Location: Myrtle Point,OR, USA
Discover. Achieve. Succeed. #BeHere
Location: US:WI:MENOMONEE FALLS at our WOODLAND PRIME 400 facility.
This job is REMOTE.
FTE: 1.000000
Shift: 1st flexible 7 am to 5 pm
Job Summary:
Froedtert Health, a leader in healthcare excellence, is looking for a seasoned Governance, Risk, and Compliance (GRC) Analyst to fortify our Information Security team. This role is instrumental in shaping, executing, and refining our GRC framework to assure compliance, operational integrity, risk containment, and the strengthening of our overall security apparatus. The incumbent will bridge gaps with internal and external stakeholders to bolster Froedtert Health's cybersecurity stance, syncing GRC undertakings with corporate aims, and orchestrating cybersecurity risks with adeptness.
Policy Development & Enforcement: Spearhead the development, review, updating, and enforcement of cutting-edge information security policies, standards, and protocols, aligning with Froedtert Health's stringent security demands and business needs.
Third-Party Risk Management: Assist in enhancing third-party risk management activities through refined assessment methodologies, process innovation, and comprehensive vendor risk analysis.
Security Framework Expansion: Bolster and enrich our security controls framework to assure robust risk management practices are consistently observed and advanced.
Risk Assessment Activity: Perform risk assessment initiatives, identifying, analyzing, and mitigating risks that could impact the organization, while advocating a culture of proactive risk management.
Cross-Functional Collaboration: Collaborate with internal audit, legal, and compliance teams to navigate and address audit outcomes, legal requirements, and compliance obligations, fostering an environment of seamless regulatory adherence.
Information Security Stewardship: Offer unparalleled guidance on information security concerns to management and business stakeholders, highlighting the importance of regulatory compliance and risk governance.
GRC Tools: Assist with the enhancement and efficient use of Governance, Risk & Compliance (GRC) tools, particularly ServiceNow IRM, standardizing our risk management capabilities.
Risk Model Enhancement: Innovate and implement strategies to refine objective, data-driven risk models, elevating our approach to risk assessment and management.
Reporting & Documentation: Craft detailed reports and presentations, contributing to the continuous advancement of the IT Security Risk Registry, and accurately document risk and compliance activities for transparent governance.
EXPERIENCE DESCRIPTION:
1- 3 years of experience in a related field.
3 or more years of experience in a related field preferred.
EDUCATION DESCRIPTION:
BA in Computer Science or related field is required, or equivalent acquired through combination of education and experience.
SPECIAL SKILLS DESCRIPTION:
Understanding of cybersecurity frameworks including but not limited to NIST CF, HITRUST CSF, ISO 27001.
Understanding of general security concepts including but not limited to cryptography, DLP, Security Operations Center, Security Managed Services, SEM, FW, Audit, Cloud Security, Mobile Security.
Cybersecurity Expertise: Prefer strong understanding of cybersecurity frameworks and regulatory mandates including NIST SP800-53, NIST CSF, HIPAA, PCI-DSS, and ISO 27001.
Risk Management Proficiency: Proven experience in leading risk assessment and remediation activities, with a strong familiarity with security auditing and risk assessment processes.
Documentation Skills: Adept at documenting risk and compliance activities clearly and concisely.
Communication: Exceptional written and verbal communication abilities, facilitating effective dialogue across all levels of the organization.
Autonomy: Capability to work independently, managing time and tasks efficiently with minimal oversight.
Certifications :Prefer candidates with certifications such as CISA, CRISC, CGEIT, CRMA, CISSP.
Technical Knowledge: Understand embedded OS design and implementation, familiar with ServiceNow IRM & VRM or similar GRC applications.
Perks & Benefits at Froedtert Health
Froedtert Health Offers a variety of perks & benefits to staff, depending on your role you may be eligible for the following:
* Paid time off
* Growth opportunity- Career Pathways & Career Tuition Assistance, CEU opportunities
* Academic Partnership with the Medical College of Wisconsin
* Referral bonuses
* Retirement plan - 403b
* Medical, Dental, Vision, Life Insurance, Short & Long Term Disability, Free Workplace Clinics
* Employee Assistance Programs, Adoption Assistance, Healthy Contributions, Care@Work, Moving Assistance, Discounts on gym memberships, travel and other work life benefits available
The Froedtert & the Medical College of Wisconsin regional health network is a partnership between Froedtert Health and the Medical College of Wisconsin supporting a shared mission of patient care, innovation, medical research and education. Our health network operates eastern Wisconsin's only academic medical center and adult Level I Trauma center engaged in thousands of clinical trials and studies. The Froedtert & MCW health network, which includes ten hospitals, nearly 2,000 physicians and more than 45 health centers and clinics draw patients from throughout the Midwest and the nation.
We are proud to be an Equal Opportunity Employer who values and maintains an environment that attracts, recruits, engages and retains a diverse workforce. We welcome protected veterans to share their priority consideration status with us at 262-###-####. We maintain a drug-free workplace and perform pre-employment substance abuse testing. During your application and interview process, if you have a need that requires an accommodation, please contact us at 262-###-####. We will attempt to fulfill all reasonable accommodation requests.