Senior Risk Strategy Analyst

Highmark HealthPA, Working at Home - Pennsylvania, PA
$86,400 - $138,600Onsite

About The Position

This role supports the strategic activities for the organization, including (i) maintenance of the enterprise risk taxonomy, (ii) documentation of the enterprise risk profile, and appetite/tolerance; (iii) documentation of risk assessments and mitigation strategies; (iv) emerging risk evaluation; (v) completion of compliance / regulatory certifications and filings; and (vi) contribution to the annual audit + compliance plan. As senior members of the Enterprise Risk Strategy Department, this role supports stakeholders by providing objective risk analysis through a quantitative process that links risks to the enterprise risk appetite, including the development of risk stress scenarios using internal and external resources. Directly supports the Director - Enterprise Risk Strategy in contributing and leading discussions with individuals across the Enterprise Risk & Governance (ER&G) division, as well as relevant business owners to implement the strategy program / workflow that directly impacts high priority, Executive Leadership Team (ELT)-qualified initiatives, including but not limited to: (i) ELT qualified requests of CRO; (ii) support of due diligence efforts for Mergers & Acquisitions; (iii) support of enterprise strategic initiatives. Directly supports the Director - Enterprise Risk Strategy and the Director - Risk Initiatives with the development of key strategic, administrative and mandated deliverables (e.g. annual audit planning), including but not limited to the following: (i) Annual ERM threat assessment; (ii) Contribution to payor or provider compliance plans in coordination with Strategic Risk Partners, Risk Operations, and Risk Enablement; (iii) Audit Plan Development in coordination with Internal Audit, Risk Operations, and Risk Enablement; (iv) Monitoring and tracking of the delivery of all risk activities for Highmark Health, AHN, including internal and external audit progress, privacy matters, risk and compliance reporting, and the impacts of new and changing laws, regulations, and contractual obligations. Lead in the identification and assessment of risks, create decisioning frameworks to treat risks, implement measures to modify risk(s), and detect / respond to risk(s), including but not limited to: (i) Development and maintenance of enterprise risk taxonomy; (ii) Evaluation and development of enterprise risk appetite and profile alignment; (iii) Oversight and submission of regulatory risk filings (e.g. ORSA reporting); (iv) Cascading enterprise risk appetite into business case templates and project management frameworks across Highmark Health; Contributes to the development of advanced models used to quantify risks to inform Audit Committee and/or senior management deliverables. Establishes and maintains relationships with business owners, provide coaching and guidance to Risk Strategy Analysts, brings knowledge sharing and best practices to the risk function, and demonstrates ability to apply a thorough understanding of Highmark's complex business processes and environment, including visualizing and developing solutions to highly complex problems and issues.

Requirements

  • Bachelor's Degree in Finance, Business, Public Policy Healthcare, Information Technology, Information Security or related field
  • 5 years in Compliance, Quality, Public Policy, Government Affairs, Project Management, Healthcare Operations or Law
  • Strong documentation and reporting skills
  • Strong written and oral communication skills
  • Presenting compliance and quality issues to senior audiences
  • Demonstrated client relationship, influencing, and teamworking skills
  • Strong quantitative and analytical skills
  • Self-starter with the ability to work under pressure independently or as a part of a team

Nice To Haves

  • Master's Degree in Finance, Business, Public Policy Healthcare, Information Technology, Information Security or related field
  • 3 years in Information Security Analysis or Information Risk Management
  • 3 years in Privacy Analysis, Privacy Risk Management and working in and understanding regulatory environment

Responsibilities

  • Maintenance of the enterprise risk taxonomy
  • Documentation of the enterprise risk profile, and appetite/tolerance
  • Documentation of risk assessments and mitigation strategies
  • Emerging risk evaluation
  • Completion of compliance / regulatory certifications and filings
  • Contribution to the annual audit + compliance plan
  • Providing objective risk analysis through a quantitative process that links risks to the enterprise risk appetite
  • Development of risk stress scenarios using internal and external resources
  • Support ELT qualified requests of CRO
  • Support of due diligence efforts for Mergers & Acquisitions
  • Support of enterprise strategic initiatives
  • Development of key strategic, administrative and mandated deliverables (e.g. annual audit planning)
  • Annual ERM threat assessment
  • Contribution to payor or provider compliance plans in coordination with Strategic Risk Partners, Risk Operations, and Risk Enablement
  • Audit Plan Development in coordination with Internal Audit, Risk Operations, and Risk Enablement
  • Monitoring and tracking of the delivery of all risk activities for Highmark Health, AHN, including internal and external audit progress, privacy matters, risk and compliance reporting, and the impacts of new and changing laws, regulations, and contractual obligations
  • Identification and assessment of risks
  • Create decisioning frameworks to treat risks
  • Implement measures to modify risk(s)
  • Detect / respond to risk(s)
  • Development and maintenance of enterprise risk taxonomy
  • Evaluation and development of enterprise risk appetite and profile alignment
  • Oversight and submission of regulatory risk filings (e.g. ORSA reporting)
  • Cascading enterprise risk appetite into business case templates and project management frameworks across Highmark Health
  • Development of advanced models used to quantify risks to inform Audit Committee and/or senior management deliverables
  • Establishes and maintains relationships with business owners
  • Provide coaching and guidance to Risk Strategy Analysts
  • Brings knowledge sharing and best practices to the risk function
  • Demonstrates ability to apply a thorough understanding of Highmark's complex business processes and environment
  • Visualizing and developing solutions to highly complex problems and issues

Benefits

  • Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service