• Enterprise Risk Manager

    Job Locations US-RI-Smithfield
    Req No.
    2018-9521
    Department
    Information Security
    Type
    Regular Full-Time
  • Overview

    This position is responsible for supporting and further developing the company’s Enterprise Risk Management program and process. This individual will lead the effort in providing enterprise risk advisory and business continuity planning for the company’s business units. 

    Responsibilities

    • Develop and manage the Crisis Management Plan and supporting response plans including testing, coordination and maintenance
    • Develop and implement the company’s Enterprise Risk Management Program and procedures, including defining the risk management methodology and scope
    • Develop and coordinate the Enterprise Business Continuity Program to include development of a Continuation of Operations Plan (COOP) for the company
    • Perform Business Impact Assessments to identify critical business processes and help establish risk management and BCP priorities
    • Through BIA process, identify Recovery Time Objectives and Recovery Point Objectives.
    • Monitor Disaster Recovery requirements for alignment to the business requirements identified through Business Continuity Planning, and Business Impact Assessments
    • Manage the risk management lifecycle through the coordination and facilitation of the Risk Management activities with all areas
    • Maintain a comprehensive Risk Register
    • Ensure risk program is in compliance with applicable laws, regulations and policies
    • Assist with Information Security Governance, Risk and Compliance (GRC) program’s design, process re-engineering or enhancements and tool and technology implementation
    • Lead current state risk assessments, continual risk assessments, and risk convergence
    • Develop, risk metrics and reporting for various audiences
    • Work directly with key business leaders to schedule and facilitate risk analysis and risk management processes and help lines of business define acceptable levels of risk
    • Help establish roles and responsibilities with regards to enterprise risk management and business continuity management
    • Develop, maintain, and monitor enterprise risk exception process
    • Develop key risk indicators (KRI’s) and dashboards
    • Works with Vendor Management to bid and award insurance products; negotiates with the awarded vendor to assure the best price/coverage for the company for both new and existing vendors
    • Enters into the prep budget system the expected insurance budget; responsible for managing the insurance accounts and creates requisitions for invoice payments
    • Reviews the insurance section of contracts; manages distribution of Certificates of Insurance to outside vendors; keeps on file Certificates of Insurance provided from outside vendors providing contractual services; reviews Certificates of Insurance provided for leased facilities
    • Gathers information from Facilities or other departments to complete the FEMA or other reports after an emergency
    • Other duties as assigned
    • Corporate Compliance Responsibility - As an essential function, responsible for complying with Neighborhood’s Corporate Compliance Program, Standards of Business Conduct, applicable contracts, laws, rules and regulations, policies and procedures as it applies to individual job duties, the department, and  the Company. This position must exercise due diligence to prevent, detect and report unlawful and/or unethical conduct by fellow co-workers, professional affiliates and/or agents

    Qualifications

    Required:

    • Bachelor’s Degree from an accredited institution in either Risk Management, Business Administration, Information Systems/Security or related field or years of experience in Risk Management, Insurance, Business Continuity and Information Security
    • Four (4)+ years of experience working as a Risk Management professional preferably in health care
    • Significant experience with HIPAA, SOX, ISO27001/2, ISO 31000, CMS, NIST, HITRUST
    • Significant experience with Governance, Risk, and Compliance (GRC) methodologies, tools and enablers preferably in health care
    • Significant experience in Business Continuity Planning (BCP), Business Impact Assessments (BIA), and Disaster Recovery Planning (DRP)
    • Strong thought leadership in Risk Management and BCP
    • Strong project management skills
    • Strong interpersonal and communication skills
    • Self-motivated
    • Work independently and proactively with minimal direction
    • Detail oriented, committed to quality
    • Forward looking and creative thinker, with a general problem-solving mindset

    Preferred:

    • Certified Risk Manager (CRM)
    • Certified in Risk and Information Systems Control (CRISC)
    • Certifications in Disaster Recovery and Business Continuity (CBCP)
    • Associate in Risk Management (ARM)
    • Certified Information Systems Security Professional (CISSP)
    • Certified Information Security Manager (CISM)
    • Certified Information Systems Auditor (CISA) 

    Neighborhood is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status or any other legally protected basis.

     

    Neighborhood is committed to ensuring individuals with disabilities and/or those who have special needs participate in the workforce and are afforded equal opportunity to apply for jobs. If you would like to contact us regarding the accessibility of our Website or need assistance completing the application process, please contact us at recruiting@nhpri.org

     

    Neighborhood is an EOE M/F/D/V and an E-Verify Employer

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Need help finding the right job?

    We can recommend jobs specifically for you! Click here to get started.