Thank you for considering a career at Ensemble Health Partners!
Ensemble Health Partners is a leading provider of technology-enabled revenue cycle management solutions for health systems, including hospitals and affiliated physician groups. They offer end-to-end revenue cycle solutions as well as a comprehensive suite of point solutions to clients across the country.
Ensemble keeps communities healthy by keeping hospitals healthy. We recognize that healthcare requires a human touch, and we believe that every touch should be meaningful. This is why our people are the most important part of who we are. By empowering them to challenge the status quo, we know they will be the difference!
O.N.E Purpose:
Customer Obsession: Consistently provide exceptional experiences for our clients, patients, and colleagues by understanding their needs and exceeding their expectations.
Embracing New Ideas: Continuously innovate by embracing emerging technology and fostering a culture of creativity and experimentation.
Striving for Excellence: Execute at a high level by demonstrating our “Best in KLAS” Ensemble Difference Principles and consistently delivering outstanding results.
The Opportunity:
The Engineer, Cybersecurity will serve as the subject matter expert (SME) for Third-Party Risk Management (TPRM) at Ensemble Health Partners. This role is responsible for leading the maturity and execution of enterprise-wide TPRM processes, including vendor risk assessments, platform administration, and reporting. The selected candidate will drive integration of the Prevalent tool into existing governance workflows and collaborate across risk, audit, compliance, and information security teams to ensure a robust vendor risk posture.
Core Responsibilities- Serve as the TPRM SME, leading the development and execution of vendor risk management processes.
- Administer and optimize the Prevalent platform, including questionnaire workflows, risk scoring, reporting, and escalation procedures.
- Collaborate with stakeholders across risk, audit, compliance, and security to align third-party risk controls with enterprise governance.
- Develop and maintain SOPs for vendor onboarding, classification, reassessment, and issue remediation.
- Monitor and report on vendor risk metrics, including SLA adherence, remediation timelines, and risk trends.
- Lead cybersecurity tabletop exercises involving third-party breach scenarios and incident response coordination.
- Coordinate with internal teams and external vendors across multiple time zones and global environments.
- Apply frameworks such as NIST to assess and validate third-party compliance.
- Manage third-party risk assessments and ensure timely completion of vendor reviews.
- Develop and maintain a repeatable reporting strategy for distributing vendor risk insights to leadership.
- Coordinate with procurement and legal teams to ensure third-party contracts align with cybersecurity requirements.
- Establish and maintain a metrics framework to measure the effectiveness of TPRM activities and vendor compliance.
- Collaborate with internal teams to remediate identified third-party risks and track resolution progress.
- Continuously evaluate and improve TPRM processes to align with evolving regulatory and business requirements.
- 2–3 years of professional experience in Third-Party Risk Management or vendor risk operations.
- Hands-on experience with Prevalent or similar TPRM platforms.
- Strong understanding of GRC frameworks and their application to third-party risk.
- Strong understanding of NIST CSF, SOC 2 Type II, and HITRUST
- Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
- 3–5 years of experience in Information Security, preferably in healthcare or vendor-heavy environments.
- Proven success managing vendor risk programs, including assessments, reporting, and remediation.
#LI-MT1
#LI-Remote
Join an award-winning company
Five-time winner of “Best in KLAS” 2020-2022, 2024-2025
Black Book Research's Top Revenue Cycle Management Outsourcing Solution 2021-2024
22 Healthcare Financial Management Association (HFMA) MAP Awards for High Performance in Revenue Cycle 2019-2024
Leader in Everest Group's RCM Operations PEAK Matrix Assessment 2024
Clarivate Healthcare Business Insights (HBI) Revenue Cycle Awards for strong performance 2020, 2022-2023
Energage Top Workplaces USA 2022-2024
Fortune Media Best Workplaces in Healthcare 2024
Monster Top Workplace for Remote Work 2024
Great Place to Work certified 2023-2024
Innovation
Work-Life Flexibility
Leadership
Purpose + Values
Bottom line, we believe in empowering people and giving them the tools and resources needed to thrive. A few of those include:
- Associate Benefits – We offer a comprehensive benefits package designed to support the physical, emotional, and financial health of you and your family, including healthcare, time off, retirement, and well-being programs.
- Our Culture – Ensemble is a place where associates can do their best work and be their best selves. We put people first, last and always. Our culture is rooted in collaboration, growth, and innovation.
- Growth – We invest in your professional development. Each associate will earn a professional certification relevant to their field and can obtain tuition reimbursement.
- Recognition – We offer quarterly and annual incentive programs for all employees who go beyond and keep raising the bar for themselves and the company.
Ensemble Health Partners is an equal employment opportunity employer. It is our policy not to discriminate against any applicant or employee based on race, color, sex, sexual orientation, gender, gender identity, religion, national origin, age, disability, military or veteran status, genetic information or any other basis protected by applicable federal, state, or local laws. Ensemble Health Partners also prohibits harassment of applicants or employees based on any of these protected categories.
Ensemble Health Partners provides reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law. If you require accommodation in the application process, please contact [email protected].
This posting addresses state specific requirements to provide pay transparency. Compensation decisions consider many job-related factors, including but not limited to geographic location; knowledge; skills; relevant experience; education; licensure; internal equity; time in position. A candidate entry rate of pay does not typically fall at the minimum or maximum of the role’s range.
EEOC – Know Your Rights
FMLA Rights - English
La FMLA Español
E-Verify Participating Employer (English and Spanish)
Know your Rights
Top Skills
Similar Jobs
.png)
What you need to know about the Colorado Tech Scene
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
