Job Posting Title
Enterprise Risk Management, Compliance, and Privacy OfficerAgency
340 OKLAHOMA STATE DEPARTMENT OF HEALTHSupervisory Organization
340 Chief Operating OfficeJob Posting End Date
Refer to the date listed at the top of this posting, if available. Continuous if date is blank.
Note: Applications will be accepted until 11:59 PM on the day prior to the posting end date above.
Estimated Appointment End Date (Continuous if Blank)
Full/Part-Time
Full timeJob Type
RegularCompensation
The annual salary for this position is up to $82,253.00, based on education and experience.RESPECT. COLLABORATION. SERVICE. The Oklahoma State Department of Health (OSDH) is committed to leading Oklahoma to prosperity through health. Our mission is to protect and promote health, prevent disease and injury, and cultivate conditions by which Oklahomans can thrive. Check out why we are passionate about public health and believe it is the career for you!!!
Oh yeah, did we mention perks? We know that benefits matter and that is why we offer a competitive benefits package for all eligible employees.
Job Description
Location: OKC – 123 Robert S Kerr
Salary: up to $82,253.00, based on education and experience
Full Time /Part Time: Full Time
Work Schedule: Monday – Friday
Primary Hours: 8-5
Position Description:
The Enterprise Risk Management, Compliance, and Privacy Officer is responsible for developing, implementing, and overseeing an integrated framework for enterprise risk management, compliance, and records management. This position works directly with the Director of Enterprise Risk Management and Compliance, with responsibility including enterprise risk management, compliance, and records management, as well as serving as the OSDH Privacy Officer. The Enterprise Risk Management and Compliance Officer is a senior level position at the Oklahoma State Department of Health (OSDH).
Reporting directly to the Director of Enterprise Risk Management & Compliance, this role plays a strategic role in facilitating organizational risk assessments, developing key controls and audits in relation to enterprise risk management and compliance, as well as leading the required needs of the Records Management division.
Position Responsibilities/Essential Functions:
Work alongside the Director of ERM and Compliance to develop and expand the agency’s comprehensive Enterprise Risk Management (ERM) program, within the COSSO framework, identifying and mitigating potential risks across operational, regulatory, reputational, and strategic domains.
Develop and maintain enterprise risk registers, risk prioritization frameworks, and mitigation tracking systems.
Lead records management retention and compliance with the Oklahoma Open Records Act and applicable federal requirements, including document retention, access, and destruction policies. This will require working directly with Department of Libraries to ensure compliance within the State of Oklahoma requirements and regulations.
Collaborate with internal stakeholders to develop comprehensive risk mitigation strategies and internal controls aligned with agency goals and public health responsibilities.
Serve as a liaison for audits, investigations, regulatory inquiries, and legislative reviews involving enterprise risk management and/or compliance.
Be available to assist with the safety and security function, as needed, helping to ensure physical safety and staff security across all OSDH locations.
Commission and participate in audits established to investigate and monitor compliance with privacy standards and procedures required by federal and state law.
Direct efforts to communicate and promote understanding of the components of the privacy standards, laws, and regulations, and consequences of noncompliant behavior through written materials and training programs.
Consult with Office of General Counsel, as necessary, with regard to the privacy standards and other applicable federal and state law to ensure transparency and coordination.
Assist management with implementation of the privacy policies and procedures to ensure compliance with applicable federal and state law.
Coordinate on a regular basis with ESS – HIPAA Security Officer on all appropriate privacy related items to ensure collaboration and coordination.
Being present in the office is an essential function of the job.
Other duties as assigned.
Other Duties
Demonstrates knowledge of and supports mission, vision, value statements, standards, policies and procedures, operating instructions, confidentiality standards, and the code of ethical behavior.
Works effectively in team environment, participating and assisting their peers.
Minimum Qualifications:
Education and experience at this level include a master’s degree in Compliance, Business Administration, Finance or Healthcare Compliance, or a similarly related field, plus seven or more years of experience in compliance, risk management, healthcare regulation, or government oversight are required.
Preferred Qualifications:
Professional certifications such as: Certified Compliance & Ethics Professional (CCEP); Certified Risk Management Professional (CRMP); Certified Internal Auditor (CIA); Certified Healthcare Compliance (CHC) are recommended. Experience developing enterprise risk or compliance programs in healthcare or government settings as well as experience supporting executive leadership and regulatory audit processes is also recommended.
Application Requirements:
If education, certification or licensure is required to meet qualifications, applicants must provide documentation at the time of application.
All applicants are subject to a background check and must be legally authorized to work in the United States without visa sponsorship.
Valued Knowledge, Skills and Abilities
Knowledge, Skills and Abilities required at this level include knowledge of risk and compliance as it pertains to enterprise risk management; of agency wide program evaluation; and of various compliance functions across the agency. Ability is required to exercise good judgment in analyzing situations and making decisions; to organize and present facts and opinions clearly and concisely, both orally and in writing; to establish and maintain effective working relationships with other agency personnel and governmental representatives; to organize and conduct several projects simultaneously; and to develop and administer programs.
Physical Demands and Work Environment:
Work is typically performed in an office setting with climate-controlled settings and exposure to moderate noise levels. While performing the duties of the job, employees are required to talk, stand, walk, and reach with hands and arms. This position requires long periods of sitting and daily use of computers and phones. Employees must be willing to complete all job-related travel associated with this position. Being present at the office is an essential function of the job.
Equal Opportunity Employment
The State of Oklahoma is an equal opportunity employer and does not discriminate on the basis of genetic information, race, religion, color, sex, age, national origin, or disability.
Current active State of Oklahoma employees must apply for open positions internally through the Workday Jobs Hub.
If you are needing any extra assistance or have any questions relating to a job you have applied for, please click the link below and find the agency for which you applied for additional information: