US
0 suggestions are available, use up and down arrow to navigate them
You’re being taken to an external site to apply.
Enter your email below to receive job recommendations for similar positions.
IT/IS GRC Consultant (Contract Negotiations)
HCSC
Richardson, TX (Onsite)
Full-Time
At HCSC, we consider our employees the cornerstone of our business and the foundation to our success. We enable employees to craft their career with curated development plans that set their learning path to a rewarding and fulfilling career.
Come join us and be part of a purpose driven company who is invested in your future!
Job Summary
This position is responsible for the planning, design, enforcement and audit of information technology and information security policies, standards and procedures which safeguard the integrity of and access to enterprise systems, files and data elements; analyzing, tracking and acting on information technology or information security policy exceptions, audits and assessments. Maintaining knowledge of changing technologies, and provides recommendations for adaptation of new technologies, processes or policies. Recognizing and identifying potential areas where existing information technology or information security policies, standards and procedures require change, or where new ones need to be developed, especially as a result of future business expansion and technology advances; providing management with analysis via risk assessments and briefings / reports to advise them of critical information technology / information security issues that may affect the company's business objective and / or compliance; collaborating with and feeds it risk information into the enterprise risk management program. Evaluates and recommends information technology and information security products, services and/or processes to reduce risk and maintain compliance with applicable policies, mandates, laws and regulations. Implementing the activities associated with the information technology and information security awareness programs and provides education and training on information technology and information security security policies, standards and practices; performing control assessments and working with appropriate subject matter experts (SMEs) to document remediation plans; serving as a project lead and mentor to junior GRC team members. May lead functional teams or projects.
Required Job Qualifications:
* Bachelor Degree and 4 years of IT / IS work experience with a broad range of exposure to systems analysis, application development, database design and administration or 8 years of IT / IS work experience with a broad range of exposure to systems analysis, application development, database design and administration.
* Stakeholder relationship management.
* Knowledge of emerging technologies.
* Knowledge of information security principles.
* Understanding of business's strategic needs and IT/IS capabilities.
* Knowledge of required technologies (including 3rd party solutions).
* Strong oral and written communications.
* Problem solving, analytical skills, tools, and techniques.
* Navigating organizational politics.
* Ability to influence.
* Interpersonal skills.
* Ability to execute.
* Adaptability / ability to manage change.
* Conflict management.
Preferred Job Qualifications:
* Bachelor Degree in Computer Science, Information Systems, or other related field.
* Experience with a GRC solution.
Engaging and establishing relationships with HCSC senior management, third parties, partners, customers, and business owners.
Review and negotiate information security language in supplier and/or customer contracts.
Review and negotiate information security language in supplier and/or customer contracts.
Represent Security in the Privacy, Legal, Audit, and Security (PALS) meetings to assess third party risk.
Investigate and evaluate the effectiveness of security controls protecting HCSC data in contracts.
Identify and communicate information security risks and impact to HCSC stakeholders.
Provide advisory services for protecting HCSC information during third party contract discussions.
Ensure the set of minimum-security requirements for third party protection of HCSC's data are clearly communicated in customer contracts by HCSC Procurement and Support Services. (e.g., Cyber Security Framework certifications)
Review and respond to RFPs to negotiate HCSC driven requirements in contacts.
Ensure that third parties entrusted with data have implemented and continue to operate controls that are effective in protecting data and meet HCSC's acceptable risks tolerances.
Review and respond to customer (group, government, and retail) contracts and inquiries to verify HCSC can adhere to the terms outlined in the contract.
We encourage people of all backgrounds and experiences to apply. Even if you don't think you are a perfect fit, apply anyway - you might have qualifications we haven't even thought of yet.
#LI-HYBRID
#LI-NV1
Are you being referred to one of our roles? If so, ask your connection at HCSC about our Employee Referral process!
HCSC Employment Statement:
HCSC is committed to diversity in the workplace and to providing equal opportunity and affirmative action to employees and applicants. We are an Equal Opportunity Employment / Affirmative Action employer dedicated to workforce diversity and a drug-free and smoke-free workplace. Drug screening and background investigation are required, as allowed by law. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Come join us and be part of a purpose driven company who is invested in your future!
