Skip to content


Contact us at 1-877-619-5627
Advertise your job!

Job Application


Please answer the following questions in order to begin the process of your application.

Email Address *
File Attachments:
(2MB file maximum. doc, docx, pdf, rtf or txt files only)
Attach a Resume * 
 * denotes required field

Key Privacy Information

When you apply for a job, CareerBoard will collect the information you provide in the application and disclose it to the advertiser of the job.

If the advertiser wishes to contact you they have agreed to use your information following data protection law.

CareerBoard will keep a copy of the application for 90 days.

More information about our Privacy Policy.


Job Details


Manager IT Compliance (Full Time)

Location: Lake Forest, CA Country: United States of America


Apria Healthcare's mission is to improve the quality of life for our patients at home. We are looking for empathetic, thoughtful and compassionate people, to meet the needs of our patients. Already an industry leader in healthcare services, we provide home respiratory services and select medical equipment to help our patients sleep better, breathe better, heal faster, and thrive longer.

Managers will manage full-time/part-time employees and drive continuous improvement of processes and procedures across the organization. Most importantly, this position nurtures culture and engagement while overseeing strategies focused on improving the overall experience of employees and patients . Key responsibilities for creating a positive, employee-centric environment include:

  • Cultivating and promoting a culture that reinforces Apria's vision and core values by creating a diverse, inclusive and psychologically safe work environment.
  • Creating an inspiring team atmosphere with an open communication culture.
  • Maintaining a big picture perspective; able to link programs, activities, and communications in ways that support a cohesive employee experience.
  • Setting clear, concise, and attainable team goals.
  • Motivating team members to be fully engaged and to perform at their fullest potential.
  • Leading by example with clear direction, candid feedback, and a communication style that results in trust and optimism.
  • Recognizing high performance and reward accomplishments.
  • Encouraging creativity.
  • Suggesting and organizing team-building activities.


Under the general guidance of the Director of IT Compliance and/or Chief Information Security Officer (CISO), the IT Compliance Program Manager provides project and/or program oversight and management in the various areas of IT Security and Compliance. The role is responsible for the enforcement of all IT-related corporate policies and procedures. Leads IT compliance audits related to SOX, HIPAA, PCI, and other compliance or privacy initiatives from an IT regulatory compliance and security perspective. This role will also plan, design, and manage enterprise IT compliance initiatives in support of the core security functions of the IT Security and Compliance group. Additionally, develops and maintains information security policies, standards and processes, and applies in-depth knowledge of functional aspects of information systems security and compliance.


  • Works closely with all IT groups as a subject matter expert in IT compliance and privacy regulations and associated audits including, but not limited to, SOX, PCI-DSS, HIPAA, and CCPA (California Consumer Privacy Act). Manages IT compliance initiatives and projects to ensure all regulatory audit and compliance requirements are met organization-wide. Provides input as a member of project teams to ensure that adequate compliance and privacy controls and features are implemented into information systems as an integral part of the initial system design. (25% of time)
  • Manages the development and implementation of Information Security policies and standard procedures to ensure the ongoing IT privacy and regulation compliance within Apria. (25% of time)
  • Key participant in formulating Apria's IT compliance and privacy strategies. Determines technology and process requirements to implement compliance strategies. Assesses Apria's IT environment against industry best practices and evolving compliance legislation or standards and lead implementation of required changes or improvements. (20% of time)
  • Maintains up-to-date knowledge and awareness of industry trends related to IT regulatory compliance and privacy legislation and the impact on Apria's business operations. Understands public policy and regulatory trends related to compliance, privacy and security. (15% of time)
  • Understands the criticality of business processes with reference to Apria's policies and processes. Conducts compliance risk assessments to proactively identify and minimize the probability of risk occurrences. (15% of time)
  • Performs other duties as required.


  • This position manages all direct reports of the department and is responsible for the performance management, hiring, and discipline of direct reports within the department.
  • Provides direction and guidance in work assignments.
  • Provides timely coaching and feedback to staff.
  • Ensures work assignments are completed accurately, efficiently and timely.


Education and/or Experience

  • A minimum of five (5) years of progressively increasing responsibility and achievement in the Information Technology area with at least three (3) years in IT audit and/or compliance, including experience with SOX, HIPAA, PCI, CCPA (California Consumer Privacy Act) and other privacy regulations.
  • A minimum of one (1) year of personnel management experience required with demonstrated ability to lead a team.
  • A Bachelor's Degree in a related technical or business discipline is required. Specific experience in the health care industry is desirable.
  • Knowledge and working experience with SOX, HIPAA, PCI, and privacy regulations, security audit/review processes and applying corporate and federally mandated policies.
  • Demonstrated ability to apply assessment measurement and evaluation techniques to ensure processes, systems, and applications meet business needs.
  • Experience managing large-scale projects in a team-oriented cross-organizational environment. This level of experience to have been gained by several years of information systems organizations.
  • Knowledge and experience with information security standards such as NIST, ISO, COBIT, and associated security controls.
  • Knowledge and experience in IT risk and compliance management programs related to IT Audit, 3rd Party Risk Management, and Security and Privacy Regulations.

Certificates, Licenses, Registrations or Professional Designations

  • An industry recognized certification (eg, CISA, CRSIC, CISSP,) is required.


  • Excellent interpersonal, oral/presentation and written communications skills in both technical and non-technical language.
  • Conceptual and analytical thinker, able to understand, analyze and synthesize complex business and technology issues and strategies.
  • Ability to assist in Business Process Analysis for continuous process improvement.
  • Ability to define problems, collect data, establish facts and draw valid conclusions.
  • Ability to lead design solution sessions including its documentation and communicating solution to the business and stakeholders.
  • Weigh business risks and enforce appropriate IT security policies and practices while maintaining the speed delivery that is inherent in a fast-paced company.
  • Strong judgment and decision-making skills; be self-motivated with the ability to work independently and in teams with minimal direction but willingness to seek advice/assistance.
  • Flexible and adaptable process-oriented work style; strong demonstrated work ethic; personal time management skills.
  • Demonstrated work ethic that emphasizes customer focus, quality and continuous improvement.

Language Skills

  • English (reading, writing, verbal)

Mathematical Skills

  • Basic level mathematical proficiency, with a strong ability to understand, interpret and develop spreadsheet data.


This is a stationary position that requires frequent sitting or standing, repetitive wrist motions, grasping, speaking, listening, close vision, color vision, and the ability to adjust focus. It also may require occasional lifting, carrying, walking, climbing, kneeling, bending/stooping, twisting, pulling/pushing, walking, bending, stooping, and reaching above the shoulder. This position also may require the occasional lifting of equipment up to 50 lbs.


The essential duties and responsibilities, physical requirements, and work environment described above are representative of those typically required for this position but may vary depending on staffing and business needs at specific locations. The inclusion or omission of a specific duty or physical requirement is, therefore, not determinative of whether that function is essential to a specific individual's position. Reasonable accommodations will be provided to assist or enable qualified individuals with disabilities to perform essential functions.

As an EOE/AA employer, Apria Healthcare is committed to providing all applicants and employees with equal access to employment opportunities, regardless of sex, race, age, color, national origin, disability, pregnancy, religion, genetic information, sexual orientation, transgender status, gender identity, marital status, veteran status, or any other characteristic protected by federal, state, or local law. Apria Healthcare shall abide by the requirements of 41 CFR 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals on the basis of protected veteran status or disability, and require affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified protected veterans and individuals with disabilities. AA/EOE, M/F/Disability and Vet

Posted Date: 16 Oct 2019 Reference: JS934_7823 Company: Apria Healthcare Contact: Click apply