Job Description:

Blue Shield of California's mission is to ensure all Californians have access to high-quality health care at a sustainably affordable price. We are transforming health care in a way that truly serves our nonprofit mission by lowering costs, improving quality, and enhancing the member and physician experience.

To fulfill our mission, we must ensure a diverse, equitable, and inclusive environment where all employees can be their authentic selves and fully contribute to meet the needs of the multifaceted communities we serve. Our comprehensive approach to diversity, equity, and inclusion combines a focus on our people, processes, and systems with a deep commitment to promoting social justice and health equity through our products, business practices, and presence as a corporate citizen.

Blue Shield has received awards and recognition for being a certified Great Place to Work, best place to work for LGBTQ equality, leading disability employer, one of the best companies for women to advance, Bay Area's top companies in volunteering & giving, and one of the world's most ethical companies. Here at Blue Shield of California, we are striving to make a positive change across our industry and the communities we live in - join us!

Your Role

The IT Controls Assurance team drive BSC information security adherence to regulatory standards, as well as policies, standards, and controls development, with the goal of safeguarding company assets and maintaining confidentiality, integrity, and availability of information. The Information Security Risk and Governance Specialist, Principal will report to the Senior Manager of IT Controls Assurance. In this role you will monitoring and guiding implementation and assessment of appropriate technical/security controls and regulatory requirements, as well as developing an information security compliance program within Assurance Services. The Principal is a senior subject matter expert and trusted advisor in information technology and security governance, risk and compliance best practices.

Your Work

In this role, you will:

• 
  

  Provide subject matter expertise, thought leadership, guidance, best practice and support across security and governance risk management functions.

  
  


• 
  

  Drive security risk management processes by partnering with the business and technical stakeholder

  
  


• 
  

  Lead the Risk Management function and maintain risk management framework

  
  


• 
  

  Be responsible for entire portfolio delivery as IT Security Governance industry subject matter expert

  
  


• 
  

  Perform highly complex security risk reviews, identify gaps in IT Security Governance capabilities, and develop security risk mitigation plan

  
  


• 
  

  Evaluate existing controls library to identify compliance risk

  
  


• 
  

  Communicate and collaborate with corporate counsels, privacy, legal, enterprise risk management, HR departments and external customers or vendors to monitor compliance enforcement of standards and regulations

  
  


• 
  

  Consult with and review the work of team members to accomplish operational plans and results within schedule and budget

  
  


• 
  

  Influence decisions which are usually more project and operationally oriented and explain policies, standards, practices, and procedures of the job area/department to others within the organization

  
  


• 
  

  Prepare reports for senior management and external regulatory bodies as appropriate

  
  

Your Knowledge and Experience

• 
  

  Requires a bachelor's degree or equivalent experience

  
  

• 
  

  Requires at least 10 years of prior relevant experience

  
  


• 
  

  CISSP, CRISC, CISM, CISA required or similar certification

  
  


• 
  

  Proven experience as an Information security governance, compliance and/or risk expert and knowledge of various information security governance and control frameworks such as NIST, HITRUST and PCI-DSS, HIPAA, SOC experience is required

  
  


• 
  

  Foster a team culture of continuous improvement, mentoring and learning, data driven decisions, and accountability for delivery of key metrics and deliverables is required

  
  


• 
  

  Excellent communication and presentation skills at every level including executives is required

  
  


• 
  

  Practical knowledge in leading and managing the execution of process, projects and tactics within an area is required

  
  

Our Values

• 
  

  Honest. We hold ourselves to the highest ethical and integrity standards. We build trust by doing what we say we're going to do and by acknowledging and correcting where we fall short

  
  


• 
  

  Human. We strive to be our authentic selves, listening and communicating effectively, and showing empathy towards others by walking in their shoes

  
  


• 
  

  Courageous. We stand up for what we believe in and are committed to the hard work necessary to achieve our ambitious goals

  
  

Additional Information

• About Company:
  o About Blue Shield of California: For more than 80 years, Blue Shield has been dedicated to transforming health care by making it more accessible, cost-effective, and customer-centric. We are a not-for-profit, independent member of the Blue Cross Blue Shield Association with 7,500 employees, more than $21 billion in annual revenue and 4.5 million members. The company has contributed more than $500 million to the Blue Shield of California Foundation since 2002 to have a positive impact on California communities. Blue Shield is headquartered in Oakland, California with 21 additional locations including Sacramento, Los Angeles, and San Diego.
  o Our Benefits: At Blue Shield you can expect a comprehensive benefits program that offers choice and flexibility for our diverse workforce. These programs and resources include: Medical, Dental, and Vision plan benefits, 401(k) with employer match, paid time off (PTO), earned sabbatical time, paid nonprofit volunteer time, flexible work program, free online education, tuition reimbursement, a wellness reimbursement program, 12 weeks paid parental leave, and more.










• Physical Requirements: Office Environment - roles involving part to full time schedule in Office Environment. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.
  Please click here for further physical requirement detail.
















• EEO Footer:
  o EEO Footer: All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, state and local laws. External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance.
  o Accommodations: Blue Shield is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, services, programs and activities. To request a reasonable accommodation prior to your interview, please contact RehabWest, Inc at (760)759-7500.











• Requisition ID: 21002MB













• Posting Date: Oct 19, 2021











• Schedule: Full-time

Apply Now