Enable job alerts via email!
Assocoate Information Security Analyst - Enhanced Vendor Oversight
Blue Cross and Blue Shield of Rhode Island
Providence (RI)
Hybrid
USD 73,000 - 110,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An innovative firm is seeking a dedicated security professional to enhance its Information Security team. This role involves assessing and managing risks associated with third-party vendors, ensuring compliance with industry standards, and collaborating with various business units. The ideal candidate will have a strong background in vendor management and risk assessment, along with excellent communication and analytical skills. Join a team that values diversity and inclusion while contributing to the security of critical healthcare services. This position offers a hybrid work schedule, allowing for flexibility and work-life balance.
Qualifications
- 3+ years of experience in vendor management or third-party risk management.
- Strong analytical, organizational, and communication skills.
Responsibilities
- Conduct security assessments of third-party vendors to identify risks.
- Collaborate with stakeholders to align security practices with policies.
Skills
Education
Tools
Job description
Please email HR_Talent_AcquisitionTeam@bcbsri.org if you are a candidate seeking a reasonable accommodation for the application and/or interview process.
Schedule: Hybrid
Compensation: $73,000 - $110,000
Why this job matters:
Blue Cross & Blue Shield of Rhode Island is seeking an innovative and diligent security professional to join its Information Security team. In this role, a successful candidate will be pivotal in ensuring the security, compliance, and maintenance of our third-party relationships. A successful candidate will be responsible for assessing, monitoring, and mitigating risks associated with third-party vendors and delegates. Additionally, a successful candidate will be required to interact with business units to communicate risks and manage review cycles effectively.
What you'll do:
- Conduct security assessments of third-party vendors to identify potential risks and vulnerabilities.
- Collaborate with internal stakeholders to align third-party security practices with company policies and regulatory requirements.
- Review and analyze third-party attestation and certification artifacts (SOC2, HITRUST, etc.) shared by third parties to identify information security risks.
- Develop and maintain documentation related to third-party risk management activities.
- Maintain an organization-wide vendor portfolio for security risks and engagement forms.
- Provide recommendations for mitigating identified risks and improving third-party security posture.
- Stay informed about industry best practices and emerging threats related to third-party risk management.
What you'll need to succeed:
- Equivalent combination of education and work experience
- 3+ years of relevant industry experience ideally focused in vendor management, third-party risk management, or related enhanced vendor oversight tasks.
- Relevant certifications are preferred, such as CISSP, CISA, CRISC, or equivalent, but are not required.
- Advanced knowledge of Microsoft Office; including Outlook, Word, Excel, and PowerPoint.
- Strong analytical and organizational skills.
- Effective oral and written communication skills.
- Must be a self-driven, team player.
- Ability to work independently and as part of a team.
- Knowledge of healthcare industry regulations and standards is a plus.
Location:
BCBSRI is headquartered in downtown Providence, conveniently located near the train station and bus terminal. We actively support associate well-being and work/life balance and offer the following schedules, based on role:
- In-office: onsite 5 days per week
- Hybrid: onsite 2-4 days per week
- Remote: onsite 0-1 days per week. Permitted to reside in the following states, pending approval from the Human Resources Department: Arizona, Connecticut, Florida, Georgia, Louisiana, Massachusetts, North Carolina, Oklahoma, Rhode Island, South Carolina, Texas, Virginia
The law requires an employer to post notices describing the Federal laws prohibiting job discrimination based on race, color, sex, national origin, religion, age, equal pay, disability, veteran status, sexual orientation, and genetic information and gender identity or expression. Please visit https://www.eeoc.gov/employers/eeo-law-poster to view the "EEO is the Law" poster.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
