Humana Lead Information Technology Cloud Risk Governance (Remote) in Davenport, Iowa
The Lead, IT Compliance audits the most complex new and existing information systems applications to ensure that appropriate controls exist, that processing is efficient and accurate, and that information systems procedures are in compliance with corporate standards. The Lead, IT Compliance works on problems of diverse scope and complexity ranging from moderate to substantial.
Humana's Information Technology function is on a journey into the Cloud! This is both an exciting and challenging strategic shift. With these changes, the IT Risk Governance function is looking for a dynamic leader who has a firm grasp of cloud technology and IT Risk Management. Are the type of person who can see around corners and predict outcomes? Do you enjoy ambiguity in a fast-paced environment? This is the job for you! Apply now!
You will assist the Director of the ITRG in implementing an IT Risk Governance framework within Humana's rapidly expanding Cloud environment. You will be required to work with various levels of IT leadership, professionals, and technicians in the performance of your role. You will be consulting with management on risk and control topics associated with the migration, management, and ownership of Cloud assets. This role will require in-depth work with multiple Cloud Service Provider (CSP) models, frameworks, best practices, legacy migrations, and their associated risks. The role will also require a high degree of expertise in compliance and audit requirements associated with SOX, SOC-1, SOC-2, PCI, etc.
Key responsibilities include:
Performing Cloud-Focused IT Risk assessments and reviews
Consulting and guiding IT leaders on risk and control best practices associated with enabling operational capabilities in a cloud environment.
Ability to guide leaders on risks associated with migrating large enterprise legacy systems into a Cloud Environment.
Proactively guide management on topics of migrating compliance controls (SOX, PCI, SOC-1, SOC-2) from existing systems into a cloud environment.
Ability to perform Risk Control Self-Assessments (RCSA) in a Cloud-Enabled environment
A combined 5-10 years' experience in IT Audit and/or IT Risk Management
Successful track record in facilitating and consulting across teams and managing projects
Strong focus on attention to detail and documentation skills.
Excellent communication skills, both oral and written
Past experience with Cloud Security Alliance (CSA) Cloud Security Matrix and associated domains
Familiarity with the NIST Cloud Computing Referencing Architecture (800 Series) and associated standards
Direct experience performing cloud, IT, and/or risk reviews and audits
Certifications - CISA
Ability to operate in ambiguity
Experience integrating new technologies with existing technologies
Experience implementing technologies with enterprise-wide impact
Possess a solid understanding of operations, technology, communications and processes
Ability to work in a fast paced, dynamic and changing environment while managing multiple projects simultaneously
Certifications - PMP, CISSP, CRISC, CGEIT, CCSP, CompTIA Cloud + Experience with Enterprise Solution Point (ESP)
AWS, Google, and Azure Cloud certifications a plus
Scheduled Weekly Hours
- Humana Jobs