Job Summary
This position is responsible for the planning, design, enforcement and audit of information technology and information security policies, standards and procedures which safeguard the integrity of and access to enterprise systems, files and data elements; analyzing, tracking and acting on information technology or information security policy exceptions, audits and assessments. Maintaining knowledge of changing technologies, and provides recommendations for adaptation of new technologies, processes or policies. Recognizing and identifying potential areas where existing information technology or information security policies, standards and procedures require change, or where new ones need to be developed, especially as a result of future business expansion and technology advances; providing management with analysis via risk assessments and briefings / reports to advise them of critical information technology / information security issues that may affect the company's business objective and / or compliance; collaborating with and feeds it risk information into the enterprise risk management program. Evaluates and recommends information technology and information security products, services and/or processes to reduce risk and maintain compliance with applicable policies, mandates, laws and regulations. Implementing the activities associated with the information technology and information security awareness programs and provides education and training on information technology and information security security policies, standards and practices; performing control assessments and working with appropriate subject matter experts (SMEs) to document remediation plans; serving as a project lead and mentor to junior GRC team members. May lead functional teams or projects.
Required Job Qualifications:
* Bachelor Degree and 4 years of IT / IS work experience with a broad range of exposure to systems analysis, application development, database design and administration or 8 years of IT / IS work experience with a broad range of exposure to systems analysis, application development, database design and administration.
* Stakeholder relationship management.
* Knowledge of emerging technologies.
* Knowledge of information security principles.
* Understanding of business's strategic needs and IT/IS capabilities.
* Knowledge of required technologies (including 3rd party solutions).
* Strong oral and written communications.
* Problem solving, analytical skills, tools, and techniques.
* Navigating organizational politics.
* Ability to influence.
* Interpersonal skills.
* Ability to execute.
* Adaptability / ability to manage change.
* Conflict management.
Preferred Job Qualifications:
* Bachelor Degree in Computer Science, Information Systems, or other related field.
* Experience with a GRC solution.
Engaging and establishing relationships with HCSC senior management, third parties, partners, customers, and business owners.
Review and negotiate information security language in supplier and/or customer contracts.
Review and negotiate information security language in supplier and/or customer contracts.
Represent Security in the Privacy, Legal, Audit, and Security (PALS) meetings to assess third party risk.
Investigate and evaluate the effectiveness of security controls protecting HCSC data in contracts.
Identify and communicate information security risks and impact to HCSC stakeholders.
Provide advisory services for protecting HCSC information during third party contract discussions.
Ensure the set of minimum-security requirements for third party protection of HCSC's data are clearly communicated in customer contracts by HCSC Procurement and Support Services. (e.g., Cyber Security Framework certifications)
Review and respond to RFPs to negotiate HCSC driven requirements in contacts.
Ensure that third parties entrusted with data have implemented and continue to operate controls that are effective in protecting data and meet HCSC's acceptable risks tolerances.
Review and respond to customer (group, government, and retail) contracts and inquiries to verify HCSC can adhere to the terms outlined in the contract.
We encourage people of all backgrounds and experiences to apply. Even if you don't think you are a perfect fit, apply anyway - you might have qualifications we haven't even thought of yet.
#LI-HYBRID
#LI-NV1
Are you being referred to one of our roles? If so, ask your connection at HCSC about our Employee Referral process!
HCSC Employment Statement:
HCSC is committed to diversity in the workplace and to providing equal opportunity and affirmative action to employees and applicants. We are an Equal Opportunity Employment / Affirmative Action employer dedicated to workforce diversity and a drug-free and smoke-free workplace. Drug screening and background investigation are required, as allowed by law. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Recommended Skills
- Adaptability
- Administration
- Analytical
- Assessments
- Auditing
- Business Relationship Management
Help us improve CareerBuilder by providing feedback about this job:
Job ID: 2447234344
CareerBuilder TIP
For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.
By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.