Third Party Resilience Manager

Job Summary

Core services include ensuring critical third parties have appropriate continuity, disaster recovery (technology resilience), cyber and crisis response capabilities. Assess compliance, identify gaps, and define remediation measures. Ensure third-party risks are identified, mitigated, monitored, and reported. Responsible for managing the program governance, strategy, tool(s), policy, standards, and procedures. Responsible for the tactical delivery and ongoing management of third-party resilience assessment, testing and remediation programs (full lifecycle). Other responsibilities will include oversight of joint testing and exercise programs. Function-specific audit, compliance, and growth initiative support, including vendor evaluations prior to onboarding or offboarding.

Job Duties

• Ensures third parties delivering business-critical services are assessed and/or audited in the full BCM lifecycle i.e., areas of disaster recovery (technology resilience), business continuity, cyber response capabilities, crisis incident response, testing/exercising, pandemic planning, risk assessments, business impact analysis, and subcontractor management.
• Understand Molina’s business requirements and third-party dependencies to identify third party gaps and define remediation measures to improve resilience. 
• Provides risk evaluation and control measures to mitigate risks to ensure compliance and alignment with the business requirements.
• Implement impact tolerance statements for critical services, across the third-party portfolio and participate in stress tests to assess the ability to remain within those tolerances and identify any necessary improvements required.
• Works with business SMEs to ensure all critical external suppliers and vendors are effectively and robustly managed. 
• Ensures the appropriate governance program and relevant training programs are in place and maintained.
• Drive third-party resilience related processes and projects including business resilience assessments, testing, contingency planning and exit planning. Including:
  • Third-party criticality assessments
  • Third-party due diligence, including site visits and collecting results.
  • Third-party test planning, exercises, and service commitment validation. Communicate with business partners about testing requirements.
  • Third-party engagement inventories, trackers, and dashboards
  • Dependency mapping that is accurate and complete, including tracking and reporting of identified gaps or risks.
• By applying a strong background in the full lifecycles of third-party risk and resilience, implements risk-based, scalable solutions that effectively address third-party obligations.
• Contribute to strong risk management culture through collaboration with business representatives and other internal stakeholders. 
• Ensure third-party resilience risks are identified, mitigated, monitored, and reported on an ongoing basis.
• Provide regular updates including issue reports and metrics to senior stakeholders
• May conduct and lead business continuity tabletop and resumption exercises in collaboration with the third-party

Job Qualifications

Required Education:

Bachelor’s Degree

Required Experience:

• Minimum 7+ years demonstrated leadership in programs at a national or enterprise level
• Minimum 7+ years’ experience across third-party and risk management disciplines and/or Resiliency audit 
• Minimum 5+ years’ experience with project management
• Experience with reporting systems (i.e., PowerBI or similar)
• Experience with GRC systems (i.e., Prevalent, Lockpath or similar) 
• Proficient in Excel, PowerPoint, Visio, SharePoint

Required Licensure or Certification: BCI or DRII certification (CBCP, MBCP); Resiliency Audit certification highly preferred (such as ISO22301, CBRA, CBCA, CBCLA).

Required Knowledge, Skills, and Abilities:

• Third-party risk management 
• The full resiliency/business continuity management lifecycle, best practices, core functions, services, and operations at both a hands-on and management-level
• Deep knowledge of all aspects of Resiliency – Program governance, Business impact analysis and risk assessments, business continuity, disaster recovery, cyber resilience, crisis and incident management, pandemic preparedness, facilities management, subcontractor management.
• Development and management of monitoring and testing programs (inc. coordinating exercises with the vendor), as well as continuous control monitoring techniques.
• Procurement vendor management lifecycle end to end process.
• Metrics, reporting and analysis.
• Familiarization with NIST 800-(34, 53, 171, 207) and industry standards including ISO 22301:2019, BS25999, ISO/IEC 24762:2008 etc.
• Familiarization of HIPPA, SOX, CMS Regulations related to business continuity at a State and Federal level (e.g., OCC, FDA, FEMA, DHS)
• Understanding of security and/or systems change control concepts.
• Familiarity with best practices and standards appropriate to managed care (Medicaid, Medicare, and Marketplace)
• Experience managing various projects, leading multiple business continuity assessments and/or implementations, Evaluating and implementing business continuity solutions.
• Strong interpersonal and negotiation skills to interface with management and staff at all levels within the organization and to deal with third party vendors. 
• Ability to work individually and in a team environment with minimal supervision and provide deliverables in a timely manner. 
• Knowledge and ability to think creatively, proactively, and independently; ability to facilitate meetings, prepare reports, and manage data. 
• Strong analytical and problem-solving skills 
• Excellent verbal and written communication skills 
• Able to remain calm and professional while reacting and assisting during high-stress situations or emergencies
• Self-motivated and results oriented. A problem solver. An analytical thinker 
• Comfortable and capable of developing/presenting data-driven solutions and recommendations 
• Able to interact concisely/accurately and positively with leadership. Remain calm in challenging business situations

Preferred Qualifications:

• Experience with Healthcare Continuity 

Travel Requirements:

Up to 10-20% travel within United States may be needed for select on-site audits

To all current Molina employees: If you are interested in applying for this position, please apply through the intranet job listing.

Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.

Pay Range: $80,412 - $188,164 / ANNUAL
*Actual compensation may vary from posting based on geographic location, work experience, education and/or skill level.

About Us

Molina Healthcare is a nationwide fortune 500 organization with a mission to provide quality healthcare to people receiving government assistance. If you are seeking a meaningful opportunity in a team-oriented environment, come be a part of a highly engaged workforce dedicated to our mission. Bring your passion and talents and together we can make a difference in the lives of others. Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.