This site uses cookies. To find out more, see our Cookies Policy

Risk Specialist in Alpharetta, GA at CIOX Health

Date Posted: 8/27/2018

Job Snapshot

Job Description

Job purpose:

Ciox Health is the single largest access point for meaningful health information in the country. We are embedded in more provider sites across the country the majority of the U.S. delivery system as their release of information partner. In addition, we connect numerous provider sites through our field technicians and technology platform for record retrieval. This makes us uniquely positioned to help break down interoperability barriers and bring access to health information to all those who need it regardless of location, EMR, or health system affiliation.

Working in an enterprise capacity and as a professional colleague within the Enterprise Risk Management (ERM) department, the Risk Specialist is responsible to perform risk assessments, interface with clients, policy management, and maintenance of the company Risk Register. This position will function as a supporter of key strategic initiatives including evolving and enhancing Corporate Enterprise Risk Management Service offerings related to technology, operations, cybersecurity and advisory engagements.

The Risk Specialist will provide support to the internal Corporate Audit Group, interface with ERM leadership, maintain Governance Risk and Compliance tools, coordinate Vendor Risk validations with company vendors. The position is integral to the safety and security of our customers information to ensure the effectiveness of internal control process throughout the company.

Duties and responsibilities:

  • Interface with all business units to support business and risk reduction initiatives;
  • Ability to effectively communicate / liaison with business and technology stakeholders;
  • Research and augment Ciox Healths Technology Risk Management Strategy (as needed);
  • Operate, contribute and collaborate with ERM peers;
  • Identifies and proposes solutions to complex cross-platform security / risk issues;
  • Knowledge of both infrastructure and application security and risk models;
  • Critical thinking and logical reasoning skills;
  • Assist in the development and execution of an enterprise-wide adaptive risk-based ERM program;
  • Extensive involvement in enterprise transformation efforts, initiatives, and activities, providing expertise and recommendations;
  • Assist with operation of Governance, Risk and Compliance tools;
  • Promote thought leadership for new and innovative ideas of executing engagements to drive value and continuous improvements in the delivery of ERM (consulting) services;
  • Collaborate with other leaders and team members to enable and support effective audit and risk practices throughout the company;
  • Liaise with external ERM partners and regulatory entities as necessary and appropriate, to enable and support the examination process and further enable a strong regulatory posture;
  • Develop knowledge of the business to enhance advisory opportunities and department value add
  • Enhance advisory opportunities and support value proposition for the Compliance Department; and
  • Maintain and support an execution focused environment

Job Requirements


  • Bachelors Degree in Business related field;
  • Relevant Professional Certifications; (CAP, CRISC, relevant technology certifications);
  • Experience with Risk Based Analysis methods (HITRUST, NIST 800-30, ISO 31000);
  • In-depth understanding of the Auditors Code of Ethics and the Standards for the Professional Practice of Internal Auditing as developed by the Institute of Internal Auditors;
  • 2 - 4 years relevant experience performing Risk Assessments / Analysis initiatives;
  • Familiarity with technology architecture concepts (e.g. TOGAF, OESA);
  • Experience with layered security models (e.g. Defense-in-Depth)
  • Familiarity with Best Practice and Information Security principles
  • Proficiency in Process / Workflow analysis

Preferred Requirements, Skills and Knowledge:

  • Masters / Advanced Degree in Business related field
  • Relevant Professional Certifications; (CRISC, CISSP, CISM);
  • PMP or equivalent Project Management competencies;
  • 3+ years relevant experience leading Risk Management initiatives

Soft Skill Requirements:

  • Exceptional interpersonal and communication skills both written and verbal.
  • Absolute commitment to customer service and a can-do attitude.
  • Self-starter, working knowledge of best operational practices, ability to understand the complex working of the internal workflow systems and the interrelationship of systems within the workflow.