Senior Manager, Privacy & Security Regulatory Engagement

About The Position

Requirements

• Bachelor's Degree in Information Security, Information Technology, Cybersecurity, Public Policy, Legal Studies, or related field; or equivalent experience required.
• 7+ years Privacy, security, compliance, risk management, or related field required.
• 3+ years Leading teams or managing professionals within a regulatory, security, or compliance function required.
• 3+ years Analyzing and interpreting regulatory, legislative, or contractual requirements required.

Nice To Haves

• Master's Degree preferred.
• Juris Doctor (JD) preferred.
• Experience working within healthcare, government programs, or other highly regulated industries, including interpretation and application of CMS program requirements (e.g., Medicare, Medicaid, ACA Marketplace) preferred.
• Experience analyzing and translating complex regulatory, legislative, and contractual requirements into actionable business and technical guidance preferred.
• Experience leading cross-functional initiatives within matrixed organizations, including influencing stakeholders and driving alignment without direct authority preferred.
• Experience conducting regulatory impact assessments, risk evaluations, and gap analyses across business and technology functions preferred.
• Experience developing executive-level communications and engaging senior stakeholders to support decision-making, alignment, and regulatory compliance outcomes preferred.

Responsibilities

• Lead, coach, and develop a team of LRAs who support EEOs in delivering consistent, high‑quality deliverables across assigned areas.
• Allocate and prioritize work across the analyst team based on market complexity, volume, and key regulatory and business cycles.
• Oversee onboarding, training, and ongoing skills development for the analyst team, with emphasis on regulatory interpretation, analysis, and documentation quality.
• Establish and maintain standard operating procedures (SOPs), templates, and playbooks for analyst activities to support consistent execution across EEO teams.
• Provide ongoing coaching, feedback, and performance input; support career pathing into EEO or other EPSRM roles as appropriate.
• Support EEOs in tracking obligations, risks, and decisions related to privacy, security, AI governance, and business continuity across assigned EEO Teams.
• Coordinate preparation of “Executive‑ready” briefing materials, dashboards, and summaries for EEOs and EPSRM leadership.
• Help maintain trusted relationships with internal stakeholders by ensuring analyst outputs (trackers, summaries, evidence packets) are timely, accurate, and aligned to EEO expectations.
• Maintain centralized, analyst‑managed requirement and deliverable inventories that map contractual, regulatory, and policy obligations to owners, timelines, and evidence.
• Oversee analyst work to interpret and document privacy, security, AI governance, and business continuity obligations from contracts, RFPs, and laws/regulations (e.g., HIPAA, CMS/MARS‑E/ARC‑AMPE, NCQA, state Medicaid/Exchange).
• Ensure that analysis packages supporting are complete, well‑organized, and ready for delivery prior to deadlines.
• Support monitoring of legal and regulatory changes and coordinate analyst work to capture impacts in requirement registers, trackers, and process documentation for use by EEOs.
• Direct analyst activities to identify and document privacy, security, AI governance, and operational resilience requirements, and to prepare supporting analysis for EEO and EPSRM risk discussions.
• Coordinate with EEOs and other EPSRM teams to track remediation actions and ensure analyst deliverables reflect current risk status and mitigation plans.
• Oversee analyst support of key EPSRM engagement deliverables, including System Security & Privacy Plans (SSPPs), business continuity plans, incident response attestations, vendor security attestations, and related documentation.
• Ensure documentation repositories are maintained in a state of audit readiness and are aligned to current policy and control expectations.
• Coordinate analyst support for new market entries, procurements, renewals, RFP responses, and readiness reviews under the guidance of EEOs and EPSRM leadership.
• Ensure analyst team contributions to regulator and client requests are timely, accurate, and aligned with approved EPSRM content and positions.
• Oversee analyst tasks related to EPSRM & EEO support activities, ensuring alignment to EPSRM expectations.
• Coordinate analyst participation in relevant privacy, security, AI governance and continuity activities.
• Drive continuous improvement in analyst methods, reporting, skills set and tooling to increase efficiency, quality, and consistency of EPSRM engagement activities.
• Support EPSRM’s multi‑year plan and portfolio reporting by aggregating and analyzing data from analyst work (e.g., obligations, risks, deliverables, timelines, and outcomes) through work tracker reporting.
• Perform other duties as assigned and comply with all applicable policies and standards.

Benefits

• competitive pay
• health insurance
• 401K
• stock purchase plans
• tuition reimbursement
• paid time off
• holidays
• a flexible approach to work with remote, hybrid, field or office work schedules