Manager, IT Governance, Controls & Privacy

at  UPMC

OVERVIEW OF ROLE:

Under the general direction of the CIO of UPMC International, this position assumes responsibility for the implementation and oversight of UPMC’s IT governance processes, IT systems and applications controls, and digital privacy for UPMC’s international businesses. Located in UPMC’s offices in Ireland, this position coordinates across business units and IT teams in the USA and Europe. The role assesses and manages all IT related risks and decision making through formal processes aimed at maximizing UPMC’s investment in technology. This leader also provides subject matter expertise guidance in the onboarding of all new platforms and vendors, and work closely with the clinical governance team.

PRIMARY DUTIES AND RESPONSIBILITIES:

Privacy - Provides advice, recommendations, and guidance on addressing identified privacy issues and oversees the delivery and ongoing monitoring of action plans to correct such issues. Leads the development of any new policies, procedures, or other privacy office-issued documentation or formal guidance. Conducts regular reviews and updates to relevant policies and training materials to reflect changes in law and regulation or company practices.
Raise concerns about non-compliance and risk issues to the Senior Management team
IT Governance – Implements and oversees IT Governance processes to include project management, product procurement, functional/business requirements documentation and validation, criticality assessment and business contingency plans. Lead and review processes for auditing, safeguarding, quality improvement, and risk management.
IT Systems and Applications Controls – Implements and oversees formal processes to ensure maximum IT systems and applications availability, performance, and resilience. Manages and monitors Enterprise Architecture reviews (EA), Risk Management, change management/version controls, Vendor and contract management, Data Protection, Audit coordination, and Document Management.
Ensuring IT systems and processes are compliant with relevant laws, regulations, and standards
People - Manages direct reports including work task assignments, performance evaluations, professional development, coaches, and mentors’ direct reports. Direct reports may include IT Project Manager, Privacy Analyst, and Business Analyst.
Budget - Provides input on budget planning. Responsible for managing to budget.
Performs in accordance with system-wide competencies/ behaviors. Performs other duties as assigned.
T
he above Job Description is not intended to be a comprehensive list of all duties involved and consequently, the post holder may be required to perform other duties as appropriate to the post which may be assigned to him/her from time to time and to contribute to the development of the post while in office.
Qualifications & Experience:
Bachelor’s degree or equivalent required, and at least five years of progressive experience in the field of data/technology governance, privacy, and IT project management.
Requires at least two years’ experience directly managing a team of at least 3 members.
Strong project management, problem solving, organizational, relationship, communication (oral and written), and negotiation skills are required.
Significant experience implementing and managing technology, data, and/or privacy programs.
Must be self-motivated, capable of meeting stringent deadlines, and skilled at driving consensus to solve problems and deliver on commitments.
Equal Opportunity Statement and Benefits