Performs tasks to ensure Information Technology (IT) compliance with regulatory obligations, corporate policy and selected internal procedures. Assists in audit and compliance reviews. Performs compliance activities associated with multiple IT operations. Monitors and reports on compliance status. Contributes to the continuous improvement and refinement of existing compliance activities. Supports and assists in the development of new programs.
Promotes the IT Compliance mission and ensures the following benefits are provided to the enterprise:
• Assure accuracy of software/hardware inventories and documentation supporting compliance monitoring processes.
• Implementation of secure and compliant technologies in an expeditious timeframe, thus increasing compliance and decreasing organizational risk and exposure.
• Provides a mechanism to identify potential issues and recommend strategic and tactical improvements.
• Reduces the number of internal control or information security anomalies, incidents, and/or findings.
• Measures organizational IT Compliance.
SPECIFIC POSITION DUTIES:
Provides Baseline Compliance Support, including but not limited to: general compliance support, Disaster Recovery facilitation, Cyclical Asset Assessments, System Onboarding.
Assists in the development of IT Compliance processes, participating in discussion, coordination, and documentation of flows. Assists in the annual review of internal processes. Commits to the adherence of internal processes. Actively participates in the review of internal process.
Actively contributes to the successful completion of assigned projects.
Assists in overseeing and coordinating audits, assessments and reviews for the IT business areas and service lines.
Coordinates internal audit memos, findings, observations and follow-up. Assists in writing management responses as required.
Assists in development of training and awareness programs as necessary to ensure the IT workforce is aware of and understands their role in compliance. Assists in assessing needs for IT training and awareness which includes new compliance staff.
Assists in the development of compliance newsletters, awareness articles, CBT courses and face-to-face training material.
Assists in the alignment of training and awareness program practices with the department’s communication plan.
Aids in the presentation of compliance training materials/information to IT Departments and Service Lines.
Effectively using internal processes, applies risk identification documentation and communication standards as outlined in internal compliance processes. Assists in remediation planning documentation, tracking, and reporting.
COMPETENCIES AND SKILLS:
Demonstrates strong verbal and written communication skills.
Demonstrates analytical skills including critical thinking, data analysis, and research.
Demonstrates the ability to effectively communicate with members across various levels of IT and the organization, as well as external vendors.
Demonstrates the ability to assist in IT Compliance projects, completing tasks as assigned to promote successful completion of project.
Ability to multitask.
Ability to work independently with supervision.
Experience with multiple compliance and best practice frameworks and standards preferred, such as: COBIT, COSO, ISO 20000, ISO 27001, ITIL, PCI, HIPAA, SOX, NAIC MAR and/or NIST.
EDUCATION AND/OR EXPERIENCE:
Bachelor or Associate Degree in a Compliance, Information Technology, Information Security, Healthcare Information Management, Health Information Systems, Business Management or related discipline.
Minimum of 3 years’ experience in IT compliance, information security, internal audit, business management or related field required.
Experience in health care or health payer systems is preferred.
WORKING CONDITIONS/PHYSICAL DEMANDS:
Work is typically performed in an office environment with occasional travel to different buildings. Mostly sedentary work interacting with computers and people. Requires ability to perform visual inspection and lifting less than 10 pounds.
The specific statements shown in each section of this description are not intended to be all-inclusive. They represent typical elements considered necessary to successfully perform the job.
OUR PURPOSE & VALUES: Everything we do is about caring for our patients, our members, our students, our Geisinger family and our communities. KINDNESS: We strive to treat everyone as we would hope to be treated ourselves. EXCELLENCE: We treasure colleagues who humbly strive for excellence. LEARNING: We share our knowledge with the best and brightest to better prepare the caregivers for tomorrow. INNOVATION: We constantly seek new and better ways to care for our patients, our members, our community, and the nation.
ABOUT GEISINGER: Geisinger is a physician-led health system comprised of approximately 30,000 employees, including nearly 1,600 employed physicians, 13 hospital campuses, two research centers, and a 583,000-member health plan Geisinger is nationally recognized for innovative practices and quality care. Geisinger serves more than 3 million people in central, south-central and northeast Pennsylvania and also in southern New Jersey with the addition of National Malcolm Baldridge Award recipient AtlantiCare, A member of Geisinger. In 2017, the Geisinger Commonwealth School of Medicine became the newest member of the Geisinger Family.
We offer healthcare benefits for full time and part time positions from day one, including vision, dental and domestic partners. * Perhaps just as important, from senior management on down, we encourage an atmosphere of collaboration, cooperation and collegiality. For more information, visit www.geisinger.org, or connect with us on Facebook, Instagram, LinkedIn and Twitter.
** Does not qualify for J-1 waiver. We are an Affirmative Action, Equal Opportunity Employer Women and Minorities are Encouraged to Apply. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of disability or their protected veteran status.
*Domestic partner benefits not applicable at Geisinger Holy Spirit.
At Geisinger, our innovative ideas are inspired by the communities we serve – like our Fresh Food
Farmacy, a program that delivers life-saving healthy alternatives to patients with diabetes. With additional tools like our MyCode Community Health Initiative, one of the first health system genome sequencing
programs, and our new asthma app suite that we developed in partnership with AstraZeneca, it’s no wonder we’re ranked one of the Top 5 Most Innovative Healthcare Systems by Becker's Hospital Review. We continually work towards continuous improvement in a culture where everyone has a voice and firmly believe that better begins with all of us.
Founded more than 100 years ago, Geisinger serves more than three million residents throughout central, south-central and northeastern Pennsylvania and southern New Jersey. Our physician-led system is comprised of 30,000 employees, including 1,600 employed physicians, and consists of 13 hospital campuses, the Geisinger Health Plan, Geisinger Commonwealth School of Medicine and two research centers.
What you do at Geisinger shapes the future of health and improves lives – for our patients, communities, and you.