How is this team contributing to vision of Providence
As Providence continues to evolve, our commitment to doing the right thing right remains steadfast. The Risk and Compliance team enables Providence's vision by establishing robust internal controls and compliance practices that foster responsible healthcare innovation.
The team partners with business and contract owners to proactively manage contractual risks, strengthen controls, and embed compliance across external customer engagements. This enables clear oversight of risk posture and supports Providence in delivering responsible, highquality services as the organization continues to grow.
What will you be responsible for
Responsibilities
You will be responsible for enabling endtoend contractual risk and compliance oversight across Providence India's external customer engagements, ensuring risks are identified early and managed proactively as the portfolio scales. This includes:
- Providing a 360degree view of contractual risk and compliance at a customer account level, covering delivery, financial, operational, talent, and execution risks
- Defining and operationalizing risk and controls frameworks across the customer lifecycle, including Statements of Work (SoWs) and amendments
- Performing contractual compliance assessments and controls testing, identifying gaps, and driving remediation in partnership with delivery and support teams
What would your week look like
In a Typical Week, You'll Spend Time Focusing On Assessing And Contractual Compliance And Risk Aspects, Working Closely With Delivery Teams And Corporate Functions, And Presenting Insights To Leadership. Your Focus Will Align With The Specific Stage Of Each Contract's Lifecycle, Ensuring Attention To The Most Relevant Risks For That Customer At Any Given Time. Typically, This Will Involve
- Reviewing active customer engagements to assess contractual compliance. Performing controls testing and risk assessments, tracking findings, and following up on remediation actions.
- Working closely with delivery, external services, finance, and legal teams to understand changes in scope, SoWs, amendments, and emerging risks
- Act as a trusted advisor to stakeholders on contractual compliance related topics.
- Monitoring key risk indicators (KRI's) and early warning indicators to identify trends, potential issues, and escalation triggers
- Developing risk summaries, dashboards, and insights for leadership and governance forums
- Preparing account management teams for periodic reviews and audits by internal and external teams and support in contract specific assessments including SOC2, Hi-TRUST, ISO, others
- Driving education and awareness initiatives on contractual compliance and risk management topics.
- Enabling a consistent and scalable approach to contractual risk and compliance as external customer engagements grow
Who are we looking for
- 8 10 years of experience in contractual compliance, risk management, internal controls, or audit in IT services, healthcare, or regulated environments
- B.Tech or Qualified CA or MBA with good academic record
- Certifications such as CIA, CISA, CRISC, ISO 27001 Lead auditor/ implementer etc.
- Strong understanding of Statements of Work (SoWs), amendments, and customer contracts, and how risks emerge across the IT service delivery contract lifecycle
- Handson experience performing risk assessments, compliance reviews, and controls testing, with the ability to track findings and drive remediation
- Ability to identify and monitor Key Risk Indicators (KRIs) and early warning signals across delivery, financial, operational, and talent risk areas
- Experience supporting or coordinating client audits and assurance activities (e.g., SOC 2, HiTRUST, ISO, or similar frameworks)
- Strong stakeholder management skills
- Strong analytical mindset with attention to detail and an ability to see patterns, trends, and emerging risks across accounts
- Ability to create clear risk summaries, dashboards, and insights for leadership and governance forums
- Proactive, selfdriven, and willing to take ownership from assessment through remediation
