standard

Employee Status : Regular

Employee Group/Union Affiliation : NUE-PO-01|NUE|Non Union Employee

Job Level : Individual Contributor

Job Category : Information Technology

Department : Po/Ho Corp - Compl Privacy and Security - 0308

Travel : No

Kaiser Permanente is an equal opportunity employer committed to fair, respectful, and inclusive workplaces. Applicants will be considered for employment without regard to race, religion, sex, age, national origin, disability, veteran status, or any other protected characteristic or status.

Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.