Skip to content


Advertise your job!

Lake Forest, CA Full Time Posted: Wednesday, 16 October 2019


Apria Healthcare's mission is to improve the quality of life for our patients at home. We are looking for empathetic, thoughtful and compassionate people, to meet the needs of our patients. Already an industry leader in healthcare services, we provide home respiratory services and select medical equipment to help our patients sleep better, breathe better, heal faster, and thrive longer.

Managers will manage full-time/part-time employees and drive continuous improvement of processes and procedures across the organization. Most importantly, this position nurtures culture and engagement while overseeing strategies focused on improving the overall experience of employees and patients . Key responsibilities for creating a positive, employee-centric environment include:

  • Cultivating and promoting a culture that reinforces Apria's vision and core values by creating a diverse, inclusive and psychologically safe work environment.
  • Creating an inspiring team atmosphere with an open communication culture.
  • Maintaining a big picture perspective; able to link programs, activities, and communications in ways that support a cohesive employee experience.
  • Setting clear, concise, and attainable team goals.
  • Motivating team members to be fully engaged and to perform at their fullest potential.
  • Leading by example with clear direction, candid feedback, and a communication style that results in trust and optimism.
  • Recognizing high performance and reward accomplishments.
  • Encouraging creativity.
  • Suggesting and organizing team-building activities.


Under the general guidance of the Director of IT Compliance and/or Chief Information Security Officer (CISO), the IT Compliance Program Manager provides project and/or program oversight and management in the various areas of IT Security and Compliance. The role is responsible for the enforcement of all IT-related corporate policies and procedures. Leads IT compliance audits related to SOX, HIPAA, PCI, and other compliance or privacy initiatives from an IT regulatory compliance and security perspective. This role will also plan, design, and manage enterprise IT compliance initiatives in support of the core security functions of the IT Security and Compliance group. Additionally, develops and maintains information security policies, standards and processes, and applies in-depth knowledge of functional aspects of information systems security and compliance.


  • Works closely with all IT groups as a subject matter expert in IT compliance and privacy regulations and associated audits including, but not limited to, SOX, PCI-DSS, HIPAA, and CCPA (California Consumer Privacy Act). Manages IT compliance initiatives and projects to ensure all regulatory audit and compliance requirements are met organization-wide. Provides input as a member of project teams to ensure that adequate compliance and privacy controls and features are implemented into information systems as an integral part of the initial system design. (25% of time)
  • Manages the development and implementation of Information Security policies and standard procedures to ensure the ongoing IT privacy and regulation compliance within Apria. (25% of time)
  • Key participant in formulating Apria's IT compliance and privacy strategies. Determines technology and process requirements to implement compliance strategies. Assesses Apria's IT environment against industry best practices and evolving compliance legislation or standards and lead implementation of required changes or improvements. (20% of time)
  • Maintains up-to-date knowledge and awareness of industry trends related to IT regulatory compliance and privacy legislation and the impact on Apria's business operations. Understands public policy and regulatory trends related to compliance, privacy and security. (15% of time)
  • Understands the criticality of business processes with reference to Apria's policies and processes. Conducts compliance risk assessments to proactively identify and minimize the probability of risk occurrences. (15% of time)
  • Performs other duties as required.


  • This position manages all direct reports of the department and is responsible for the performance management, hiring, and discipline of direct reports within the department.
  • Provides direction and guidance in work assignments.
  • Provides timely coaching and feedback to staff.
  • Ensures work assignments are completed accurately, efficiently and timely.


Education and/or Experience

  • A minimum of five (5) years of progressively increasing responsibility and achievement in the Information Technology area with at least three (3) years in IT audit and/or compliance, including experience with SOX, HIPAA, PCI, CCPA (California Consumer Privacy Act) and other privacy regulations.
  • A minimum of one (1) year of personnel management experience required with demonstrated ability to lead a team.
  • A Bachelor's Degree in a related technical or business discipline is required. Specific experience in the health care industry is desirable.
  • Knowledge and working experience with SOX, HIPAA, PCI, and privacy regulations, security audit/review processes and applying corporate and federally mandated policies.
  • Demonstrated ability to apply assessment measurement and evaluation techniques to ensure processes, systems, and applications meet business needs.
  • Experience managing large-scale projects in a team-oriented cross-organizational environment. This level of experience to have been gained by several years of information systems organizations.
  • Knowledge and experience with information security standards such as NIST, ISO, COBIT, and associated security controls.
  • Knowledge and experience in IT risk and compliance management programs related to IT Audit, 3rd Party Risk Management, and Security and Privacy Regulations.

Certificates, Licenses, Registrations or Professional Designations

  • An industry recognized certification (eg, CISA, CRSIC, CISSP,) is required.


  • Excellent interpersonal, oral/presentation and written communications skills in both technical and non-technical language.
  • Conceptual and analytical thinker, able to understand, analyze and synthesize complex business and technology issues and strategies.
  • Ability to assist in Business Process Analysis for continuous process improvement.
  • Ability to define problems, collect data, establish facts and draw valid conclusions.
  • Ability to lead design solution sessions including its documentation and communicating solution to the business and stakeholders.
  • Weigh business risks and enforce appropriate IT security policies and practices while maintaining the speed delivery that is inherent in a fast-paced company.
  • Strong judgment and decision-making skills; be self-motivated with the ability to work independently and in teams with minimal direction but willingness to seek advice/assistance.
  • Flexible and adaptable process-oriented work style; strong demonstrated work ethic; personal time management skills.
  • Demonstrated work ethic that emphasizes customer focus, quality and continuous improvement.

Language Skills

  • English (reading, writing, verbal)

Mathematical Skills

  • Basic level mathematical proficiency, with a strong ability to understand, interpret and develop spreadsheet data.


This is a stationary position that requires frequent sitting or standing, repetitive wrist motions, grasping, speaking, listening, close vision, color vision, and the ability to adjust focus. It also may require occasional lifting, carrying, walking, climbing, kneeling, bending/stooping, twisting, pulling/pushing, walking, bending, stooping, and reaching above the shoulder. This position also may require the occasional lifting of equipment up to 50 lbs.


The essential duties and responsibilities, physical requirements, and work environment described above are representative of those typically required for this position but may vary depending on staffing and business needs at specific locations. The inclusion or omission of a specific duty or physical requirement is, therefore, not determinative of whether that function is essential to a specific individual's position. Reasonable accommodations will be provided to assist or enable qualified individuals with disabilities to perform essential functions.

As an EOE/AA employer, Apria Healthcare is committed to providing all applicants and employees with equal access to employment opportunities, regardless of sex, race, age, color, national origin, disability, pregnancy, religion, genetic information, sexual orientation, transgender status, gender identity, marital status, veteran status, or any other characteristic protected by federal, state, or local law. Apria Healthcare shall abide by the requirements of 41 CFR 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals on the basis of protected veteran status or disability, and require affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified protected veterans and individuals with disabilities. AA/EOE, M/F/Disability and Vet

Lake Forest, CA, United States of America
Click apply
10/16/2019 5:09:11 PM

We strongly recommend that you should never provide your bank account details to an advertiser during the job application process. Should you receive a request of this nature please contact support giving the advertiser's name and job reference.