Description
At HCSC, our employees are the cornerstone of our business and the foundation to our success. We empower employees with curated development plans that foster growth and promote rewarding, fulfilling careers.
Join HCSC and be part of a purpose-driven company that will invest in your professional development.
This position is responsible for leading Information Security contract negotiations and executing activities in support of the IT/IS governance, risk, and compliance (GRC) program. This pivotal role involves reviewing contractual terms, ensuring alignment with both company policies and customer requirements, leading negotiations with internal stakeholders and external partners, and actively contribute to enhancing the GRC program. This role is also responsible for analyzing, tracking, and acting on supplier contract risk exceptions, including coordinating documentation collection and responses from appropriate subject matter experts, as well as obtaining approvals from senior management as appropriate. The Consultant will leverage their expertise in Information Security frameworks, internal policies, and industry regulations to drive strategic initiatives and provide guidance on complex GRC matters. This position offers a unique opportunity to serve as a project lead and mentor junior GRC team members.This hybrid role is located in CHICAGO IL ~ relocation will not be offered; sponsorship is not available.
Required Job Qualifications:
* Bachelor Degree and 4 years of IT / IS work experience with a broad range of exposure to contract negotiations or 8 years of IT / IS work experience with a broad range of exposure to contract negotiations.
* Understand IT / IS concepts and how to articulate those in terms of risk. Interprets internal or external business issues and concepts and can translate those into IT concepts to be addressed via policy.
* Understand key IT / IS laws and regulations, such as the Health Insurance Portability and Accountability Act, as well as governance and compliance frameworks (e.g., NIST, COBIT, ITIL, HITRUST).
* Experience with audit and compliance controls. This could include previous IT auditing experience and / or technical controls implementation, as well as the ability to respond appropriately to audit and assessment findings.
* Initiate and invoke creativity to solve complex problems; takes an “outside –in “perspective to identify innovative solutions
* Collaborate well with individuals across the business and IT, as well as at all levels of the organization.
Verbal and written communication skills, including the ability to articulate complex concepts to various technical and non-technical audiences.
* Experience with and understanding of overall GRC concepts.
* Work independently, with guidance in only the most complex situations.
* May lead functional teams or projects.
Preferred Job Qualifications:
* Bachelor Degree in Computer Science, Information Systems, or other related field.
*Relevant Information Security Certifications such as: CISSP, CISA, or CRISC* Experience with a GRC solution.
HCSC Employment Statement:
We are an Equal Opportunity Employment / Affirmative Action employer dedicated to providing an inclusive workplace where the unique differences of our employees are welcomed, respected, and valued. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other legally protected characteristics.
Apply on company website
Find Connections via Linkedin
