IT Audit Program Manager

Description
Company: Oak Street Health
Title: IT Audit Program Manager
Location: Chicago, IL / Remote
Company Description
Oak Street Health is a rapidly growing company of primary care centers for adults on Medicare in medically-underserved communities where there is little to no quality healthcare. Oak Street's care is based on an entirely new model that is based on value for its patients, not on volume of services. The company is accountable for its patients' health, spending more than twice as long with its patients and taking on the risks and costs of their care. For more infor mation, visit http://www.oakstreethealth.com .
Role Description:
Oak Street Health is looking for a senior IT Auditor to help build and manage an internal IT security audit and compliance function. This role reports directly to the CISO and is responsible for evaluating the operational effectiveness of various technical controls, assessing technical processes and measuring the overall health and security of the Oak Street Health technical environment.
This is a unique opportunity to be part of a team rearchitecting its security program to account for dynamic growth, expansion and new service offerings. Oak Street Health has significant regulatory requirements in its role as a national healthcare provider in the Medicare space.
This is a hands-on role, participating in all phases and all aspects of our security GRC model, from assessing a wide range of security controls, to evaluating and approving remediations efforts to oversight responsibilities for our external assessment/audit efforts. This role requires a balance of security GRC acumen and a willingness to fully commit to making the program successful!
Core Responsibilities:

• Work hands-on with key members of the IT and security teams to assess and audit a wide-range of cybersecurity solutions to help achieve compliance with healthcare and Medicare requirements, such as the HIPAA Rules and NIST SP 800-53 as well as SOX ITGC controls.
• Take ownership for the development and execution of an annual IT Audit calendar encompassing both in-house and third-party technical systems/solutions.
• Provide SME-level guidance and insight for members of Oak Street Health's IT infrastructure and application development teams related to security requirements, regulations and contractual obligations and how they relate to potential remediation efforts.
• Play a significant role in Oak Street Health's Security Risk Management Program, through the identification, analysis and treatment of security risk.
• Work with the CISO and members of the Cybersecurity Team on Oak Street Health's goal of achieving the HITRUST CSF and NIST Cybersecurity Framework Certifications.

What are we looking for?

• Bachelor's Degree or an equivalent level of education and experience
• Minimum of 10 years of experience with IT audit and/or compliance
• Minimum of 5 years of experience working in a regulated industry; experience in the healthcare space with the HIPAA Rules, HITRUST and NIST is a plus
• Relevant security certifications, including CISSP, CISA, CRISC, CISM, GSNA, etc. are highly desired
• Ability to communicate effectively, both verbally and in writing, across a diverse team of business, technology and compliance leaders
• Excellent problem solving skills with the ability to deliver effective and efficient solutions
• Self-motivated, able to work both independently and as a team
• US work authorization
• Someone who embodies being "Oaky"

What does being "Oaky" look like?

• Radiating positive energy
• Assuming good intentions
• Creating an unmatched patient experience
• Driving clinical excellence
• Taking ownership and delivering results
• Being scrappy

Why Oak Street?
Oak Street Health offers our coworkers the opportunity to be at the forefront of a revolution in healthcare, as well as:

• Collaborative and energetic culture
• Fast-paced and innovative environment
• Competitive benefits including paid vacation and sick time, generous 401K match with immediate vesting, and health benefits

Oak Street Health is an equal opportunity employer. We embrace diversity and encourage all interested readers to apply to oakstreethealth.com/careers.