Manager-Governance Risk and Compliance

Security is accountable for assisting in designing, building, testing and implementing security systems and solutions within Medica.

As the Manager of our Governance Risk and Compliance team you will be responsible for helping Medica drive down risk, ensure compliance with regulatory requirements, and help drive our business resiliency program. You will manage the day to day operations of our Security Third Party Assessments, All Audit and Assessment activities, along with Business Continuity and Disaster Recovery strategies.

Key Accountabilities:

• Audits/Assessments
  
  
  
  • Lead HITRUST and SOC2 Compliance
  • Ensure customer assessments are completed
  
  
  
  
• Third Party Risk
  
  
  
  • Lead Third Party Security Assessments and Reporting
  • Drive Third Parties to meet security requirements
  
  
  
  
• Business Resiliency
  
  
  
  • Drive Business Continuity Planning and Testing
  • Drive Disaster Recovery Strategies, Planning and Testing
  
  
  
  
• Security Risk and Reporting
  
  
  
  • Cultivate a culture of security awareness, continuously educate medicate employees on security measures and ensure security policies are adhered to
  • Awareness Training
  • Policy Development
  
  
  
  
• Management Oversight
  
  
  
  • Develop Talent
  • Management oversight of daily operations
  
  
  
  

Minimum Requirements:

• Bachelor's degree or equivalent experience and education - 10+ years of experience
• 7+ years in IT with 1+ year leading one of the GRC Functions
• Experience with HITRUST, SOC2, and or other Industry frameworks such as NIST
• Experience with Third Party Assessments
• Experience working with auditors, vendors, and third-party partners
• Experience in Policy development
• Experience in Business Reliency
• Strong written communication and presentation skills
• Experience with Agile/Scrum methodology
• Experience with Frameworks such as NIST, HITRUST, ISO27001, COBIT
• Ability to explain technical security topics to those without security or technical background
• Self-starter who can work independently
• Coach / mentor other team members
• Knowledge of Healthcare (Preferred)

This position is an Office role, which requires an employee to work from the designated office - Minnetonka, MN - , on average, 2+ times per week.

The full salary range for this position is $127,800 - $219,000. Annual salary range placement will depend on a variety of factors including, but not limited to, education, work experience, applicable certifications and/or licensure, the position's scope and responsibility, internal pay equity and external market salary data. In addition to base compensation, this position may be eligible for incentive plan compensation in addition to base salary. Medica offers a generous total rewards package that includes competitive medical, dental, vision, PTO, Holidays, paid volunteer time off, 401K contributions, caregiver services and many other benefits to support our employees.

The compensation and benefits information is provided as of the date of this posting. Medica's compensation and benefits are subject to change at any time, with or without notice, subject to applicable law.

Medica's commitment to diversity, equity and inclusion (DEI) includes unifying our workforce through learning and development, recruitment and retention. We consistently communicate the importance of DEI, celebrate achievements, and seek out community partnerships and diverse suppliers that are representative of everyone in our community. We are developing sustainable programs and investing time, talent and resources to ensure that we are living our values. We are an Equal Opportunity/Affirmative Action employer, where all qualified candidates receive consideration for employment indiscriminate of race, religion, ethnicity, national origin, citizenship, gender, gender identity, sexual orientation, age, veteran status, disability, genetic information, or any other protected characteristic.