We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Blue Shield of CA jobs

Information Security Risk and Governance Specialist, Principal (IT Regulatory Assurance)

Blue Shield of CA
United States, California, Rancho Cordova
Mar 02, 2026

Your Role

This role supports Stellarus within the Ascendiun Family of Companies. The Risk Management & Controls Assurance team delivers actional insights by quantifying IT and business risk to increase resilience while driving a security culture. We are seeking an Information Security Risk & Governance Specialist who will report to the Senior Manager. The successful candidate will be a highly experienced and proactive professional to lead regulatory compliance initiatives across the organization, with a focus on healthcare and technology-related standards. This senior individual contributor will be responsible for overseeing assessments and audits related to HIPAA, PCI-DSS, SOC 2, and other applicable frameworks, ensuring the organization maintains a strong security posture and meets all regulatory obligations.

Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning.

Your Knowledge and Experience

  • Requires a bachelor's degree or equivalent experience

  • Requires at least 10 years of prior relevant experience

  • Experience in portfolio management, preferably within an Agile or SAFe environment, JIRA experience a plus

  • Experience partnering with all levels of management required

  • Driven, energetic, team player with superior oral and written communication skills

  • Strong analytical, organizational, and project management skills.

  • Requires deep understanding of IT control frameworks; Artificial Intelligence Risk Management Framework is strongly preferred

  • Desire one or more of the following: CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional)

Hybrid

This role requires employees to be in-office based on our hybrid workplace model, balancing purposeful in-person collaboration with flexibility. For most teams, this means coming into the office two days each week.

Employees living more than 50 miles from an office location will work with their manager to determine in-office time based on business need.

  • #LI-FB1

Applied = 0
MORE JOBS LIKE THIS

(web-6bcf49d48d-j4skk)