Vice President, Control Assurance and AI Risk Governance jobs in United States
cer-icon
Apply on Employer Site
company-logo

UnitedHealth Group · 1 day ago

Vice President, Control Assurance and AI Risk Governance

positionEden Prairie, MN
timeFull-time
remoteHybrid
seniorityDirector/Executive
money$200K/yr - $344K/yr
date12+ years exp

UnitedHealth Group is a health care and well-being company dedicated to improving health outcomes globally. The Vice President of Control Assurance and AI Risk Governance will ensure effective controls, manage regulatory adherence, and provide governance in a complex regulatory landscape.

Health CareHospitalMedicalWellness

Responsibilities

Establish and lead a Testing Center of Excellence (CoE). Define testing standards, methodologies, and tooling to ensure consistent execution of preventive, detective, and corrective control testing across the enterprise
Design, implement, and validate controls. Drive enterprise-wide control design and testing programs-covering IT, business, and AI/ML controls-to ensure effectiveness and alignment with regulatory and risk appetite expectations
Manage the full lifecycle of control deficiencies. Govern deficiency identification, risk rating, remediation planning, and closure tracking with transparency and accountability. Provide CoE-driven reporting on remediation progress
Oversee audit readiness and evidence collection. Standardize evidence collection processes, ensuring traceability, completeness, and reliability across the three lines of defense. Drive CoE-enabled automation to improve efficiency and reduce audit fatigue
Expand traditional CoE testing protocols to cover AI models and governance, embedding ethical and regulatory considerations into testing frameworks
Trigger and govern escalation workflows for AI/IT control failures. Ensure timely issue escalation and structured governance workflows for failed control tests or detected model drift, driving accountability and sustainable remediation
Provide insights and Board-level reporting from CoE analytics. Deliver enterprise dashboards and trend analysis on control testing outcomes, deficiency root causes, and remediation performance to inform executive decision-making

Qualification

GovernanceRiskComplianceNIST CSFProfessional certificationsControl lifecycle managementAI/ML risk governanceEnterprise GRC platformsRegulatory frameworks knowledgeAnalytical mindsetStakeholder engagementLeadership skillsCommunication skillsAdaptability

Required

Bachelor's degree in Business, Information Security, Risk Management, Computer Science, or a related field (advanced degree preferred)
Professional certifications such as: CRISC, CISA, CISSP, CISM, CPA and/or CIA highly preferred
Proven knowledge of NIST CSF, NIST AI RMF, HITRUST, ISO 27001, NYDFS Cybersecurity Regulation, SOX, HIPAA, and PCI-DSS
12+ years of progressive experience in Governance, Risk, and Compliance (GRC), audit or cybersecurity
5+ years in a leadership role, leading through other leaders and cross-functional teams in complex, regulated industries (financial services, insurance, healthcare, or technology)
Proven track record implementing enterprise GRC platforms (e.g., Archer, ServiceNow GRC, OneTrust, MetricStream)
Experience leading control lifecycle management (design, testing, deficiency remediation)
Demonstrated oversight of AI/ML risk governance, cloud adoption, and digital transformation initiatives
Successful history of managing Board- and regulator-facing reporting, metrics, and remediation outcomes
Deep knowledge of enterprise risk frameworks and alignment to NIST functions (Identify, Protect, Detect, Respond, Recover)
Ability to govern both traditional IT/business controls and emerging AI/ML model governance, including bias, fairness, and explainability
Solid leadership, communication, and stakeholder engagement skills, with ability to influence executive leadership and Boards
Analytical mindset with expertise in metrics, dashboards, and risk appetite reporting
Skilled in leading cross-functional governance forums (policy councils, issue management boards, risk committees)
High adaptability, with proven ability to integrate new regulatory requirements into enterprise governance structures
All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy

Benefits

Comprehensive benefits package
Incentive and recognition programs
Equity stock purchase
401k contribution

Company

UnitedHealth Group

twittertwittertwitter
Glassdoor3.7
company-logo
UnitedHealth Group is a medical insurance company that offers health technology, patient checkups, and pharmacy services.
dateFounded in 1977
location
Minneapolis, Minnesota, USA
people-size10001+ employees
web-link
https://www.unitedhealthgroup.com/

Funding

Current Stage
Public Company
Total Funding
$7.57B
Key Investors
Berkshire Hathaway
2025-08-15Post Ipo Equity· $1.57B
2024-03-22Post Ipo Debt· $6B
2021-08-25Post Ipo Equity

Leadership Team

leader-logo
Andrew Hayek
Chief Executive Officer
linkedin
leader-logo
Wayne DeVeydt
CFO

Recent News

Hartford Business Journal
2 of CT’s largest cities join 5 other communities in filing lawsuits vs. insulin drugmakers, PBMs
2026-01-11
STAT
STAT+: Wyden, Warren expand UnitedHealth nursing home investigation
2026-01-09
Benzinga.com
House Passes Bill Extending Health Care Subsidies Despite GOP Leadership Opposition
2026-01-09
Company data provided by crunchbase