Simplify Logo

Full-Time

Director – Tech Risk and Compliance

Posted on 9/20/2023

Oscar Health

Oscar Health

1,001-5,000 employees

Health insurance provider using technology

Social Impact
Healthcare
Fintech

Compensation Overview

$142.6k - $187.1kAnnually

Senior, Expert

New York, NY, USA

Category
Product
Required Skills
Agile
Communications
Management
AWS
Google Cloud Platform
Requirements
  • Bachelor's degree in Technology, Accounting, Finance or relevant field, or 4 years of commensurate work experience
  • 10+ years' relevant work experience in IT Audit, and/or governance, controls and risk (GRC)
  • 4+ years experience with Cloud-native environments on AWS or GCP using Agile and/or Kanban methodologies
  • 4+ years of experience internal controls, audit or risk management
  • 4+ years of experience auditing IT processes, applications and infrastructure (servers, databases, data centers, firewalls, etc.)
  • 4+ years of experience with SOX, SOC reporting, HITRUST, PCI, and HIPAA
Responsibilities
  • Control Ecosystem:
  • Establish a well designed and documented control ecosystem, with clear roles and responsibilities within and between your team, related Control/Process Owners, control performers, as well as the second and third lines
  • Oversee the evaluation and design of internal controls; make recommendations to improve controls and processes by improving efficacy or streamlining processes
  • Create and foster a culture where controls are well understood by the impacted departments and other stakeholders
  • Ensure documentation of internal controls and processes is up to date and accessible by all, especially related as needed for audits
  • Team and Program/Audit Management:
  • Develop and manage an annual plan of projects, using a risk-based approach to prioritization
  • Perform an annual technology risk assessment and work with leadership on risk responses
  • Ensure your team program manages audit projects initiated by Oscar or external stakeholders, including SOX/SOC
  • Prepare and present updates to senior management
  • Mentor, coach, and train existing staff. Develop plans to hire, onboard and train new staff as needed
  • Technical aptitude:
  • Demonstrate aptitude and ability to translate between technical and non-technical stakeholders
  • Assist with the development of tooling, processes and policies that support governance, risk, and compliance. Advocate for investments that will increase control efficacy and testing efficiency
  • Control Remediation:
  • Develop and implement a system to capture and track control deficiencies and remediation status (in collaboration with the second line)
  • Collaborate with Control and Process Owners to develop action plans to correct control deficiencies, and to develop reviews with appropriate management on action until satisfactory resolution
  • Compliance with all applicable laws and regulations
  • Other duties as assigned
Desired Qualifications
  • Commutable to New York City preferred
  • Experience within the healthcare and technology industries
  • Experience working with a 250+ person Technology team
  • Experience in public accounting and/or CPA license
  • Experience remediating significant deficiencies and material weaknesses
  • Familiarity with internal control frameworks, such as COSO, COBIT, NIST
  • Ability to document and verbally communicate Technology processes in a clear and concise manner, including assessment of design and operating effectiveness controls
  • Track record of streamlining technology controls and/or processes
  • Communication and relationship skills to educate/raise awareness of foundational elements/methodologies needed to support an internal controls framework
  • Project management and process improvement skills

Oscar Health provides health insurance plans for individuals, families, and small businesses, aiming to simplify the insurance experience through technology. Their services include 24/7 virtual care, allowing members to consult healthcare providers anytime, which is convenient for those needing immediate medical advice. Oscar also offers tools to help members find in-network doctors, hospitals, and pharmacies, enhancing access to care. Unlike many traditional insurers, Oscar focuses on user engagement and digital accessibility, ensuring their services are inclusive for all, including people with disabilities. The company's goal is to make healthcare more accessible and affordable while maintaining high-quality care.

Company Stage

N/A

Total Funding

$1.6B

Headquarters

New York City, New York

Founded

2012

Growth & Insights
Headcount

6 month growth

2%

1 year growth

4%

2 year growth

4%
Simplify Jobs

Simplify's Take

What believers are saying

  • Oscar Health's aim to double its membership by 2027 indicates significant growth potential and market expansion.
  • The company's strong financial performance and profitability outlook for 2024 reflect robust business health.
  • Strategic partnerships, such as the one with Sanford Health Plan, enhance member engagement and technological integration.

What critics are saying

  • The competitive health insurance market requires continuous innovation to maintain a competitive edge.
  • Dependence on ACA policies and government regulations could pose risks if there are changes in healthcare laws.

What makes Oscar Health unique

  • Oscar Health leverages technology to simplify and humanize the insurance experience, setting it apart from traditional insurers.
  • Their 24/7 virtual care services provide immediate medical consultations, enhancing accessibility and convenience for members.
  • Oscar's focus on ACA-compliant plans and transparency in pharmacy benefits positions it uniquely in the market.

Benefits

Health insurance - That’s a given. Employees and their families receive incredible health insurance.

Financial benefits - A penny saved....we’re talking about a 401K plan, health savings accounts, and more.

Well @ Oscar - We care about your wellness with fitness classes and access to mental health support.

Work-Life Balance - We offer multiple time-off options, wellness days, and 10+ weeks of parental leave.

Learning & Development - We offer everything from mentorship to management training.

INACTIVE