To be successful in this role, the Director of Risk Management must be able to clearly communicate cyber risks to all levels of the organization. This leader will be key in implementing a risk ...
To be successful in this role, the Director of Risk Management must be able to clearly communicate cyber risks to all levels of the organization. This leader will be key in implementing a risk ...
To be successful in this role, the Director of Risk Management must be able to clearly communicate cyber risks to all levels of the organization. This leader will be key in implementing a risk ...
To be successful in this role, the Director of Risk Management must be able to clearly communicate cyber risks to all levels of the organization. This leader will be key in implementing a risk ...
Risk Manager
Nashville, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
Risk Manager
Nashville, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
Risk Manager
Franklin, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
Risk Manager
Franklin, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
The Aga Khan Schools (AKS), an agency of the Aga Khan Development Network (AKDN), is a global education system of schools, hostels and non-formal education programmes, serving more than 120,000 ...
The Aga Khan Schools (AKS), an agency of the Aga Khan Development Network (AKDN), is a global education system of schools, hostels and non-formal education programmes, serving more than 120,000 ...
Risk Manager
Lebanon, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
Risk Manager
Lebanon, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
Risk Manager
Murfreesboro, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
Risk Manager
Murfreesboro, TN · On-site
Maintain risk management statistics and files in compliance with Joint Commission and state and federal agencies; promote maximum confidentiality by limiting access of such information. * Collect ...
The Aga Khan Schools (AKS), an agency of the Aga Khan Development Network (AKDN), is a global education system of schools, hostels and non-formal education programmes, serving more than 120,000 ...
The Aga Khan Schools (AKS), an agency of the Aga Khan Development Network (AKDN), is a global education system of schools, hostels and non-formal education programmes, serving more than 120,000 ...
We are seeking a Nashville-based Risk Officer to join our Institutional Investment Management Operations and Risk Team (IIM Ops/Risk). This role will play an integral part in mitigating risks within ...
We are seeking a Nashville-based Risk Officer to join our Institutional Investment Management Operations and Risk Team (IIM Ops/Risk). This role will play an integral part in mitigating risks within ...
Risk Manager
Nashville, TN · On-site
We are seeking a Nashville-based Risk Officer to join our Institutional Investment Management Operations and Risk Team (IIM Ops/Risk). This role will play an integral part in mitigating risks within ...
Risk Manager
Nashville, TN · On-site
We are seeking a Nashville-based Risk Officer to join our Institutional Investment Management Operations and Risk Team (IIM Ops/Risk). This role will play an integral part in mitigating risks within ...
... models on high risk integrations and partner with Security SMEs for deeper diligence • Manage and prioritize a portfolio of complex security risk reviews and initiatives simultaneously, balancing ...
... models on high risk integrations and partner with Security SMEs for deeper diligence • Manage and prioritize a portfolio of complex security risk reviews and initiatives simultaneously, balancing ...
SR RISK MANAGER
Knoxville, TN · On-site
Designs and implements risk management surveys and studies; conducts surveys, studies, and special projects to assist in long-term planning and changes to facility policies and systems that reduce ...
SR RISK MANAGER
Knoxville, TN · On-site
Designs and implements risk management surveys and studies; conducts surveys, studies, and special projects to assist in long-term planning and changes to facility policies and systems that reduce ...
SR RISK MANAGER
Knoxville, TN · On-site
Designs and implements risk management surveys and studies; conducts surveys, studies, and special projects to assist in long-term planning and changes to facility policies and systems that reduce ...
SR RISK MANAGER
Knoxville, TN · On-site
Designs and implements risk management surveys and studies; conducts surveys, studies, and special projects to assist in long-term planning and changes to facility policies and systems that reduce ...
The Manager, Risk Management is responsible for facility-wide risk management activities, that include risk management operations, loss prevention including patient safety, claims management, risk ...
The Manager, Risk Management is responsible for facility-wide risk management activities, that include risk management operations, loss prevention including patient safety, claims management, risk ...
Operational Risk Manager
Nashville, TN · On-site
Leads and mentors risk management team in the development and execution of risk frameworks, works closely with business units to support risk-aware decision making, enhancement of organizational ...
Operational Risk Manager
Nashville, TN · On-site
Leads and mentors risk management team in the development and execution of risk frameworks, works closely with business units to support risk-aware decision making, enhancement of organizational ...
Oversee the Clinical Risk Management department, including a specialized correctional health clinical claims director nurse, to develop a comprehensive risk management model. * Collaborate with ...
Quick apply
Oversee the Clinical Risk Management department, including a specialized correctional health clinical claims director nurse, to develop a comprehensive risk management model. * Collaborate with ...
