Risk Management Analyst II

HCA Healthcare • Nashville-Davidson, TN, United States • $200k - $250k / year • 3w ago

Introduction

Are you looking for a work environment where diversity and inclusion thrive? Submit your application for our Risk Management Analyst II opening with HCA Healthcare today and find out what it truly means to be a part of the HCA Healthcare team.

Job Summary and Qualifications

Position Summary

The Risk Management Analyst II plays a critical role in the Information Protection & Security (IPS) Risk Management team’s efforts to make risk visible, facilitate well-informed decision making, and drive accountability. This person will partner with the Director of Risk Management and senior members of the Risk Management team in developing tactical plans in support of risk management initiatives.

Major Responsibilities:

The Risk Engine that IPS RM uses to systematically evaluate risk scenarios, threats, vulnerabilities and controls.
The On-Demand Risk Analysis process that the IPS RM team uses to quickly analyze developing risk scenarios to aid HCA leadership in making decisions about risk reducing actions.
The IPS Risk Register that the IPS RM team uses to capture and prioritize risk scenarios, intermediate risks, and enterprise risks for the purpose of leadership reporting and risk posture monitoring.
The Facilitation & Liaison program that the IPS RM team uses to effectively engage critical points of contact on other HCA teams.
The Control Catalog that the IPS RM team uses to enumerate all the controls in the HCA environment.
The Security Risk Analysis (SRA) processes required to demonstrate compliance with regulations.
The Controls Exception and Risk Acceptance processes that the IPS RM team uses to document business acceptance of risk and mitigating controls.
The IPS Project Portfolio priority analysis and control monitoring processes.
The Risk Management modules within the GRC/IRM platform.
The Internal Review & Process Improvement program.
The development and maintenance of policies, standards and procedures.
The process and deliverables for corrective action and control writing in response to risks identified in SRAs.
The management of unplanned external audit response efforts.

Education & Experience:

Bachelor's degree or equivalent experience Required.
3+ years of experience in audit, risk management, information security, or information technology Required.
3+ years of experience in implementing Security Risk Management programs Required.
1+ year(s) of experience in working with GRC or IRM tool suites Preferred.
1+ year(s) of experience in healthcare Preferred.
3+ years of experience in demonstrating adaptability and flexibility Required.

Licenses, Certifications, & Training:

Certifications such as CISSP, CISA, HCISPP Preferred.

Knowledge, Skills, Abilities, Behaviors:

Ability to demonstrate an uncompromising commitment to delivering exceptional care.
Ability to build trust and act with authenticity.
Ability to make timely, informed decisions.
Ability to develop and strengthen collaborative relationships.
Ability to lead others to accomplish organizational goals.
Ability to deliver information in a clear, concise manner.
Ability to identify opportunities for improvement.
Ability to commit to the success and financial wellbeing of HCA.

If you find this opportunity compelling, we encourage you to apply for our Risk Management Analyst II opening. We promptly review all applications. Highly qualified candidates will be directly contacted by a member of our team. We are interviewing apply today!

We are an equal opportunity employer and value diversity at our company.

#J-18808-Ljbffr