Senior Manager, Technology Governance

Title: Senior Manager, Technology Governance

Employment Type: Full Time 

Pay Rate: $160,000 - $185,000 annually

Location: 685 Third Avenue 9th FL, New York, NY 10017 (this role is 100% on-site)

Benefits: Medical, Dental, and Vision (with company contribution), Paid Time Off, 401k 

About DocGo:
DocGo is leading the proactive healthcare revolution with an innovative care delivery platform that includes mobile health services, population health, remote patient monitoring, and ambulance services. DocGo disrupts the traditional four-wall healthcare system by providing high quality, highly affordable care to patients where and when they need it. DocGo's proprietary, AI-powered technology, logistics network, and dedicated field staff of over 5,000 certified health professionals elevate the quality of patient care and drive efficiencies for municipalities, hospital networks, and health insurance providers. With Mobile Health, DocGo empowers the full promise and potential of telehealth by facilitating healthcare treatment, in tandem with a remote physician, in the comfort of a patient's home or workplace. Together with DocGo's integrated Ambulnz medical transport services, DocGo is bridging the gap between physical and virtual care.

Position Summary:
The Senior Manager, Technology Governance is responsible for leading best-in-class SOX/ITGC, and IT compliance strategies to accomplish goals. The Senior Manager, Technology Governance will act as a liaison between internal and external auditors, compliance teams, the business, and IT teams. Additionally, they will provide ongoing IT and business support. The Senior Manager, Technology Governance will provide governance in the design and implementation of IT controls, including a continuous monitoring program to demonstrate program effectiveness. The Senior Manager, Technology Governance will have the ability to influence others at all levels of the business of their role and responsibilities.

Primary Objectives:

• Be an influencer to develop, lead, and execute the IT Governance, Risk & Compliance Program and lead the successful execution of SOX/ITGC documentation and testing.

• Partner with senior leadership, IT teams, and Internal/External Auditors to manage the IT General Controls Program, including tracking control gaps, action plans to remediate weaknesses, and control self-assessments.

• Ensure timely and efficient execution of quality work supporting each audit and control self-assessment cycle.

• Identify opportunities and implement enhancements to streamline existing processes and promote the effectiveness of the overall control environment.

• Provide periodic training to ensure a thorough understanding of the SOX/ITGC program, control design, and the impact of non-compliance.

• Lead the IT Compliance governance program and ensure appropriate metrics are captured and communicated to all stakeholders.

• Lead the IT Policy governance program to develop and maintain documentation, and train stakeholders annually.

• Develop/maintain working knowledge of laws and industry guidance for establishing, maintaining, and reporting on internal controls.

• Manage support for required SOX audits, IT Audits, Healthcare Compliance Matters, Third Party Vendor Management, GDPR, customer audits, contract reviews, and other audit support.

• Maintain professional skills, certifications, and competencies.

Responsibilities:

• Advocate compliance with company policies, legal, regulatory, and contractual requirements.

• Identify and engage key stakeholders to ensure timely review and updates to process documentation and controls for new and/or existing processes, as well as to remediate compliance issues.

• Perform walkthroughs of systems and processes to identify control gaps.

• Provide governance for the design and implementation of IT controls.

• Schedule and conduct regular internal compliance checks.

• Track and ensure that remediation of critical issues is prioritized, escalating as needed within the IT SOX deficiency tracker.

• Regularly audit policies, procedures, and technical controls to identify possible weaknesses or risks.

• Assist IT teams in updating or creating new documentation.

• Establish and manage compliance project plans, escalations, issue resolution processes, and requirements prioritization.

• Stay current on new technical literature applicable to the internal control process (e.g., PCAOB guidance, SEC, ISO, COSO, COBIT, NIST, Healthcare Compliance, etc.) and abreast of emerging trends and leading practices around internal controls

• Manage efforts and communicate timely status updates (both verbal and written) to team members and leadership.

• Work with IT and business teams to support project activities.

• Provide IT compliance metrics and reporting.

• Perform other duties as assigned.

Qualifications:

• 10+ years’ experience with companies that have successfully used IT as a business lever in driving optimization and change

• 5-7 years of management experience

• Demonstrated leadership skills, sound decision-making, and the ability to work independently

• Ability to obtain an IT security or compliance certification and/or prior experience with a global security and compliance team (e.g., Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), or Certified Authorization Professional (CAP) preferred)

• Understanding of regulations and prior work experience in a highly regulated industry

Knowledge & Experience:

• Bachelor’s degree in Finance, Accounting, IT, Computer Science, or a related field, with a minimum of 10 years of SOX compliance and/or operational/IT audit experience focusing on internal controls. Prior Big 4 audit firm experience is a plus.

• Strong understanding of financial cycles, process-mapping, IT general and application controls, and experience assessing financial, operational, and technology risks.

• Proven experience managing IT compliance and risk processes and deliverables.

• Knowledge of PCAOB, COSO, COBIT, NIST, healthcare compliance, ISO standards, privacy regulations, and other IT compliance frameworks.

• Extensive experience with IT compliance and assessment technologies, including GRC platforms, compliance assessments, Workday ERP, Windows/Active Directory, AWS databases, and ERP administration and monitoring.

About You:

• Strong analytical, problem-solving skills, and attention to detail

• Ability to influence others by conveying compliance knowledge at a level appropriate to their job function.

• Excellent oral and written communication, organizational, teamwork, and interpersonal skills.

• Ability to multitask in a dynamic, fast-paced environment.

• Demonstrates an outstanding level of professionalism, including the ability to exercise good judgment, discretion, tact, and diplomacy.

• Ability to analyze situations, identify existing or potential problems, and recommend solutions.

• Drive and resourcefulness in contributing both within and beyond assigned responsibilities.

• Ability to work independently with minimal supervision or under consultative guidance.

• Comfortable with periodic travel, as required by business needs.

EEO/AAP Statement:  DocGo is an equal opportunity employer. We acknowledge and honor the fundamental value and dignity of all individuals. We pledge ourselves to crafting and maintaining an environment that respects diverse traditions, heritages, and experiences.  DocGo is an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

The above-noted job description is not intended to describe, in detail, the multitude of tasks that may be assigned but rather to give the applicant a general sense of the responsibilities and expectations of this position.  As the nature of business demands change so, too, may the essential functions of the position.