{"21359330":{"jobPath":"/jobs/21359330/risk-and-safety-coordinator","source":"naylor","job":"21359330","jobTitle":"Risk and Safety Coordinator"},"21359751":{"jobPath":"/jobs/21359751/systems-engineer-ii-washu-it-authentication-services-time-limited","source":"naylor","job":"21359751","jobTitle":"Systems Engineer II – WashU IT - Authentication Services (Time Limited)"},"21359972":{"jobPath":"/jobs/21359972/facility-manager-security-clearance-required","source":"naylor","job":"21359972","jobTitle":"Facility Manager-Security Clearance Required"},"21359577":{"jobPath":"/jobs/21359577/lecturers-adjunct-faculty-for-the-undergraduate-program-in-information-technology-and-informatics-fall-2025","source":"naylor","job":"21359577","jobTitle":"Lecturers (Adjunct Faculty) for the Undergraduate Program in Information Technology and Informatics (Fall 2025)"},"21359557":{"jobPath":"/jobs/21359557/security-systems-technician","source":"naylor","job":"21359557","jobTitle":"Security Systems Technician"},"21355872":{"jobPath":"/jobs/21355872/it-asset-coordinator","source":"naylor","job":"21355872","jobTitle":"IT Asset Coordinator"},"21355453":{"jobPath":"/jobs/21355453/manager-of-councils-university-faculty-governance","source":"naylor","job":"21355453","jobTitle":"MANAGER OF COUNCILS, University Faculty Governance"},"21355794":{"jobPath":"/jobs/21355794/employee-expense-process-audit-coordinator","source":"naylor","job":"21355794","jobTitle":"Employee Expense Process Audit Coordinator"},"21355792":{"jobPath":"/jobs/21355792/game-day-security-dome-temporary-part-time","source":"naylor","job":"21355792","jobTitle":"Game Day Security - Dome - Temporary Part-Time"},"21356185":{"jobPath":"/jobs/21356185/it-architect-4-0531u-job-78421-berkeley-institutes-for-data-science-bids","source":"naylor","job":"21356185","jobTitle":"IT Architect 4 (0531U) Job 78421 - Berkeley Institutes for Data Science (BIDS)"},"21359571":{"jobPath":"/jobs/21359571/edit-media-spec-i-e-w-senior-communications-specialist-government-relations","source":"naylor","job":"21359571","jobTitle":"Edit/Media Spec I E/W (Senior Communications Specialist - Government Relations )"},"21355449":{"jobPath":"/jobs/21355449/computer-and-information-science-cis-cybersecurity-faculty-tenure-track","source":"naylor","job":"21355449","jobTitle":"Computer And Information Science (Cis)/Cybersecurity Faculty, Tenure Track"},"21357820":{"jobPath":"/jobs/21357820/security-ambassador-weekends-sat-sun-6am-6-30pm","source":"naylor","job":"21357820","jobTitle":"Security Ambassador - Weekends (Sat-Sun 6am-6:30pm)"},"21354158":{"jobPath":"/jobs/21354158/revenue-cycle-application-analyst-i-is-revenue-cycle-apps-full-time-8-hour-days-non-exempt-non-union","source":"naylor","job":"21354158","jobTitle":"Revenue Cycle Application Analyst I - IS Revenue Cycle Apps - Full Time 8 Hour Days (Non-Exempt) (Non-Union)"},"21352736":{"jobPath":"/jobs/21352736/regulatory-and-government-affairs-associate","source":"naylor","job":"21352736","jobTitle":"Regulatory and Government Affairs Associate"},"21353989":{"jobPath":"/jobs/21353989/senior-engineer-it-privacy-compliance-program-lead","source":"naylor","job":"21353989","jobTitle":"Senior Engineer, IT Privacy Compliance Program Lead"},"21358411":{"jobPath":"/jobs/21358411/imaging-application-analyst-ii-is-imaging-apps-full-time-8-hour-days-non-exempt-non-union","source":"naylor","job":"21358411","jobTitle":"Imaging Application Analyst II - IS Imaging Apps - Full Time 8 Hour Days (Non-Exempt) (Non-Union)"},"21355321":{"jobPath":"/jobs/21355321/senior-firewall-security-engineer","source":"naylor","job":"21355321","jobTitle":"Senior Firewall Security Engineer"},"21357287":{"jobPath":"/jobs/21357287/manager-risk-modeling-services","source":"naylor","job":"21357287","jobTitle":"Manager, Risk Modeling Services"},"21354151":{"jobPath":"/jobs/21354151/service-agent-i-is-client-services-full-time-8-hour-rotating-shift-non-exempt-non-union","source":"naylor","job":"21354151","jobTitle":"Service Agent I - IS Client Services - Full Time 8 Hour Rotating Shift (Non-Exempt) (Non-Union)"},"21361926":{"jobPath":"/jobs/21361926/information-security-engineer-ii-ent","source":"naylor","job":"21361926","jobTitle":"Information Security Engineer II-ENT"},"21355460":{"jobPath":"/jobs/21355460/lead-identity-and-access-management-architect-is-t-information-security","source":"naylor","job":"21355460","jobTitle":"LEAD IDENTITY AND ACCESS MANAGEMENT ARCHITECT, IS&T Information Security"},"21356295":{"jobPath":"/jobs/21356295/nurse-risk-management-analyst","source":"naylor","job":"21356295","jobTitle":"Nurse Risk Management Analyst"},"21354168":{"jobPath":"/jobs/21354168/licensed-therapists-for-high-risk-team-in-counseling-and-mental-health-cmh-clinical-instructor-or-assistant-professor-of-clinical-psychiatry-and-the-behavioral-sciences-clinican-educator","source":"naylor","job":"21354168","jobTitle":"Licensed Therapists for High Risk Team in Counseling and Mental Health (CMH) / Clinical Instructor or Assistant Professor of Clinical Psychiatry and the Behavioral Sciences (Clinican Educator)"},"21354169":{"jobPath":"/jobs/21354169/legal-specialist-risk-insurance-risk-management-full-time-8-hour-days-exempt-non-union","source":"naylor","job":"21354169","jobTitle":"Legal Specialist, Risk & Insurance - Risk Management - Full Time 8 Hour Days (Exempt) (Non-Union)"}}
