Enterprise Information Security Opportunities - BCBSM

With more than 7,000 employees, we are the largest health insurance company in Michigan. We offer an exciting work environment with a diverse group of employees. Our goal is to make health insurance easier for our members. We want to transform the industry and become a resource that people can trust.

Detroit, MI

Blue Cross Blue Shield of Michigan

When you think of <a href="https://www.bcbsm.com/" target="_blank" rel="noopener noreferrer">Blue Cross Blue Shield of Michigan</a> for health insurance, you can know you&rsquo;re getting much more. We're a company founded on a tradition of affordable, quality health care for everyone, improving the present and investing in the future.<br /><br />We offer:<br />Plans for employers and individuals that meet today&rsquo;s needs, budgets and lifestyle<br />The largest network of doctors and hospitals in the state<br />Lower health care costs Higher quality health care<br />Award-winning diversity practices<br />Grants and programs that promote better health throughout Michigan<br /><strong><br />Mission:&nbsp;</strong>We commit to being our members&rsquo; trusted partner by providing affordable, innovative products that improve their care and health.<br /><br /><a href="http://www.bcbsm.com/index/about-us/our-company.html" target="_blank" rel="noopener noreferrer"><strong>Click here</strong></a> to learn more about our commitment to our Social Mission, view company updates and reviews, and view our awards &amp; accolades.<br /><br />Learn more about your options as an external candidate. <a href="https://bcbsm.taleo.net/careersection/2/jobsearch.ftl?lang=en" target="_blank" rel="noopener noreferrer">Click here</a> to view open positions. http://www.bcbsm.com

keywords: security,talent acquisition,organization,leadership,training,passion,management,organization,audit,experience,communication,environment,education,organization


Competitive Compensation and Benefits Package

Overview: <p><span style="font-family: Arial;">Have you ever imagined yourself working in the Enterprise Information Security (EIS) division at Blue Cross Blue Shield of Michigan?&nbsp;&nbsp;&nbsp;Are you reluctant because you do not have the experience, training or certification to be qualified?&nbsp;&nbsp;We have great news for you!&nbsp;&nbsp;Our organization wants to know more about you and your interests.&nbsp;&nbsp;Non-traditional security requisitions have been approved, and we are looking to add motivated, energetic employees to our staff.</span></p> <p>The positions available will be based upon your skills, traits, and characteristics, so come one, come all.&nbsp;&nbsp;Our internal Talent Acquisition team will review all applicants that apply and pass along the candidates that best align with our EIS needs.&nbsp;&nbsp;Pending a mutual interest, our leadership team will then conduct a discussion around the role and your background.&nbsp;&nbsp;Job titles and levels will be determined throughout this discovery process.&nbsp;&nbsp;We are eager to start these conversations with individuals that have a passion to break into the Enterprise Information Security realm.</p> <p>Blue Cross Blue Shield of Michigan is looking to strengthen our overall core by attracting &ldquo;the best of the best&rdquo;.&nbsp;&nbsp;There are three (3) main position categories that we will be targeting first.&nbsp; &nbsp;</p>
Responsibilities: <p><span style="font-family: Arial;"><strong><u><em>Organizational Change and Business Adoption</em></u></strong></span></p> <ul> <li> <div><span style="font-family: Arial;">Strong influencer</span></div> </li> <li> <div><span style="font-family: Arial;">Development and delivery of effective presentations</span></div> </li> <li> <div><span style="font-family: Arial;">Targeted out of the box communicator</span></div> </li> <li> <div><span style="font-family: Arial;">Promote and commercialize thought processes</span></div> </li> <li> <div><span style="font-family: Arial;">Drive cultural and behavioral change</span></div> </li> <li> <div><span style="font-family: Arial;">Execute to a plan</span></div> </li> <li> <div><span style="font-family: Arial;">Obtain buy-in from the organization</span></div> </li> </ul> <p><span style="font-family: Arial;"><strong><em><u>Framework Governance and Management</u></em></strong></span></p> <ul> <li> <div><span style="font-family: Arial;">Attention to detail</span></div> </li> <li> <div><span style="font-family: Arial;">Adherence to standards</span></div> </li> <li> <div><span style="font-family: Arial;">Mapping controls to the business</span></div> </li> <li> <div><span style="font-family: Arial;">Defining ownership for the controls</span></div> </li> <li> <div><span style="font-family: Arial;">Previous SOC I, SOC II, MAR &amp; Customer Audit experience</span></div> </li> <li> <div><span style="font-family: Arial;">Audit, Compliance &amp; Legal interests</span></div> </li> <li> <div><span style="font-family: Arial;">Certification preparations</span></div> </li> <li> <div><span style="font-family: Arial;">Data analytics and reporting</span></div> </li> </ul> <p><span style="font-family: Arial;"><strong><em><u>Security Framework, Vendor and Risk Management</u></em></strong></span></p> <p><span style="font-family: Arial;">Management of the ongoing Vendor Management program which includes an integrated [with business stakeholders] approach for assessing and mitigating the risk of new/existing vendors and enterprise security risks.</span></p> <ul> <li> <div><span style="font-family: Arial;">Integration of regulatory requirements into our frameworks</span></div> </li> <li> <div><span style="font-family: Arial;">Manage Key Performance Indicators (KPIs)</span></div> </li> <li> <div><span style="font-family: Arial;">Manager Key Risk Indicators (KRIs)</span></div> </li> <li> <div><span style="font-family: Arial;">Performs risk assessments</span></div> </li> <li> <div><span style="font-family: Arial;">Experienced vendor management</span></div> </li> <li> <div><span style="font-family: Arial;">Strong communicator to set expectations</span></div> </li> <li> <div><span style="font-family: Arial;">Service Level Agreement knowledge</span></div> </li> <li> <div><span style="font-family: Arial;">Process orientated</span></div> </li> <li> <div><span style="font-family: Arial;">S<span style="font-family: Arial; font-size: medium;">trong documentation experience</span></span></div> </li> </ul>
Requirements: <ul> <li>Undergraduate university degree (4 year) required</li> <li>Master&rsquo;s degree preferred but not required</li> <li>Previous Healthcare industry experience preferred</li> <li>Effective written and verbal communication skills</li> <li>Ability to tailor communication style to audience at hand</li> <li>Frames and delivers messages based on experience and level of the listener</li> <li>Ability to convey complex technical concepts in user-friendly language</li> <li>Previous experience preparing information for, and presenting to, executive audiences</li> <li>Highly developed influencer and negotiator</li> <li>Ability to identify, analyze and prepare risk mitigation in relation to change management</li> <li>Ability to work effectively in a dynamic environment with changing requirements across multiple stakeholder groups</li> <li>Innovative mindset to pilot and implement the latest technology solutions to solve business problems</li> <li>Strong organizational, productivity, and project/program management skills</li> <li>Experience with change management and communication tools and technologies</li> <li>Strong critical thinking skills to actively pursue opportunities to develop and implement latest technology solutions to solve work problems</li> <li>Excellent skills in MS Office Suite (Word, Excel, Project, PowerPoint, Visio).</li> <li>Self-directed, works with minimal guidance, and recognizes when guidance needed</li> </ul>