.

This position will be responsible for completing Vendor Assessments for the Vendor Risk Management team.
This role will primarily focus on the following specific areas of responsibility:
-Day-to-day management of Information Security risk identification, mitigation and acceptance processes in coordination with security operations and maintaining program requirements language
-Execution of training, education and awareness of all users, managers and board members regarding Information Security vendor requirements and expectations
-Operational risk planning, mitigation and remediation to address Information Security deficiencies
-Identifying new vendor engagements and renewal of existing vendor assessments. Coordinating distribution and completion of vendor assessment questionnaire
-Reviewing on-site assessment reports, examining risks and controls associated with all aspects of the vendor
-Drafting preliminary findings reports
-Conducting preliminary results meeting with BCBSM and its subsidiaries stakeholders and management staff
-Receiving and review vendor response-action plan, if necessary
-Communicates the results of assessment and-or projects in a clear and concise manner to all levels of management
-Designs and operate key operational and executive metrics, reports and dashboards

 5+ years of Vendor Risk Management in the Healthcare space
- Strong knowledge of HIPAA and other applicable Healthcare laws
- Strong understanding of the development and operation of a Risk Management program