Information Security Risk and Governance Specialist, Principal

California Physicians' ServiceOakland, CA
387d$145,970 - $218,900Remote
Match Resume

About The Position

The Information Security Risk and Governance Specialist, Principal at Blue Shield of California plays a critical role in identifying, evaluating, and quantifying IT risks to support decision-making across the organization. This position is part of the Technology Risk Quantification and Awareness team, which aims to drive strategic decisions and enhance resilience in the healthcare landscape. The ideal candidate will provide thought leadership and evolve the existing risk management program, extending beyond IT risks to include strategic business decisions.

Requirements

  • Requires a bachelor's degree or equivalent experience.
  • Requires at least 10 years of prior relevant experience.
  • Experience with ThreatConnect or similar FAIR based risk quantification platforms, data analytics, and reporting tools; SQL and data warehouse experience a plus.
  • Exceptional ability to communicate complex risk concepts to non-technical stakeholders and to influence senior leaders.
  • Demonstrated capability to develop quantitative models, interpret data, and create actionable insights.
  • Ability to think strategically and make high-level contributions toward evolving a risk program to support key business decisions.
  • Relevant certifications (e.g., FAIR, CRISC, CISA) is a plus.

Responsibilities

  • Provide subject matter expertise, thought leadership, guidance, best practices, and support across security and governance risk management functions.
  • Drive security risk management processes by partnering with business and technical stakeholders.
  • Lead the Risk Management function and maintain the risk management framework.
  • Be responsible for entire portfolio delivery as IT Security Governance industry subject matter expert.
  • Perform highly complex security risk reviews, identify gaps in IT Security Governance capabilities, and develop security risk mitigation plans.
  • Oversee and perform detailed quantitative analysis on IT and operational risks using the ThreatConnect platform.
  • Lead and further develop the existing risk quantification program, ensuring alignment with industry best practices and evolving business needs.
  • Design and lead risk scenarios and simulations to assess various types of IT and operational risks.
  • Develop and implement metrics, KPIs, and a reporting framework to monitor and communicate risk exposures, trends, and outcomes.
  • Work closely with stakeholders across IT, Enterprise Architecture, Finance, and Operations to understand and quantify the impact of potential risks.

Benefits

  • Work from home

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Senior

Industry

Insurance Carriers and Related Activities

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service