FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Manager, Information Security Risk and Consulting
Trinity HealthManager of Information Security Risk and Consulting at Trinity Health overseeing risk management programs and leading security risk professionals in Michigan.
Core Competencies
Role fitCore Competencies
Use this summary to align your resume positioning with the role.
Demonstrates expertise in Information Security Risk Management, with a strong focus on third-party risk and integrated risk management programs. Proven ability to lead high-performing teams and implement scalable risk management processes using GRC tools.
Highest-signal resume keywords
Information Security Risk ManagementCybersecurity Governance, Risk, And Compliance (GRC)Team Leadership And DevelopmentHealthcare Industry ExperienceGRC Platforms Experience
ATS Keywords
Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills
Risk AssessmentSecurity Risk IdentificationKey Risk Indicators (KRIs)Key Performance Indicators (KPIs)Enterprise Security PrinciplesSecurity Solutions ImplementationInformation Security RegulationsHIPAA Security Rule KnowledgeRisk Management ProcessesContinuous Monitoring
Soft Skills
Emotional IntelligenceCollaborationAccountabilityContinuous ImprovementLeadership Effectiveness
Tools & Technologies
GRC ToolsServiceNow GRCRSA ArcherOneTrust
Certifications & Qualifications
Certified Information Systems Security Professional (CISSP)Certified Information Systems Auditor (CISA)Certified Information Security Manager (CISM)Certified in Risk and Information Systems Control (CRISC)Certified in Governance, Risk and Compliance (GRCP)International Social Security Association (ISSA)
Industry Keywords
HealthcareRegulated IndustriesHIPAAISO 27001/2FISMAFIPSHITRUSTNIST Security
Tech Stack
Tools & technologiesCyber SecurityOpen SourceServiceNow
About the role
Key responsibilities & impact- The Manager, Information Security Risk and Consulting plays a critical role in executing and maturing the organization’s third-party and integrated risk management program.
- Oversight of enterprise risk assessments across commercial off-the-shelf (COTS), open source, and internally developed applications, as well as associated system integrations.
- Identify, assess, and prioritize security risks, ensuring appropriate controls are implemented.
- Drive continuous monitoring and risk-informed decision-making across the organization.
- Lead the development and reporting of key risk indicators (KRIs) and key performance indicators (KPIs).
- Oversee the design and execution of scalable risk management processes, leveraging GRC tools and automation to enhance efficiency and consistency.
- Build, develop, and lead a highly engaged, high-performing team of security risk professionals.
- Foster a culture of accountability, collaboration, and continuous improvement within a complex and evolving security environment.
- Develop and lead Trinity Health’s Information Security Third Party Risk and Integrated Risk Management Program.
Requirements
What you’ll need- Bachelor’s degree in Information Security or an equivalent combination of education and experience.
- One or more security certifications: Certified Information Systems Security Professional (CISSP), International Social Security Association (ISSA), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) Certified in Governance, Risk and Compliance (GRCP) or equivalent.
- Minimum of seven (7) years of progressive experience in information services including three (3) years working in cybersecurity governance, risk, and compliance (GRC).
- Minimum of three (3) years of management experience with demonstrated leadership effectiveness and emotional intelligence.
- Proven ability to lead, develop, and retain high-performing, highly engaged teams in complex security environments, including managing diverse talent and implementing tailored development strategies to drive individual and team success.
- Minimum of three (3) years of progressively responsible experience in healthcare and/or other regulated industries.
- Strong knowledge of the HIPAA Security Rule and applicable industry security regulations, with the ability to rapidly build and sustain expertise; working understanding of broader HIPAA requirements, including Privacy and Breach Notification Rules.
- Proven knowledge of enterprise security principles and practices, with hands-on experience or demonstrated capability in implementing, integrating, and managing security solutions across enterprise environments.
- Working knowledge of one or more information security regulations and/or frameworks - HIPAA, ISO 27001/2, FISMA, FIPS, HITRUST and NIST security.
- Experience with GRC platforms (e.g., ServiceNow GRC, RSA Archer, OneTrust, or similar) supporting risk and compliance programs.
- Demonstrated ability to leverage tooling to improve process efficiency, enable reporting, and support scalable risk management practices.
Benefits
Comp & perks- Health insurance
- Professional development opportunities