Ardent Health is a leading provider of healthcare in growing mid-sized urban communities across the U.S. With a focus on people and investments in innovative services and technologies, Ardent is passionate about making healthcare better and easier to access. Through its subsidiaries, Ardent delivers care through a system of 30 acute care hospitals, 24,000+ team members and more than 280 sites of care with over 1,800 affiliated providers across six states.
POSITION SUMMARY
The Manager, Information Security Compliance (SOX ITGC) will ensure the development and maintenance of SOX ITGC policies and procedures, manage the Risk and Control Matrix (RACM), monitor compliance, and conduct risk assessments. This position will work closely with IT leadership, subject matter experts, risk management, compliance, and Internal Audit to maintain a robust SOX ITGC compliance program.
Develop and implement policies and procedures to ensure compliance with SOX 404 regulations related to IT General Controls.
Regularly review and update policies to reflect current standards and practices.
Maintain the Risk and Control Matrix (RACM) by ensuring current control descriptions are accurately stated, effective and align with SOX objectives.
Continuously monitor the organization’s adherence to SOX requirements, internal policies, and industry standards.
Conduct systematic risk assessments to identify, evaluate, and prioritize risks related to SOX compliance.
Facilitate team meetings to discuss compliance issues and updates.
Design and monitor KPI’s indicating the continued operating effectiveness of IT controls.
Develop and conduct training programs to educate control owners on SOX compliance requirements.
Coordinate internal audits to evaluate the effectiveness of IT controls and ensure compliance with SOX 404 regulations. Work with internal and external auditors to provide necessary documentation and support during audit processes.
Education & Experience:
Bachelor’s degree in Information Technology, Cybersecurity, Business Administration, or a related field.
Five years of experience in information security compliance, IT Audit, or a related field.
Experience working in highly ambiguous environments, with the capability to independently identify problems, develop solutions, and drive initiatives to completion.
Certifications such as CPA, CISA, CRISC, or CISSP.. preferred
Experience in the Healthcare industry and/or publicly traded companies, preferred.
Experience with Ardent Key Systems: Epic, Lawson, Active Directory, and SailPoint, preferred.
Experience with scripting languages such as SQL and PowerShell, preferred.
Knowledge, Skills & Abilities:
Strong understanding of IT General Controls (ITGCs) and their role in SOX compliance, as well as familiarity with IT infrastructure and security architecture.
Ability to understand business issues and objectives and translate them into compliance solutions.
Familiarity with Microsoft O365 (word, teams, etc.) and ServiceNow. preferred.
Exposure to Alteryx or related data analytics and automation tools, preferred
ABOUT US
Ardent Health Services, located in Nashville, Tennessee, owns and operates 30 hospitals and 200+ sites of care with more than 1,400 aligned providers in six states. With a focus on consumer-friendly processes and investments in innovative services and technologies, Ardent is passionate about making healthcare better and easier to access. Ardent has earned a reputation as one of the industry’s strongest and most innovative hospital operators, with its entities consistently recognized among healthcare’s best employers.
We believe:
People first. Always. We show compassion, celebrate differences and treat one another with respect.
Teamwork wins. We believe healthcare is a team sport and every player has something to contribute.
Simplicity is everything. We are passionate about finding new ways to make healthcare easier to access and deliver.
Think BIG. We pursue extraordinary in everything we do – never settling for good enough.
