Risk and Controls Manager at Tandigm Health in Conshohocken, Pennsylvania

Job Description:

Tandigm Health, LLC is a value based population health organization. We engage our physician network by aligning economics and rewarding them for the value of the care they provide rather than for the volume of services. We enable our physicians with innovative tools, actionable data, expert training and education, and clinical delivery support. We empower our physicians by building community-oriented care delivery systems that facilitate collaboration across the continuum of care.

At Tandigm you will find a culture where all Teammates have the opportunity to collaborate in an energized, multi-disciplinary work environment focused on improving patient outcomes and enabling our staff to do some of the most rewarding work of their careers.  

Tandigm Health is a quickly growing, early-stage company transforming health care in the Greater Philadelphia area.  Our mission is to help our physicians provide better care for their patients.  

RISK AND CONTROLS MANAGER
West Conshohocken, PA

 The Risk and Controls Manager will have primary responsibility for ensuring effectiveness of all IT General Controls (ITGCs).  The manager will act as the primary point of contact between IS&T, information security and auditors to provide leadership in managing auditing activities, requests and developing responses to audit findings.  The manager will also be responsible for making additional internal recommendations for improvement.

RESPONSIBILITES:

• Guide efforts to create common control framework and consistent compliance reporting standard.


• Provide quality assurance of all ITGCs through assessment, walkthroughs, and audits to ensure operational effectiveness.


• Identify risks and gaps and facilitate remediation.


• Assist control owners with root cause analysis and track risk management action plan progress.


• Perform an evaluation of controls to determine design and operational effectiveness.


• Conduct IT controls management testing of controls.


• Identify and track assessment/audits using performance metrics.


• Provide risk metrics to management regarding performance and findings.


• Implement and supervise the issue tracking and resolution process.


• Review the audit assessments conducted by both internal and external audit teams.


• Collaborate with the Information Security Team.


• Stay current with security and compliance trends, changes and associated topics.


• Comply with HIPPA (Health Insurance Portability and Accountability Act) regulations in protecting PHI (Protected Health Information).


• Performs additional duties as assigned.

EDUCATION AND EXPERIENCE:

• Bachelor’s Degree in Business, Accounting, Information Technology, or other quantitative discipline, with;

 EXPERIENCE:

• Experience with HIPAA / HITRUST required.


• Experience with project management best practices required.


• Experience with application development, cloud computing and SaaS required.


• Experience with common information security management frameworks, such as International Organization for Standardization (ISO) 2700x, ITIL, CSC20, COBIT and National Institute of Standards and Technology (NIST) frameworks required.


• Privacy and data protection, compliance or legal experience preferred.

QUALIFICATIONS:

• Sound understanding of security and control principles including logical access controls, change control, least privilege, segregation of duties, computer operations, network security, vulnerability management, and secure coding.


• Broad technical understanding of data management platforms (e.g., NetSuite, Microsoft Azure, SQL Server, etc.) and associated data security controls.


• Strong technology acumen and the ability to assess data privacy gaps in products/services design.


• Expert understanding of data classification, data protection, and data retention standards and practices.


• Familiarity with common enterprise and web application technologies.


• Expert understanding of data protection regulations and standards.


• Strong analytical and time management skills.


• Ability to maintain a high degree of confidentiality.


• Ability to work with minimal supervision in a very dynamic and time-sensitive work environment.


• Ability to communicate concisely and clearly both written and verbally with all levels of the organization.


• Attention to detail and excellent planning and organization skills.


• Ability to negotiate and resolve issues gracefully and with diplomacy.


• Knowledge of healthcare industry, with focus on population health.

Sound like this is the job for you?  Click for our website here & get started !

Apply Now