Manager, Information Security Risk and Consulting (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Manager, Information Security Risk and Consulting (Cybersecurity): Executing and maturing the organization’s third-party and integrated risk management program with an accent on risk assessments, GRC automation, and regulatory compliance. Focus on building a high-performing security risk team, developing KRIs/KPIs, and translating technical security findings into business risk narratives for executive leadership.
Location: Remote (US) / Livonia, Michigan
Company
is a large healthcare organization committed to providing compassionate, person-centered care.
What you will do
- Lead the Third Party Risk and Integrated Risk Management Program, defining goals and deliverables aligned with enterprise priorities.
- Manage and develop a team of security risk professionals, providing coaching, mentorship, and performance management.
- Oversee risk assessments for COTS, open source, and internal applications using GRC platforms to ensure control implementation.
- Define and maintain the cyber risk lifecycle, including intake, inherent risk scoring, due diligence, and offboarding.
- Translate complex technical findings into business risk language to support informed decision-making by senior leaders.
- Coordinate regulatory audits and investigations, ensuring the production of necessary evidence for compliance.
Requirements
- Bachelor’s degree in Information Security or equivalent combination of education and experience.
- Security certifications such as CISSP, CISA, CISM, or CRISC.
- 7+ years of experience in information services, including 3+ years specifically in cybersecurity GRC.
- 3+ years of management experience with a proven ability to lead and retain high-performing teams.
- 3+ years of experience in healthcare or other highly regulated industries.
- Strong knowledge of HIPAA Security Rule and frameworks such as ISO 27001, HITRUST, or NIST.
Nice to have
- Master's degree in Cybersecurity or a related field.
- Certifications in project management or change management.
- Experience with risk quantification models like FAIR.
- Proficiency in data visualization tools such as Tableau or Power BI for risk dashboards.
- Experience utilizing AI to automate business processes and strengthen risk assessment capabilities.
Culture & Benefits
- Mission-driven environment rooted in core values of dignity and compassionate care.
- Inclusive leadership culture that promotes psychological safety and open communication.
- Commitment to diversity and equal opportunity employment.
- Structured leadership development framework for employee advancement.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →