The UKI Risk & Compliance Manager is a comprehensive role responsible for regional risk management reporting, compliance and operational processes, including business process and internal controls, as well as Verification, Validation, Accreditation and Compliance for regional Healthcare projects.
In addition, the post holder will proactively work on the necessary interactions to achieve local accreditations for InterSystems products and local Editions as required by UK regulatory agencies.
This regional expert will advise customers, internal staff, and regional leadership on Verification and Validation strategies while working within InterSystems’ Global Trust Compliance team on local risk management and compliance.
Identify key risks and controls, knowledge of management controls readiness, controls optimization, including the configuration of controls
Applying internal control principles and business / technical knowledge, such as information technology general controls and application controls;
risk reporting concepts; working experience applying professional skepticism skills
Interacting with customers on solutions and executing projects on customer engagements, forming customer relationships and demonstrating an understanding of the customer’s business
Nurturing a positive environment, monitoring workloads of the team while meeting management expectations, and respecting work-life quality.
This includes providing candid, meaningful feedback in a timely manner and keeping leadership informed of progress
Work as a pre-sale resource on bids to advise on and respond to the prospect’s Verification, Validation, Accreditation and Compliance requests
Work with the Implementation team to oversee the delivery of Verification, Validation, Accreditation and Compliance activity in line with Company IMS.
Be aware and maintain up-to-date awareness of the requirements of relevant national and local accreditation and standards bodies.
Advise the UK Implementation Management team on current and forthcoming changes in mandatory accreditations and standards.
Liaison with UK Government Agencies on Information Security Management matters
5+ years of risk management, auditing and / or process assessment.
Thorough skills and abilities related to controls around the risk reporting, compliance and operational processes within an organization, including business process and internal controls.
Experience leading the adaption of a work program and practice aid, as well as perform assessments, using relevant tools to evaluate controls and potential for optimization
Project management skills, including developing project plans, resource budgets, and deliverables schedules
Demonstrated knowledge of providing services related to controls around the risk reporting, compliance and operational processes, including business process and internal controls, which includes a proven record of success with facilitating and completing deliverables involving the following : Risk management reporting on business risks, processes and controls;
COSO Framework, ISO Standards (9001, 13485, 14000, 20000, 22301, 27001 / 2, 27701, 30000), CoBIT and / or other leading business and control frameworks;
Current and emerging risk governance processes and trends;Key domains of internal controls, change management, process governance, and development life cycle.
Experience working in a regulatory environment in healthcare.
Knowledge of and experience with standard industry best practices for verification and accreditation.
Experience of working with NHS Digital, MHRA and / or other UK accreditation bodies.
Awareness of mandatory standards and accreditations for healthcare IT systems including for connectivity to UK national NHS systems.
Experience of working in Verification and Validation situations in aspects such as Test strategies, plans and execution.
Able to advise customer and internal staff on optimal strategies.
Experience dealing with complex application deployments.
Bachelor's degree in one of the following : Accounting, Finance / Economics, Management, Information Systems, Computer Science, Business, Science, Technology, Engineering & Mathematics and / or other business field of study.