Senior Analyst, Information Security Governance, Risk and Compliance

Extraordinary Careers. Endless Possibilities.

With the nation's largest home infusion provider, there is no limit to the growth of your career.

Option Care Health, Inc. is the largest independent home and alternate site infusion services provider in the United States. With over 8,000 team members including 5,000 clinicians, we work compassionately to elevate standards of care for patients with acute and chronic conditions in all 50 states. Through our clinical leadership, expertise and national scale, Option Care Health is re-imagining the infusion care experience for patients, customers and team members.

Join a company that is taking action to develop an inclusive, respectful, engaging and rewarding culture for all team members. At Option Care Health your voice is heard, your work is valued, and you're empowered to grow. Cultivating a team with a variety of talents, backgrounds and perspectives makes us stronger, innovative, and more impactful. Our organization requires extraordinary people to provide extraordinary care, so we are investing in a culture that attracts, hires and retains the best and brightest talent in healthcare.

Job Description Summary:
The Security Senior Analyst is an information security role focused on supporting IT policies, processes,

oversight, and response related to corporate wide regulatory and contractual obligations. While the Senior

Analyst will be sligned across the Governance, Risk and Compliance portfolio to include work in risk,

education and training, metrics and third party management, the Senior Analyst will focus on addressing

Option Care Health Sarbanes-Oxley (SOX) technical and other requirements and requests provided by Option

Care Health internal and external auditors including SOC2 attestation. The Senior Analyst will also support

Option Care Health access management program, ensuring that users have appropriate access to key

applications, based upon their roles.
Job Description:

Responsible for enhancing corporate-wide IT compliance with regulatory and similar requirements, such as

Sarbanes-Oxley (SOX), AICPA SOC2, Payment Card Industry and others.

Work with the business and internal/external auditors to ensure accurate and timely completion of IT SOX

testing plan and other requests.

Responsible for enhancing enterprise-wide access management policy, standards, process and audit to ensure

compliance with all national standards and regulations.

Responsible for enhancing access management; confirming proper access roles for key systems on a

quarterly basis across the enterprise.

Prepares, collects and analyzes Information Security metrics related materials and documentation in

conjunction with numerous InfoSec projects and day-to-day operations as well as SOX Compliance.

Responsible for responses to payer and other third-party corporate requests and audits on behalf of

IT.

Responsible for or supports all facets of the InfoSec Governance, Risk and Compliance program, including metrics development, data governance, incident response, education and training, and others as needed.

Supervisory Responsibilities

Does this position have supervisory responsibilities?

(I.e. hiring, recommending/approving promotions and

pay increases, scheduling, performance reviews,

discipline, etc.) No Yes

Basic Education and/or Experience Requirements

Bachelor's degree and at least 3- 5 years' experience in Information Security field and/or IDAM or business

analyst position.

Basic Qualifications & Interests (BQIs)

Understanding of Sarbanes-Oxley; experience working and/or leading SOX response.

Understanding of Access Management.

Experience working in various facets of an Information Security program, addressing issues such as third party

and other risk, regulatory compliance, education and training, and metrics development

Excellent verbal and written communication skills to collect analyze and present data. Excellent data analysis,

reporting and problem solving skills.

Demonstrates initiative, able to work independently with minimal supervision yet can work well in a team

environment and is customer focused.

Travel Requirements: (if required)

Travel unlikely, but willing to travel up to 10% of the time for business purposes (within state and out of

state).

Preferred Qualifications & Interests (PQIs)

Bachelor's degree in Information Security, Computer Science, Analytics, Education, English, Law or related

field,

Knowledge of Access management & maintaining access management

Information Security Certification

Experience with data analysis and analytics, including metrics development

Exceptional MS Excel skills

This job description is to be used as a guide for accomplishing Company and department objectives, and only covers the primary functions and responsibilities of the position. It is in no way to be construed as an all-encompassing list of duties.

Due to state pay transparency laws, the full range for the position is below:

Salary to be determined by the applicant's education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data.

Pay Range is $99,971.35-$166,611.42

Benefits:

-Medical, Dental, & Vision Insurance

-Paid Time off

-Bonding Time Off

-401K Retirement Savings Plan with Company Match

-HSA Company Match

-Flexible Spending Accounts

-Tuition Reimbursement

-myFlexPay

-Family Support

-Mental Health Services

-Company Paid Life Insurance

-Award/Recognition Programs

Option Care Health subscribes to a policy of equal employment opportunity, making employment available without regard to race, color, religion, national origin, citizenship status according to the Immigration Reform and Control Act of 1986, sex, sexual orientation, gender identity, age, disability, veteran status, or genetic information.