Senior Enterprise Risk Manager – Carescout Services – IT – IT Security and Third Party

Senior Enterprise Risk Manager – Carescout Services – IT – IT Security and Third Party

Requirements

• Bachelor’s degree in information technology, business or related fields or equivalent demonstrated experience
• 10+ years business or risk experience, including broad management roles
• 6+ years’ experience with risk management, preferably in the areas of home health, assisted living, health care and / or technology
• Experience with an information technology risk management framework such as: ISO 2700x, NIST SP 800-53, or COBIT
• Current risk or security certification such as: CRISC, CISSP, CISA or GIAC
• Strong communications skills, with the ability to challenge risk & business professionals as well as the ability to convey risk exposure and requirements to business leadership
• Knowledge of regulatory and compliance requirements including: HIPAA and HITECH, Sarbanes Oxley, GLBA, and PCI
• Ability to work effectively in a team environment that presents a high degree of subjectivity and change

Responsibilities

• Support execution of the enterprise-wide risk assessment framework as it pertains to Risks, Controls and overall Governance activities
• Ensure appropriate inventories of risks and controls are maintained
• Review and discuss the outputs of these inventories on a regular basis to ensure consistency and understanding of aggregated risk to the individual business units and the enterprise
• Proactively understand, assess and document key risks and controls across technology and information security domains
• Integrate appropriate regulatory requirements into the risk assessment and reporting processes. Support regulatory control monitoring and oversight as required.
• Ensure regular governance activities are conducted in accordance with Genworth policies and procedures
• Provide risk oversight to various teams within the organization to ensure the strategic vision of the firm, as well as all attendant policies and procedures, are adhered to in a consistent fashion across the enterprise
• Work proactively with the businesses in the management of risk to help run the businesses more efficiently and to assure best market practices are employed by Genworth
• Maintain the framework to review and assess risks with quantifications implemented in a consistent fashion enterprise wide
• Develop and maintain risk reporting, dashboards, heat maps to be utilized with the Board, senior management, the businesses and various external constituents
• Monitor and report risk exposure in the business lines and provide guidance to senior management on risk triggers, limits and actions.
• Work with the leadership to review and improve policies, best practices and governance
• Acts as an independent review and evaluation body to ensure that risk management issues/concerns are being appropriately evaluated, investigated and resolved through test of controls and risk assessment framework
• Partner with all assurance partners as it relates to relevant organizational risks

Preferred Qualifications

• Strong business acumen with strategic business mindset
• Skilled networker who actively seeks to identify new business opportunities and builds relationships
• Superior customer service skills demonstrating diplomacy, clarity and influence
• Experience as an auditor or risk assessor as a primary responsibility
• Experience conducting information security, business impact assessments
• Experience with various industry frameworks
• Experience with Quantitative Risk Analysis
• Strong communication skills and ability to build and maintain positive relationships
• Proven leadership and management skills
• Excellent influencing and negotiation skills across diverse business and work cultures