Program Manager – Business Continuity – Practice

Why Mayo Clinic

Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans (https://jobs.mayoclinic.org/benefits/) – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. You’ll thrive in an environment that supports innovation, is committed to ending racism and supporting diversity, equity and inclusion, and provides the resources you need to succeed.

Responsibilities

Partners with Practice leadership to develop, coordinate and manage comprehensive extended network downtime (END) response strategies that maintain critical functions in the event of disruption. Serves as the main contact for questions related to the program. Assists in the development of negotiation strategies, identifies areas of risk, develops risk mitigation strategies, and provides recommendations to Practice decision makers. Develops extensive knowledge of products, services, and operations and creates policies, procedures, and processes to support them. Independently lead problem-solving and decision-making activities, within the program scope and change management process, assessing risks and actions to accomplish program objectives. Lead and assist others in the translation of complex, interdependent specifications into understandable and actionable business requirements. Interfaces with the Business Resilience Program to inform the development of plans, education, and tools as it relates to business continuity, emergency management, technology resilience and information security and to ensure they meet the needs of the Rochester Practice. The Program Manager will serve as the point person for planning, coordination, and communication between the Rochester Practice. This position communicates regularly with various levels of internal personnel, and is responsible for organizing, leading, and presenting at various meetings.

Key Responsibilities

Partner with the Business Resilience Program, IT, Compliance and Risk Management to ensure plans are compliant with regulatory and accreditation requirements (e.g., Joint Commission standards).

Partner with the Practice leadership to identify critical systems/workflows that need prioritized protection and planning.

Ensure protocols to safeguard patient records, diagnostic tools, treatment plans, and ensure minimal disruption in patient care.

Collaborate with IT, HTM, etc. to ensure medical devices and diagnostic tools connected to EHR systems are included in the ransomware response plan.

Ensure ransomware plans include scheduling, billing, phone systems, and telemedicine systems, with clear backup procedures for patient communications and appointments during an attack.

Partner with Business Resilience to design and implement an ongoing ransomware awareness and response training program.

Develop and maintain tailored, on-demand training for staff to address unique threats and vulnerabilities and ensure accessibility during extended network downtimes.

In collaboration with Emergency Preparedness, organize regular ransomware simulations and tabletop exercises to test and refine response procedures, improve readiness, and identify gaps in the plans.

Implement a rigorous maintenance plan, ensuring extended network downtime response plans are reviewed, updated, and evaluated at regular intervals. Plans will be revised based on evolving cyber threats, changes in technology, and updates in regulatory requirements.

Continuously monitor ransomware trends and new threat vectors, making proactive updates to the plans as needed. Provide regular status updates to leadership, documenting any gaps or areas of concern.

Partner with HICS, Business Resilience and Practice Leadership to respond in real-time, helping ensure all areas are aware of their role and responsibilities.

Help facilitate after-action reviews, and incident debriefs to refine the ransomware preparedness plans and identify areas of improvement.

Provide consistent progress reports to leadership, tracking preparedness levels, training completion rates, and compliance with the maintenance schedule.

Qualifications

A Bachelors Degree in business or a healthcare related field required with a minimum of five years relevant experience in healthcare. Exceptional customer service skills, negotiation skills, and the ability to develop strong working relationships is a priority for this position. Must possess exceptional written and verbal communication skills, and the ability to maintain confidential information. Ability to simultaneously manage multiple priorities and projects and monitor details. Experience in working with contracts and regulatory requirements is preferred.

Exemption Status

Exempt

Compensation Detail

$xx,xxx – $xx,xxx / year; This position has a predetermined rate of $xx.xx per hour.; Education, experience and tenure may be considered along with internal equity when job offers are extended.; $xx.xx – $xx.xx / hour; Compensation range is $xx.xx -$xx.xx / hour based upon union contract

Benefits Eligible

Yes

Schedule

Full Time

Hours/Pay Period

80

Schedule Details

Monday – Friday

International Assignment

No

Site Description

Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is. (https://jobs.mayoclinic.org/alllocations)

Affirmative Action and Equal Opportunity Employer

As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.

Recruiter

Tricia Harding

Equal opportunity

As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.