Operational Risk Manager
Memphis, TN · On-site
Leads and mentors risk management team in the development and execution of risk frameworks, works closely with business units to support risk-aware decision making, enhancement of organizational ...
Operational Risk Manager
Memphis, TN · On-site
Leads and mentors risk management team in the development and execution of risk frameworks, works closely with business units to support risk-aware decision making, enhancement of organizational ...
Insurance & Risk Manager
Oak Ridge, TN · On-site
... cost models Requirements REQUIREMENTS: * Bachelor's degree in finance, business, law, or related discipline. * 10-15 years of progressive experience in corporate insurance, risk management, or ...
Insurance & Risk Manager
Oak Ridge, TN · On-site
... cost models Requirements REQUIREMENTS: * Bachelor's degree in finance, business, law, or related discipline. * 10-15 years of progressive experience in corporate insurance, risk management, or ...
The Opportunity As a Risk Management - Contract Specialist - Managed Services - Senior Manager, you will lead initiatives in enterprise risk management, focusing on business continuity, risk model ...
The Opportunity As a Risk Management - Contract Specialist - Managed Services - Senior Manager, you will lead initiatives in enterprise risk management, focusing on business continuity, risk model ...
The Manager, Risk Management is responsible for facility-wide risk management activities, that include risk management operations, loss prevention including patient safety, claims management, risk ...
The Manager, Risk Management is responsible for facility-wide risk management activities, that include risk management operations, loss prevention including patient safety, claims management, risk ...
Manager Model Risk Management information
What is the difference between Manager Model Risk Management vs Model Risk Analyst?
| Aspect | Manager Model Risk Management | Model Risk Analyst |
|---|---|---|
| Credentials | Typically requires advanced degrees (e.g., MBA, Master's in Finance or Risk), certifications like FRM or CFA | Often requires similar credentials, such as FRM or CFA, but may have less emphasis on managerial certifications |
| Work Environment | Leads teams, manages risk frameworks, and interacts with senior management | Performs detailed risk analysis, supports model validation, and reports findings |
| Employer & Industry Usage | Common in banking, asset management, and financial institutions | Found in similar environments, often as a supporting role to managers |
The Manager Model Risk Management oversees the entire model risk framework, manages teams, and interacts with senior stakeholders. In contrast, the Model Risk Analyst focuses on detailed analysis, validation, and reporting of models. Both roles require similar credentials but differ in scope and responsibilities.

Other
Medical, Dental, Vision, Life, Retirement, PTO
Re-posted 14 hours ago
HCA Healthcare rating
6.4
Based on 2,241 frontline employees who took The Breakroom Quiz
637th of 884 rated healthcare providers
Job description
This position is incentive eligible.
Introduction
Do you want to join an organization that invests in you as a Director of Information Protection Security and Risk? At HCA, you come first. HCA Healthcare has committed up to $300 million in programs to support our incredible team members over the course of three years.
Benefits
At HCA, we want to ensure your needs are met. We offer eligible colleagues an attractive benefit package that includes medical, wellbeing, dental and vision benefits along with some unique benefits including:
- Medical, Dental, Vision, Life Insurance and Flexible Spending
- Paid Time Off (PTO) and Personal Leave
- 401K (100% annual match - 3% to 9% of pay based on years of service)
- Academic Assistance and Reimbursements for Tuition and Student Loans
- Employee Discounts including Tickets, Retail, Mental Health Apps, Education Apps, Identity Theft Protection etc.
- Home, Auto, and Pet Insurance
- Employee Stock Purchase Program (ESPP)
- Short Term & Long Term Disability coverage
- Adoption Assistance
- Legal Benefits and lots more!
Learn more about Employee Benefits
You contribute to our success. Every role has an impact on our patients’ lives and you have the opportunity to make a difference. We are looking for a dedicated Director of Information Protection Security and Risk like you to be a part of our team.
Job Summary and Qualifications
The Director of Information Protection & Security (IPS) Risk Management leads the risk management function for IPS. In this critical leadership position, you will be responsible for developing and overseeing our organization's comprehensive cybersecurity risk management program. This role will be responsible for developing and implementing a robust cybersecurity risk management strategy aligned with industry best practices and evolving threats. To be successful in this role, the Director of Risk Management must be able to clearly communicate cyber risks to all levels of the organization.
