Skip to Main Content

Kaiser Permanente Careers

ITRM CAAS Principal

Location: Pleasanton, CA Job Number: 973740 Date posted: 07/21/2021

View Disability Accomodations

Navigating the Hiring Process

We're here to support you!

Having trouble with your account or have questions on the hiring process?

Please visit the FAQ page on our website for assistance.

Need help with your computer and browser settings?

Please visit the Technical Information page for assistance or reach out to the web manager at

Do you need a reasonable accommodation due to a disability?

A reasonable accommodation is any modification or adjustment that enables you to fully participate in completing the following:

  • Online Submissions
  • Pre-Hire Assessments
  • Interview Process

Please submit your accommodation request and an HR Representative will contact you.


The VRM Principal is an individual contributor with responsibilities at leadership level for developing strategies and implement workplans that deliver on expected VRM results while highlighting VRM values to the organization. The Principal represents VRM professionally and competently in providing consultancy and advices to KP Business Units and KP Leadership on vendor engagements, especially those with long-term strategic focus.  The Principal:

  • Plans and manages assigned program work streams to its conclusion, providing regular status update, communicating with key stakeholders and partners, identifying issue and manage escalation to resolution, and ensuring quality deliverables.

  • Demonstrates proficiency developing executive reports and deliver presentation to executives and leaders

  • Demonstrates deep experience with auditing techniques and remediation strategies, with ability to clearly document assessment results, and conclusions drawn

  • Leads the continuous improvement of VRM processes, stays abreast with current events (internal & external to KP) to ensure VRM remains ahead of the curve in third-party risk management, builds relationship within TRO and KP at large to create alignment with organizational direction, and communicates, trains and guides VRM team members in support of the VRM mandates. 

  • Exhibits ethical behaviors in self and encourage others in accordance to the Principles of Responsibility; adheres to organizational policies and guidelines; supports compliance initiatives; maintains confidences; admits mistakes; conducts business with honesty; shows consistency in words and actions; follows through on commitments

This individual contributor position is accountable for multiple large-scale ITRM engagements, including managing resources and financials. These engagements include compliance assessments and consulting projects that span multiple businesses. This role is also responsible for the direction of performance metrics and reporting tools, including the identification of new methods for compiling and correlating data. This position is expected to work collaboratively with leadership to develop the overall ITRM strategy and define goals, objectives, deliverables, and guardrails within the governance framework to ensure the development and implementation of efficient, effective, measurable, and sustainable ITRM processes and controls.

Essential Responsibilities:

  • Drives the execution of multiple work streams by identifying customer and operational needs; developing and updating new procedures and policies; gaining cross-functional support for objectives and priorities; translating business strategy into actionable business requirements; obtaining and distributing resources; setting standards and measuring progress; removing obstacles that impact performance; guiding performance and developing contingency plans accordingly; solving highly complex issues; and influencing the completion of project tasks by others.

  • Practices self-leadership and promotes learning in others by soliciting and acting on performance feedback; building collaborative, cross-functional relationships; communicating information and providing advice to drive projects forward; adapting to competing demands and new responsibilities; providing feedback to others, including upward feedback to leadership; influencing, mentoring, and coaching team members; fostering open dialogue amongst team members; evaluating and responding to the strengths and weaknesses of self and unit members; and adapting to and learning from change, difficulties, and feedback.

  • Drives ITRM process and/or methodology for designated ITRM initiatives by leading or directing team members in the documentation of process and/or service requirements and acceptance criteria; and working collaboratively with leadership to develop the ITRM strategy.

  • Defines goals, objectives, deliverables, and guardrails within the governance framework to ensure the development and implementation of efficient, effective, measurable, and sustainable ITRM processes and controls.

  • Drives the direction of performance metrics and reporting tools, suggesting process improvements for gathering metrics and identifying new methods for compiling and correlating data sets within the organization.

  • Executes and plans large complex ITRM compliance assessments and consulting projects that span multiple business units and operational areas.

  • Leads multiple large-scale ITRM engagements with full responsibility and accountability for the outcomes.

  • Manages and monitors the financials of multiple large scale ITRM engagements.

  • Allocates resources, establishes schedules, and makes task assignments.

Minimum Qualifications:

  • Minimum five (5) years in an informal leadership role working with business or technical teams.

  • Bachelor's Degree in MIS, Information Security, Accounting, Finance, or related field and Minimum ten (10) years experience in IT risk management, compliance, or information security, including Minimum two (2) years developing IT compliance frameworks or ITRM methodologies. Additional equivalent work experience may be substituted for the degree requirement.

  • Preferred Qualifications:

  • Four (4) years of work experience in a role requiring interaction with executive leadership (e.g., Vice President level and above)

  • Five (5) years experience writing ITRM documentation and assessment reports.

  • Four (4) years experience working in a large matrixed organization.

  • Four (4) years experience in the development and delivery of ITRM metrics and reporting.

  • Master's Degree in MIS, Information Security, Accounting, Finance, or related field.

  • CISSP or comparable certification.

  • CISM or comparable certification.

  • CISA or comparable certification.

  • QSA or ISA certification.
  • Primary Location: California,Pleasanton,Pleasanton Tech Cntr Building E Scheduled Weekly Hours: 40 Shift: Day Workdays: Mon, Tue, Wed, Thu, Fri Working Hours Start: 08:00 AM Working Hours End: 05:00 PM Job Schedule: Full-time Job Type: Standard Employee Status: Regular Employee Group/Union Affiliation: NUE-IT-01|NUE|Non Union Employee Job Level: Individual Contributor Specialty: ITRM CAAS Department: KPIT ADMIN - Vendor Risk Mgmt - 9601 Travel: No Kaiser Permanente is an equal opportunity employer committed to a diverse and inclusive workforce. Applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), age, sexual orientation, national origin, marital status, parental status, ancestry, disability, gender identity, veteran status, genetic information, other distinguishing characteristics of diversity and inclusion, or any other protected status.

    External hires must pass a background check/drug screen. Qualified applicants with arrest and/or conviction records will be considered for employment in a manner consistent with federal and state laws, as well as applicable local ordinances, including but not limited to the San Francisco and Los Angeles Fair Chance Ordinances.

    Our Events

    Connect with a member of the Kaiser Permanente team at an upcoming career or professional event. We look forward to seeing you!

    Join Kaiser Permanente's Talent Network

    Sign up to receive information about opportunities that relate to your interests.