at Humana in Shreveport, Louisiana, United States
The 3rd Party Segment Lead will execute and lead a team of risk professionals in conducting cyber and regulatory-driven assessments and oversight of key 3rd Parties across designated business segments. The Lead and his/her team will work closely with Enterprise Category Management and Segment risk leaders to evaluate, monitor and mitigate risk introduced by 3rdparty vendors supporting these core business operations.
The Lead will continually foster a close working relationship with vendors and their leadership that promotes timely identification and mitigation of developing threats and security deficiencies. The Lead will also provide in-depth risk guidance to Segment leadership and make recommendations to reduce the risk footprint introduced by Third Party services.
+ Work collaboratively with Segment business areas, Risk leaders, IT, and Third Parties to improve the overall ability to safeguard Humana and its’ members data.
+ Leads development of a segment specific Third Party security strategy
+ Leads and executes end-to-end Third Party risk assessment for their designated segment.
+ Works across all areas of security (Architecture, Pen Testing, etc.) to ensure a cohesive security model from a technical and process perspective.
+ Accountable for monitoring Third Parties compliance (PCI, Offshore) with varying internal, regulatory and state requirements.
+ Drives awareness and education of Third Party cybersecurity issues for segment leaders and associates tailored to their segment’s processes and business model.
+ Lead and consult with segment and IT leaders on ad hoc requests, RFP’s and special projects.
+ Review and analyze technologies, processes, documentation and data to identify any gaps in the effectiveness of cybersecurity controls and operations that could have a direct negative impact to segment operations.
+ Awareness of emerging cybersecurity trends and help determine if/when to integrate them into the overall segment Third Party assessment strategy.
+ Broad industry, technology, and security knowledge including understanding of operations, technology, communications and processes
+ Strong communication skills with the ability to interact with Associates at all levels of the organization.
+ Negotiation skills – both with internal key stakeholders and external regulators and vendors
+ Influencing Skills – ability to influence others at multiple organizational levels, to lead and work in a team environment; ability to lead collaborative efforts with user, development, business and support groups.
+ A minimum of 5 years’ experience performing organizational IT audit and/or IT security risk assessments
+ Bachelor’s Degree in Business, Information Technology, or a related field
+ Proficient understanding of – and experience with – audit, regulatory requirements and standards (SOC2, ISO, HITRUST), and other related standards and certification processes required
+ Strong ability to assess urgency and prioritization and make well informed decisions based upon situational circumstances
+ Excellent communication skills with the ability to influence others
+ Ability to travel up to 10% of the time
+ Industry Certifications: CISA, CISSP, HCISPP, CCSP, CISM, CTPRP, etc.
+ Master’s Degree in Computer Science, Information Technology, Information Security or a related field
+ Accountability: Meets established expectations and takes responsibility for achieving results; encourages others to do the same.
+ Collaborates: Engages others by gathering multiple views and being open to diverse perspectives, focusing on a shared purpose that puts Humana’s overall success first.
+ Customer Focus: Connects meaningfully with customers to build emotional engagement and customer advocacy. Simplifies complexity and integrates internal efforts to deliver an optimal customer experience.
+ Acts Strategically : Makes decisions and sets strategy based on the long-term vision, uses an enterprise-wide perspective to translate strategies into actions, inspires others to embrace and advance the strategy, and creates a clear view of the future state.
+ Interpersonal Effectiveness : Understands oneself, effectively manages emotions, listens and communicates with respect, and builds trusting relationships.
+ Leads Change: Guides and energizes others, models adaptability, and inspires strong organizational performance through periods of transformation, ambiguity, and complexity.
+ WAH requirements: Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.
+ A minimum standard speed for optimal performance of 25×10 (25mpbs download x 10mpbs upload) is required.
+ Satellite and Wireless Internet service is NOT allowed for this role.
+ A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information
Humana and its subsidiaries require vaccinated associates who work outside of their home to submit proof of vaccination, including COVID-19 boosters. Associates who remain unvaccinated must either undergo weekly negative COVID testing OR wear a mask at all times while in a Humana facility or while working in the field.
Scheduled Weekly Hours
Humana complies with all applicable federal civil rights laws and does not discriminate on the basis of race, color, national origin, age, disability, sex, sexual orientation, gender identity or religion. We also provide free language interpreter services. See our https://www.humana.com/legal/accessibility-resources?source=Humana_Website.