Skip to content
Senior Manager – HITRUST and International Compliance
| Company | CVS Health |
|---|
| Location | San Antonio, TX, USA |
|---|
| Salary | $118450 – $236900 |
|---|
| Type | Full-Time |
|---|
| Degrees | |
|---|
| Experience Level | Senior |
|---|
Requirements
- 7+ years of regulatory compliance, internal audit, external assessments, risk management, regulatory compliance, and information security in a corporate environment.
- 5+ years of experience in audit methodologies, internal control frameworks, risks assessments, and control testing techniques.
- 3+ years of experience in managing work efforts with both internal and external partners in a highly collaborative environment.
Responsibilities
- Managing and executing procedures to facilitate and support various cybersecurity HiTrust and International audits and compliance activities. Establishes schedules and plans to ensure deadlines are being met. Develops efficient processes to facilitate and support regulatory, internal audit and industry standard assessments and audits.
- Provides coaching, feedback, and educates stakeholders and colleagues relative to HiTrust and International compliance requirements and industry best practices.
- Defines or develops risk management policies and procedures to support the implementation of HiTrust and International technology controls across the enterprise.
- Oversees preparation and submission of HiTrust and International compliance reports to management, Audit Services, external auditors/assessors, and regulators.
- Oversees audits and assessments to measure the effectiveness of security controls and provides results back to responsible party/owner.
- Educates key stakeholders on risk management frameworks and top risks related to the system(s) or Line of Business for HiTrust and International Compliance.
Preferred Qualifications
- Demonstrated expertise in audit methodologies, internal control frameworks, risks assessments, and control testing techniques.
- Solid program management skills including strategic planning, decision-making, and project management.
- Strong understanding of relevant regulations and frameworks aligning to NIST, ISO, HITRUST, HIPPA, PCI.
- Strong analytical and problem-solving skills with the ability to analyze and interpret complex regulations, operational data, trends, assess risks effectively, and make recommendations for improvement.
- Exceptional interpersonal skills with the ability to collaborate across departments and influence stakeholders at all levels.
- Demonstrated ability to collaborate effectively with cross-functional teams, build relationships with key stakeholders, and influence others to achieve compliance objectives.
- Strong attention to detail and accuracy when conducting assessments, documenting processes, and reviewing controls to ensure compliance with HiTrust assessment and International compliance (GDPR/ISO) requirements.
- CRISC, CISSP, CISM, or equivalent.