This leader will be key in implementing a risk management program that results in the identification, prioritization, and reduction of cybersecurity and ensures compliance for all in-scope facilities. This trusted advisor will help raise the protection bar by building strong relationships with technical and non-technical stakeholders to make risk visible, facilitate well-informed decision, and drive accountability. The ability to clearly communicate and report cybersecurity risk, and manage organizational relationships, will be key to the success of this role. In addition, this role must be able to establish a outcome-driven metrics approach to risk management and utilize protection level agreements as a mechanism to establish risk thresholds.
This position is expected to promote a culture that supports operating with an acceptable level of risk, developing standardized risk management criteria including but not limited to threats, vulnerabilities, likelihood, impact, and maturity, establishing risk tolerance, planning risk analysis (e.g. Meaningful Use Security Risk Analyses, HIPAA), and managing risk assessment activities (e.g. HIPAA, PCI, NIST Cyber Security Framework). In addition, this position will ensure all parts of the risk management program are documented. It will also ensure a strategy for using and maintaining the risk register to prioritize risk reduction actions and activities is implemented. This position is also responsible for evolving the organization’s current risk treatment framework. This position is also responsible for collaborating with Information Security on the development, configuration, and implementation of the Risk Management Archer GRC application.
This position requires a candidate who can, with minimal guidance, analyze business requirements and processes, understand colleague behaviors, facilitate and lead meetings with key stakeholders within the organization, provide industry expertise and knowledge in the identification and mitigation of organizational risk, and enable decision making to support the adherence to industry standards and federal regulations.
The Director of IPS Risk Management provides guidance, direction, and mentorship to staff members to support the overall team goals and deliverables. A qualified candidate must be a highly motivated self-starter and be committed to delivering quality outcomes that meet team and organizational goals.
What you will do in this role:
Quality
- Work as part of the IPS department’s leadership team to develop company requirements, strategies, priorities, processes, implementation plans, and assurance necessary to protect the company against information protection and security risks that could impact patients, employees, and the financial success of the business
- Remain knowledgeable of legislative, regulatory, contractual, and other compliance requirements (e.g. HIPAA, PCI, SOX, Joint Commission) as well as departmental policies, standards, and procedures and participating in revision processes
- Develop and lead the strategy to mature the risk management roadmap, create new roadmaps where needed, and ensure all roadmaps align with business objectives for the key focus areas
- Provide periodic analysis of Company IPS-related risk position, based on analysis of current controls status and current threat landscapes
- Monitor developments in related industries and communicate on the potential impact on or applicability to the organization
- Ensure metrics are identified within risk management and remediation strategy that help demonstrate risk reduction and report progress to IPS leadership and company executive leadership
- Develop risk register and be aware of associated remediation plans to respond to previously unidentified or inadequately addressed risk areas
- Build rapport, credibility, and cohesion across IPS and other stakeholders across the enterprise
- Partner with Internal Audit and IPS Leadership to ensure periodic reviews of the risk management program are performed to obtain independent assessments of the program’s effectiveness
- Partner with key stakeholders (e.g. Security Architects, DISAs) within IPS as well as with Internal Audit, Enterprise Risk Management, Legal, and ITG to ensure appropriate oversight and governance of the program
- Ensure the team is involving all relevant stakeholders in major decisions; recognizing multiple agendas and making/communicating final decisions in ways that foster maximum ownership and minimum resistance
Service
- Lead the team in providing risk-based security perspective through consulting and collaboration
- Lead the team in facilitating and guiding business decisions and solutions
People
- Accountable for the successful completion of organizational objectives through team members
- Establish mutual objectives and targets for team members
- Mentor team members, including developing and monitoring their personal development plans, and provide feedback via the annual performance review process
- Promote a culture of collaboration, work/life balance, and open communication
- Encourage new ways of thinking and problem solving
- Create a team environment where members embrace change and adopt new practices
- Stay engaged with team members through 1:1s, rounding, and performance review activities
Growth
- Monitor developments in related industries and communicate on the potential impact on or applicability to the organization
- Build rapport, credibility, and cohesion within IPS and with other stakeholders across the enterprise
- Participate in educational opportunities to build and maintain team knowledge of evolving risk, information security, and privacy concepts
Finance
- Responsible for ensuring proposed future work efforts/projects are appropriately captured with labor and spend estimates and submitted for leadership prioritization and funding
What qualifications you will need:
- Bachelor’s degree required
- Master’s degree preferred
- 3+ year(s) of leadership experience
- 7+ years of experience in information technology, information security, privacy, and/or healthcare
- CISSP preferred
- CISA preferred
- CRISC preferred
HCA Healthcare has been recognized as one of the World’s Most Ethical Companies® by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.
"Good people beget good people."- Dr. Thomas Frist, Sr.
HCA Healthcare Co-Founder
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
What HCA Healthcare employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom