×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Information Security Cybersecurity IT Consultant Data Security

Manager Governance, Risk and Compliance

Job in Chattanooga, Hamilton County, Tennessee, 37450, USA
Listing for: BlueCross BlueShield of Tennessee
Full Time position
Listed on 2026-03-01
Job specializations:
  • IT/Tech
    Information Security, Cybersecurity, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

We’re looking for a Manager of IT Governance, Risk, and Compliance (GRC) who enjoys helping teams navigate risk and compliance in a practical, collaborative way. This role plays an important part in keeping our technology environment secure, compliant, and aligned with our business goals—without slowing innovation.

In this role, you’ll work closely with partners across IT, Security, Internal/External Audit, Legal, Privacy, and the business to turn regulatory requirements and risk frameworks into solutions that actually work in the real world. You’ll help guide risk assessments, develop and improve policies and controls, support audits, and strengthen our overall GRC program in a way that’s thoughtful and sustainable.

We’re looking for someone who has technical know-how along with the ability to communicate clearly, build strong relationships, and take a balanced, risk‑based approach. Ideal candidates will have experience presenting to executive audiences
, proficiency with PowerBI and experience in healthcare (or other regulated industries).

Note:

  • This is a fully remote role, but onsite travel to our Chattanooga, Tennessee headquarters may be required for final interviews.
  • Sponsorship is not available for this role.
Job Duties & Responsibilities
  • Understand business priorities and activities at BCBST and subsidiaries. Maintain current knowledge of applicable regulatory and compliance issues related to Information Security. Based on this knowledge, plan, develop, document, maintain and monitor progress of Information Security Program components consistent with applicable regulatory and compliance requirements.
  • Develop, maintain and communicate policies, standards and procedures to manage security functions relative to information technology systems (including systems under development), networks, applications, and voice and data communications that are consistent with applicable regulatory and compliance requirements.
  • Understand the threat landscape and attack trends as they relate to intelligence gathering, dissemination and defense coordination.
  • Depending on departmental function management responsibilities may include one or more of the following:
    • Manage information risk management program including facilitated risk decisions with decision making authorities and being an engaged partner with lines of business.
    • Develop and implement an effective policy compliance monitoring and enforcement program.
    • Manage the security operations and/or engineering functions including incident response, security monitoring, security design and engineering and security architecture.
    • Develop and manage Enterprise Information Security Threat Management Program.
    • Manage teams tasked with vulnerability discovery and reporting.
    • Coordinate the use of external resources involved in the performance of security testing (i.e., penetration tests, vulnerability scans).
    • Ensure that an Information Security training program is addressed as part of the overall compliance training to ensure the organization’s workforce is knowledgeable of Information Security policies, practices and relevant guidance appropriate to their role in the organization.
  • Develop and report business-relevant metrics to measure the efficiency and effectiveness of the Information Security Program, facilitate appropriate resource allocation and increase the maturity of the security program.
  • Provide subject matter expertise on a broad range of information security standards and best practices, such as NIST, PCI, ISO 27001, MAR and others as applicable.
  • Work with Information Security Directors, CISO and appropriate stakeholders to prepare and present relevant information on security as required.
  • Facilitate and participate in the organization’s Enterprise Security Committee as appropriate.
  • Manage the process of hiring, developing, and evaluating performance of Information Security department staff.
  • Establish and manage operating budgets.
  • Collaborate with other departments across BCBST including Human Resources, Legal, Privacy, Procurement and Compliance to ensure information security alignment across the company.
Job Qualifications

Education

  • Bachelor’s degree in business, Computer…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search