• Sr Manager, Risk & Compliance

    Job Locations US-MD-Bowie
    Requisition ID
    Category (Portal Searching)
    Information Technology
  • Overview

    Inovalon is a leading technology company that combines advanced cloud-based data analytics and data-driven intervention platforms to achieve meaningful insight and impact in clinical and quality outcomes, utilization, and financial performance across the healthcare landscape. Inovalon's unique achievement of value is delivered through the effective progression of Turning Data into Insight, and Insight into Action.


    The Senior Manager of Risk and Compliance will be responsible for managing the technology and technology audit activities.  This position will be an integral part of the compliance and strategy financial reporting team working closely with the AVP, Security, Risk & Compliance and Chief Security Officer supporting senior leadership in the planning, implementation, and execution of the internal technology audit strategy delivering and driving focused compliance and controls program companywide.


    • Develop strategies and solutions to vulnerabilities and deficiencies within business processes, application development process, security practices and other computer related processes;
    • Leading efforts as a subject matter expert for company-wide internal technology audit engagements, including planning, executing, directing, and completing, demonstrating that Inovalon information systems are compliant with appropriate corporate policies, industry standards, government regulations, and contractual requirements;
    • Support the internal and external audit process including, but not limited to the preparation, documentation and control of requirements/evidence, interacting with stakeholders and aiding the testing process;
    • Subject Matter expert and lead for Inovalon’s HITRUST Certification Program, including the planning, ongoing validation, and reporting of our requirements to third parties.  Responsible for monitoring and oversight of Inovalon’s affiliates.
    • Responsible for oversight of management’s SOC-1 and SOC-2 audits, including continuous monitoring regarding control design and effectiveness.
    • Collaborate and serve as trusted advisor for technology compliance activities and programs for Inovalon affiliates. 
    • Manage and perform self-assessment program for key controls of Inovalon’s vendors, to identify and escalate emerging risk in the outsourced activities;
    • Conduct onsite vendor assessments to ensure compliance with HIPAA and other regulations;
    • Manage client security assessments and questionnaires in support of client audits and sales opportunities
    • Lead routine internal and ad hoc compliance, network and security audits consistent with IT general computing controls for Sarbanes-Oxley (SOX) compliance and corporate policies and procedures;
    • Work with different organizational leaders on implementation, execution and compliance of level controls building relationships in support this strategy;
    • Prepare comprehensive and complete reports and briefings to management such as:
    • Gap assessment reporting with compliance methodology and planned rollout
    • Process documentation with end to end process narratives and flow charts
    • Quarterly, annual testing and reporting and that includes reconciliations; and
    • Audit risk assessment reporting and recommending effective control improvements.


    • Bachelor of Science degree in a Technology, Business, Finance/Accounting or related program.
    • Minimum 5-7 years of progressive management experience supporting information technology projects, compliance, audits information security and computer security;
    • Highly motivated self-starter with the ability to multitask and complete assignments within time constraints and deadlines;
    • Leadership experience in organizing, planning and executing projects from conceptualization through implementation across multiple internal and external reporting and organizational lines;
    • Ability to motivate teams to produce quality materials within tight timeframes and simultaneously manage several projects required;
    • Extensive experience and understanding of the HITURST control framework, including the implementation of control requirements and reporting; and
    • Preferred Certifications: CISA, CISSP, CISM.

    Inovalon provides equal employment opportunities (EEO) to all employees and applicants for employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, or protected veteran status and will not be discriminated against on the basis of disability.



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed