Employers Only
  • Mission Hospitals
  • Parsons
  • Monsanto
  • Enterprise Rent A Car
  • MillerCoors
  • Kaiser Permanente
  • Wells Fargo
  • Federal Home Bank
  • Nestle USA
  • Wheaton Franciscan Healthcare
  • Coventry Health Care
  • TD Ameritrade
  • WellPoint
  • ServiceMaster
  • PwC
  • Gwinnett Health Systems
  • Cisco
  • Methodist Hospital System
  • Verizon Wireless
  • Yum! Brands
  • JPL
  • Yoh Company
  • Johnson & Johnson Family of Companies
  • Northrop Grumman
  • National Security Agency
  • Liberty Property
  • Rush University Medical Center
  • Conoco Phillips
  • Ryder System
  • IBM

Kaiser Permanente

IT Compliance Consultant Specialist

Job Information

Posted:

Friday, January 25, 2013

Modified:

Monday, February 11, 2013

Division:

Kaiser Permanente Information Technology (KPIT)

Salary: 

0

Location: 

Greenwood Village Colorado USA

Job ID:

167497 (Kaiser Permanente Job ID)

HireDiversity Job ID:

3569930

Job Text


Location: Englewood, CO or Lake Oswego, OR

The IT Compliance Consultant will be required to know and learn the Kaiser Compliance IT General Controls (ITGCs), including maintaining standards, providing strategic approaches for sustainability. Develop processes for new and changed Compliance(SOX, HIPAA, PCI, Security) requirements. Perform complete Audit walk through (Self Assessments). Supports overall Database Services department Compliance projects at the database layer.

Essential Functions:
- Perform the role of an Internal Auditor/SME to audit DBS compliance controls, find gaps, provides solution, and remediate, so that External Audits will not be the first to discover the gaps.
- This Compliance Consultant at Kaiser Permanente will be accountable for maintaining, developing, improving, and managing the database Compliance processes, standard procedures, and enforcement of processes to enable compliance with SOX, HIPAA, PCI, and other compliance control requirements.
- Provide leadership and overall coordination for delivery of Database Services Compliance initiatives, remediation and sustainability.
- Allocate and manage resources across multiple Compliance initiatives, remediation and sustainability processes.
- Create and communicate Compliance status to Executives
- Represent Database Services in Compliance and Audit meetings and validate that Audit findings are correct and within Scope
- Develop database remediation strategy and solution for the Audit findings
- Define and create database Compliance narratives and governance policies
- Work closely with internal and external auditors to supply SOX testing evidence.
- Review internal procedures to ensure compliance under SOX, PCI, and HIPAA policies.
- Work with Database Services to create compliance reports. Work with database SOX analysts to ensure the review process and timeline are followed. Ensure management reviews and approves these reports and then store reports in StarTeam.
- Work with Database Services and Information Security groups to create Access Control List quarterly and distribute to relevant control owners for review. QA the attestation to ensure the review is thorough.
- Develop new methodologies and standards for supporting enterprise compliance initiatives.
- Consistently support compliance and the Principles of Responsibility (Kaiser Permanente's Code of Conduct) by maintaining the privacy and confidentiality of information, protecting the assets of the organization, acting with ethics and integrity, reporting noncompliance, and adhering to applicable federal, state and local laws and regulations, accreditation and licenser requirements (if applicable), and Kaiser Permanente's policies and procedures.
- Perform change management activities using enterprise tools.
- Lead regular department compliance reviews.
- Develop and perform sustaining self-assessment audit per IT Compliance and SOX PMO guidelines.
- The Compliance Consultant will work with all levels of management, and any internal/external auditors to ensure compliance of all SOX and audit programs.
- Evaluate, recommend and maintain database compliance tools to monitor, track and, measure compliance and remediate any issues.
- Help to manage the end-to-end SOX and HIPAA program from initial process recommendation to tool selection.
- Develop and maintain relationships with all SOX Control Owners and managers on a day to day basis regarding any SOX issues. Provide them with support and act as a Subject Matter Expert.
- Assess, recommend and provide SOX training to the SOX Control Owners, Business Partners and management team on all current applications, new in-scope applications and projects. Recommend appropriate and relevant training to support all IT projects and department goals.
- Responsible for leading, tracking and monitoring Compliance projects and database remediation efforts.
- Responsible for managing database Compliance documentation and coordinating the compliance testing following IT Compliance standards and company 404 standards
- Coordinate with IT personnel across the organization to implement required controls and maintain appropriate evidence
- Develop and maintain Compliance internal control list for new system implementations. Track and monitor new system implementations to help ensure internal controls are considered throughout the project; insert appropriate internal control personnel to create documentation around implementations.
- Develop and maintain positive working relationships with any internal and external auditors.
- Exhibit leadership ability to motivate, set achievable objectives, maintain a positive outlook, take responsibility, make decisions and provide constructive feedback.

Qualifications:

Basic Qualifications:
- Bachelor's degree or 4 years of equivalent work experience.
- Minimum of 10 years IT working experience
- 5 years experience working as an IT Auditor and/or IT project manager
- 2 years of experience in auditing/business analysis/consulting.
- 2 years of experience in implementing SOX/HIPAA processes.
- 5 years experience in process development, documenting and training.
- Proficiency with Microsoft Office Suite (Word, Excel, Access, PowerPoint)
- Very strong oral and written communication skills
- Must be able to utilize and effectively communicate technical components of an initiative to applicable parties.
- Excellent analytical skills.
- Ability to work effectively with all levels of staff, management, external auditors, vendors, and business units.
- Team-Oriented and strong interpersonal skills

Preferred Qualifications:
- 3-5 Years on relational database administration preferred
- Proficiency with SharePoint is preferred.
- Proficiency with Remedy is preferred.
- Excellent verbal, written and communication skills
- Well organized and detail oriented
- Excellent responsiveness and reliability
- Ability to work under pressure in a fast paced environment and meet tight deadlines
- Identify and escalate situations requiring urgent attention
- Experience in internal consulting and customer account management; defining engagement scope, negotiating commitments, gathering requirements, defining deliverables, designing integrated solutions, and overseeing technical implementations considered a plus
- Multi-platform DBMS administration skills, such as DB2 z/OS, Oracle/UNIX, SQL Server, Sybase.





External hires must pass a background check/drug screen.
We are proud to be an equal opportunity/affirmative action employer.

Save job

named

Share This Job!

Diversity Events