The IT Policy Writing Subject Matter Expert will provide expertise in the development, analysis, and implementation of Information Technology policies to support Blue Shield of California's mission. This role requires an in-depth understanding of health insurance, insurance and privacy laws and regulations, industry standards, and policy development processes to ensure that organizational policies are effective, compliant, and aligned with strategic objectives. In this role you will be instrumental in managing the the Information Technology Policy Life Cycle (ITPLC). The ITPLC provides the means to ensure that information technology policies and standards address current and changing organizational needs, technology advancements, risk appetite, and business goals.
Responsibilities
Your Work
In this role, you will:
Policy Development:
Lead the development, writing, updating, editing, and review of policies related to organization's initiatives
Analyze effectiveness of policies and recommend improvement opportunities to management
Work autonomously and as a member of a highly- collaborative team
Independently research to collect information using diverse sources as the groundwork for developing legally and technically sound policies
Stakeholder Engagement:
Collaborate with internal stakeholders to gather input and feedback on policy development
Facilitate discussions and consultations with subject matter experts, legal advisors, Human Resources, Blue Cross Blue Shield (BCBS) association and regulatory experts
Authorization, Documentation and Reporting:
Obtain authorization for new policies and revisions to policies from the policy Owner (e.g., Vice President)
Track policy documents to ensure policies are regularly reviewed, revised, approved, and posted to the policy repository
Publish policies, work with organizational management to ensure accessibility, and ensure changes to policies are promptly and formally communicated
Prepare detailed reports on policy development activities, outcomes, and compliance status
Regulatory Compliance:
Monitor and analyze changes in federal and state healthcare and privacy regulations that may impact policies
Ensure policies are aligned with Blue Shield's strategic goals
Provide guidance on regulatory, BCBS association, and industry standards requirements and best practices to internal teams
Provide requested information and/or documentation for internal and external audits
Training and Education:
Educate staff and stakeholders on policy requirements and compliance obligations
Provide ongoing support and clarification on policy-related questions and issues
Qualifications
Your Knowledge and Experience
Requires a bachelor's degree or equivalent experience and a minimum of 7 years of prior relevant experience
Requires 3 years of experience revising/writing IT Policies
Certifications (preferred):
CISM - Certified Information Systems Manager
CRISC - Certified in Risk and Information Systems Control
CISSP - Certified Information Systems Security Professional
Experience with compliance and understanding of health insurance laws and regulations, information technology, information security, and privacy laws and regulations
Strong writing, editing, proofreading, and communication skills
In-depth knowledge of industry best practices, and policy development
Excellent analytical and critical thinking abilities
Facilitating/Presenting both in-person and virtual discussions on related policy topics
Ability to work collaboratively with diverse stakeholders
Detail-oriented with strong organizational and project management skills
Proficiency in using research tools and software
Laws and Regulatory knowledge:
The Health Insurance Portability and Accountability Act of 1996 (HIPAA),
Health Information Technology for Economic and Clinical Health Act (HITECH Act)
Code of Federal Regulations Title 45 - Parts 160 and 164 (Health Care Security and Privacy)
Centers for Medicare & Medicaid Services (CMS)
Sarbanes-Oxley Act of 2002 (Section 404 - Internal Controls)
Gramm-Leach-Bliley Act (Privacy Policies and Practices)
Association and Industry knowledge:
Payment Card Industry (PCI)
National Institute of Standards and Technology (NIST): Cybersecurity Framework and Security and Privacy Controls for Information Systems and Organizations (800-53 r5)
Blue Cross Blue Shield (BCBS) Association
Cloud Security Alliance (CSA)
Pay Range:
The pay range for this role is: $ 118800.00 to $ 178200.00 for California.
Note:
Please note that this range represents the pay range for this and many other positions at Blue Shield that fall into this pay grade. Blue Shield salaries are based on a variety of factors, including the candidate's experience, location (California, Bay area, or outside California), and current employee salaries for similar roles.
#LI-CM1
About Blue Shield
Blue Shield of California's mission is to ensure all Californians have access to high-quality health care at a sustainably affordable price. We are transforming health care in a way that genuinely serves our nonprofit mission by lowering costs, improving quality, and enhancing the member and physician experience.
To fulfill our mission, we must ensure a diverse, equitable, and inclusive environment where all employees can be their authentic selves and fully contribute to meet the needs of the multifaceted communities we serve. Our continued commitment to diversity, equity, and inclusion upholds our values and advances our goal of creating a healthcare system that is worthy of our family and friends while addressing health disparities, promoting social justice, and integrating health equity through our products, business practices, and presence as a corporate citizen.
Blue Shield has received awards and recognition for being a certified Fortune 100 Best Companies to Work, Military Friendly Employer, People Companies that Care, a Leading Disability Employer, and one of California's top companies in volunteering and giving. Here at Blue Shield, we strive to make a positive change across our industry and communities - join us!
Our Values:
Honest. We hold ourselves to the highest ethical and integrity standards. We build trust by doing what we say we're going to do and by acknowledging and correcting where we fall short.
Human. We strive to be our authentic selves, listening and communicating effectively, and showing empathy towards others by walking in their shoes.
Courageous. We stand up for what we believe in and are committed to the hard work necessary to achieve our ambitious goals.
Our Workplace Model:
Blue Shield of California is dedicated to making work-life balance a reality. Whether you prefer to work in an office or from home, we understand flexibility is more important than ever. That's why Blue Shield is a hybrid company, offering you the opportunity to decide where you can do your best and most meaningful work.
Two ways of working: Hybrid (our default) and office
Hybrid - In a business unit approved office a few times per year to 3 days per week, on average
Office - In a business unit approved office 4+ days a week, on average. If the role you're applying for is deemed an "Essential Role," the company has determined that the role can only be performed in a Blue Shield office or in the field and would require your to meet the office worker classification.
Physical Requirements:
Office Environment - roles involving part to full time schedule in Office Environment. Due to the current public health emergency in California, Blue Shield employees are almost all working remotely. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.
Please click here for further physical requirement detail.
Equal Employment Opportunity:
External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, State and local laws.