DELTA DENTAL: Expert Cyber Risk Management Capability Assessor

Elevated Resources

San Francisco, California

JOB DETAILS
SKILLS
Documentation, Gap Analysis, HIPAA (Health Insurance Portability and Accountability Act), Industry Standards, Internet Security, Legal, Maintain Compliance, Metrics, Organizational Development/Management, Process Capability, Regulations, Regulatory Compliance, Reporting Skills, Risk Analysis, Risk Management, Risk Management Framework (RMF), U.S. National Institute of Standards and Technology (NIST), Web Application Framework
LOCATION
San Francisco, California
POSTED
30+ days ago

The Expert Cyber Risk Management Capability Assessor will assess the effectiveness and conduct risk assessments of cyber risk management capabilities, including policies, processes, and technical capabilities, leveraging Delta Dentals enterprise cyber risk management requirement and control framework. In addition, they will have responsibilities to maintain the framework, harmonizing emerging regulations and cyber security frameworks to the framework, updating it and revising capability effectiveness criteria in collaboration with capability owners as needed.

Responsibilities

Cyber Risk Management Capability Assessments: Conduct in-depth assessments of the effectiveness of cyber risk management capabilities within the organization.
Gap Analysis: Identify gaps in cyber risk management capability effectiveness and provide recommendations for enhancing the organization's cyber risk management posture.
Documentation & Reporting: Develop detailed reports and documentation on assessment findings, remediation plans, and effectiveness metrics.
Stakeholder Collaboration: Work closely with cyber risk management, technology, and business partners to ensure that cyber risk management capabilities are effective.
Compliance, Standards, and Regulatory Alignment: Ensure adherence to regulatory and industry standard requirements such as NIST 800-53, SOC 2, 23 NYCRR 500, NAIC Model Law, and HIPAA, by harmonizing those requirement sets to the enterprise cyber risk management requirement framework. As regulations and standards are introduced and updated, enhance and extend the framework.

 

About the Company

E

Elevated Resources