Associate Information Security Analyst - Enhanced Vendor Oversight

Please email HR_Talent_AcquisitionTeam@bcbsri.org if you are a candidate seeking a reasonable accommodation for the application and/or interview process.

Hybrid

$73,000 - $110,000

Blue Cross & Blue Shield of Rhode Island is seeking an innovative and diligent security professional to join its Information Security team. In this role, a successful candidate will be pivotal in ensuring the security, compliance, and maintenance of our third-party relationships. The candidate will be responsible for assessing, monitoring, and mitigating risks associated with third-party vendors and delegates. Additionally, they will interact with business units to communicate risks and manage review cycles effectively.

1. Conduct security assessments of third-party vendors to identify potential risks and vulnerabilities.
2. Collaborate with internal stakeholders to align third-party security practices with company policies and regulatory requirements.
3. Review and analyze third-party attestation and certification artifacts (SOC2, HITRUST, etc.) shared by third parties to identify information security risks.
4. Develop and maintain documentation related to third-party risk management activities.
5. Maintain an organization-wide vendor portfolio for security risks and engagement forms.
6. Provide recommendations for mitigating identified risks and improving third-party security posture.
7. Stay informed about industry best practices and emerging threats related to third-party risk management.

1. Equivalent combination of education and work experience.
2. 3+ years of relevant industry experience, ideally focused on vendor management, third-party risk management, or related vendor oversight tasks.
3. Relevant certifications such as CISSP, CISA, CRISC, or equivalent are preferred but not required.
4. Advanced knowledge of Microsoft Office, including Outlook, Word, Excel, and PowerPoint.
5. Strong analytical and organizational skills.
6. Effective oral and written communication skills.
7. Self-driven, team-oriented mindset.
8. Ability to work independently and collaboratively.
9. Knowledge of healthcare industry regulations and standards is a plus.

BCBSRI is headquartered in downtown Providence, near the train station and bus terminal. We support associate well-being and work/life balance with flexible schedules:

• In-office: 5 days per week onsite
• Hybrid: 2-4 days per week onsite
• Remote: 0-1 days per week, with residence permitted in select states pending HR approval: Arizona, Connecticut, Florida, Georgia, Louisiana, Massachusetts, North Carolina, Oklahoma, Rhode Island, South Carolina, Texas, Virginia

At BCBSRI, diversity and inclusion are central to our values. We are an equal opportunity employer and do not discriminate based on race, color, religion, gender, age, national origin, disability, veteran status, sexual orientation, genetic information, gender identity, or expression.

The law requires employer notices on federal laws prohibiting discrimination. Visit EEOC - EEO is the Law for more information.