Resp & Qualifications
Sr. Compliance & Control Analyst (AUDIT)
Job code – SCASR
PURPOSE: The incumbent will be accountable for audit management, governance and security controls strategy development and associated execution activities. This includes facilitating audit activities with the business and internal or external audit; collaborating with cross-functional teams to identify and mitigate program risk; implementing an operating procedural governance structure; and reviewing evolving privacy and security controls at the CareFirst.
PRINCIPAL ACCOUNTABILITIES: Under the direction of the Manager, Audit Compliance the principle duties and responsibilities include, but are not limited to, the following:
SUPERVISORY RESPONSIBILITY: No direct reports
SCOPE DATA: Develop, manage, and maintain risk, security controls, and governance processes and initiatives—conducting related assessments and organizational program enhancements as needed.
Required: This position requires a Bachelor’s degree in Business Administration, Management Sciences, Information Systems, or other relevant area of study, and 3-7 years of audit coordination, privacy and/or security control, risk management and governance experience, OR total related work experience. Must be able to synthesize complex systems and risk information into a format easily and completely understood by a diverse audience. Individual must have working knowledge of privacy and security regulations, audit management, system controls, business operating processes, and healthcare environment. Audit experience is a plus.
ABILITIES/SKILLS: Incumbent must have excellent interpersonal skills but also be able to influence functional managers and decision makers to ensure acceptance of change needs. Must have the ability to communicate throughout all levels of the company. Individual must demonstrate ability to focus on details, creative problem solving, and juggling multiple priorities. Must demonstrate significant comprehension of administrative, physical and technical risk mitigation strategies and ability to identify and assess process controls. Should possess strong analytical and technical writing skills, but be able to communicate and educate using diverse creative outlets. Experience with HIPAA/HITECH, SOC 1, SOC 2, ePHI and/or NIST.
PREFERRED: Master's degree in related field; risk management, security or governance certification; and prior consulting, internal controls, risk and governance strategy execution, and process improvement experience. Certifications such as PMP, CIA, CISM, CISA, ITIL.
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Hire Range Disclaimer
Actual salary will be based on relevant job experience and work history.
Where To Apply
Please visit our website to apply: www.carefirst.com/careers
Please apply before: 6.24.21
Federal Disc/Physical Demand
Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.
The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.
Sponsorship in US
Must be eligible to work in the U.S. without Sponsorship
Not finding the right job?
Stay informed about future openings by joining one of our Talent Networks!