IT Security and Controls Compliance Manager

Apply

Job Number: 20087672
Location: Dublin, OHFL, MO, OH, TX
Country: United States
Date Posted: 9/10/2021
Type: Full time
Employment Type: Regular

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with more than 50,000 employees in nearly 60 countries, Cardinal Health ranks among the top 20 on the Fortune 500.

We currently have a full-time career opening for an IT Security and Controls Compliance Manager. This position is open to remote workers.

Role Overview

The IT Security and Controls Compliance Manager role is a first line of defense position responsible for defining, implementing and evaluating the effectiveness of IT general controls within the Medical business segment.

Daily Responsibilities:

The IT Security and Controls Compliance Manager will be the managing a team of 3 resources dedicated to managing security and controls compliance for one of our two business segments. They will be responsible for working with business and IT leaders in the Medical segment to ensure ongoing risk management and compliance of the segment.

Role Accountabilities include

Work with IT leaders to design effective IT controls to manage risk and ensure compliance with regulations (i.e., SOX, HIPAA, GDPR)
Design IT controls that increases operational efficiency and reduces the likelihood of control failure (i.e., automated and preventative controls vs. manual and detective)
Evaluate execution of IT controls to ensure they are operating effectively
Provide support for third party certifications such as SOC 1, SOC 2 and HITRUST
Track and drive remediation of IT control issues within our IT risk governance process
Act as a liaison for Internal and External Audit
Act as a champion to raise awareness and promote a mindset focused on IT controls and compliance
Collaborate cross-functionally within the information security department and the IT risk management second line of defense to ensure alignment with existing compliance, risk management and information security activities

What is expected of this role

Applies comprehensive knowledge and a thorough understanding of risk, compliance and IT general controls
Propose technical and / or process solutions to a wide range of problems
Participates in the development of policies and procedures to achieve specific goals.
Recommends new practices, processes, metrics, or models
Works on or may lead complex projects of large scope
Manages department operations and supervises professional employees
Interacts with subordinates, peer customers and suppliers at various management levels, will interact with senior management
Ability to travel, if required

Qualifications

Strong understanding and experience with SOX and/or other regulatory compliance processes
Experience with IT risk governance software (i.e., Archer, AuditBoard, ServiceNow GRC) a plus
IT auditing experience or an IT risk governance/compliance background a plus
Experience coaching and developing team members
Background in IT technologies and concepts including networks, databases, middleware, interfaces, and applications
Ability to communicate effectively and efficiently verbally and written with IT personnel, external auditors, consultants, and other company personnel
Bachelors Degree in related field or equivalent work experience

For non-remote onsite employees:

A Covid-19 vaccination is required in order to be employed in this position. This includes either:

2 doses of the Moderna or Pfizer vaccine

1 dose of the Johnson & Johnson vaccine

Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.

Apply

Senior IT Security Compliance Engineer

SR Privacy Risk and Compliance Advisor

FL,MO,OH,TX

Senior Security Engineer Cybersecurity Controls

FL,MO,OH,TX

Category	Description	Status
Strictly necessary	These cookies are essential, as they enable you to move around our website. This category cannot be disabled and includes __RequestVerificationToken, CookieConsent and CardinalHealth.
Performance	These cookies collect information about how you use our website, for example which pages you visit most often. All information these cookies collect is anonymous and is only used to improve how a website works.
Functionality and profile	These cookies allow a website to remember choices you make (such as your user name, language or the region you are in) and tailor the website to provide enhanced features and content for you.	Not used
Targeting	These cookies gather information about your browsing habits. They remember that you`ve visited a website and share this information with other organizations such as advertisers.	Not used