IT Risk & Controls Manager (Internal Audit Manager) (E13) Or IT Risk & Controls Senior (Internal Auditor Senior) (E12) -Ps35306

Anthem, Inc. Atlanta , GA 30301

Posted 2 months ago

Description

SHIFT: Day Job

SCHEDULE: Full-time

Your Talent. Our Vision. At Anthem, Inc., it's a powerful combination, and the foundation upon which we're creating greater care for our members, greater value for our customers, and greater health for our communities. Join us and together we will drive the future of health care.

This is an exceptional opportunity to do innovative work that means more to you and those we serve at one of America's leading health benefits companies and a Fortune Top 50 Company.

Internal Audit Job Family

(Hiring level based on experience)

  • Preferred office location: Indianapolis, IN. Will also consider Atlanta, GA; Mason, OH; or Virginia Beach, VA.

IT Risk & Controls Manager (Internal Audit Manager) - PS35306

The IT Risk & Controls Manager ("Internal Audit Manager") leads IT audit procedures to support the company's Sarbanes-Oxley, SOC 1 and SOC 2 compliance activities. Evaluates complex business processes dependent on technology to ensure conformance with Public Company Accounting Oversight Board standards, company policy and procedures, sound principles of internal control, and applicable professional standards of practice (such as SOX and SSAE 18). Collaborates with external auditors on audit planning, evaluation and issuance of final reports. Works with business management to remediate findings and implement process improvements. Supports department Directors on strategic initiatives, including the development of staff members.

Primary duties may include, but are not limited to:

  • Assist in managing the team responsible for testing all in scope Logical Security, Change Management, Infrastructure, Firecall, IT Operations, Security, Availability, Confidentiality, Processing Integrity and Privacy controls.

  • Provide subject matter expertise on risk and control changes to Anthem control and process owners in a complex IT environment for controls specific to applications, databases and operating systems.

  • Assist in mapping IT controls to relevant audit frameworks.

  • Facilitate SOC and SOX audit PBC requests for all assigned responsibilities.

  • Manage all audit activities including planning, scoping, control testing, reporting and the interaction between external auditors and internal Anthem teams for all assigned responsibilities.

  • Be a technical resource for internal staff specific to understanding and auditing IT applications, operating systems, databases, networks, and infrastructures.

  • Reviews results/documentation of controls testing to ensure compliance with professional standards (including SOX and SSAE 18 SOC 1 and SOC 2 reports).

  • Manage the audit issue process with control owners and agree on remediation plans for all assigned responsibilities.

  • Assigns work to other associates, reviews their work and provides guidance and training.

  • Works with external auditors on issuance of final audit reports.

  • Provides input to management on staff performance.

The IT Risk & Controls Senior ("Internal Auditor Senior") performs and leads IT audit procedures to support the company's Sarbanes-Oxley and SSAE 18 (SOC 1 and SOC 2) compliance activities. Evaluates complex business processes to ensure conformance with Public Company Accounting Oversight Board standards, company policy and procedures, sound principles of internal control, and applicable professional standards of practice (such as SOX and SSAE 18). Collaborates with external auditors primarily on IT audit planning, testing and evaluation procedures. Ensures stability and compliance with audit and regulatory requirements/mandates.

Primary duties may include, but are not limited to:

  • Evaluates SOC1 and SOC 2 controls related to Change Management, Infrastructure, IT Operations, Security, Availability, Confidentiality, Processing Integrity and Privacy.

  • Develops and/or follows complex and/or detailed procedures as well as non-standard IT and integrated audit programs related to various types of IT considerations including IT applications, operating systems, databases, networks, and infrastructures in both mainframe and client-server environments.

  • Performs IT controls audit procedures on a variety of operating systems including Windows, UNIX, LINUX, and z/OS.

  • Performs IT controls audit procedures on both commercial and open source database management systems (MS-SQL, MySQL, Oracle and Sybase).

  • Evaluates controls around network security.

  • Discusses IT audit issues with both technical and non-technical business partners.

  • Reviews and documents results of compliance testing in accordance with professional standards (including SOX and SSAE 18).

  • Coordinates engagement plan objectives (conducts team meetings, performs interviews and research necessary to perform reviews and audits, verifies projects are tracking timely, creates issue lists).

  • Performs other tasks as assigned.

Qualifications

IT Risk & Controls Manager (Internal Audit Manager) - PS35306

Qualifications:

  • Requires a BS/BA in Accounting or Finance.
  • 5-8 years directly related work experience; or any combination of education and experience, which would provide an equivalent background.

Preferred Qualifications:

  • Competent understanding of auditing a variety of technology platforms and regulatory requirements/standards (PCAOB, SSAE 18, SOX, COSO, CobiT, etc) is strongly preferred.

  • CPA, CIA, CISA, MBA, CISSP, or other relevant advanced degree or certification a plus.

  • Competent desktop skills (MS Excel, Word, other MS Office products) strongly preferred.

  • Strong written and verbal communication skill required.

  • Excellent organization and time management skills required.

  • Ability to work in team environment required.

Additional Degrees: Information Technology, Computer Science or Business Administration.

IT Risk & Controls Senior (Internal Auditor Senior) PS35306

Qualifications:

  • Requires a BS/BA in Accounting or Finance 4+ years related experience; or any combination of education and experience, which would provide an equivalent background.

Preferred Qualifications:

  • Competent understanding of auditing a variety of technology platforms and regulatory requirements/standards (PCAOB, SSAE 18, SOX, COSO, CobiT, etc) is strongly preferred.

  • CPA, CIA, CISA, MBA, CISSP, or other relevant advanced degree or certification a plus.

  • Competent desktop skills (MS Excel, Word, other MS Office products) strongly preferred.

  • Strong written and verbal communication skill required.

  • Excellent organization and time management skills required.

  • Ability to work in team environment required.

Additional Degrees: Information Technology, Computer Science or Business Administration.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Seasonal Internal Audit Senior Associate (Southeast)

Pwc

Posted 2 weeks ago

VIEW JOBS 5/10/2020 12:00:00 AM 2020-08-08T00:00 A career in our Flexibility Talent Network practice will focus on directly supporting our client engagement teams by attracting qualified candidates for short term or defined period opportunities. This unique career option provides an alternative to year round employment for people who are looking to pursue meaningful experiences or responsibilities outside their time with PwC. To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: * Use feedback and reflection to develop self awareness, personal strengths and address development areas. * Delegate to others to provide stretch opportunities and coach to help deliver results. * Develop new ideas and propose innovative solutions to problems. * Use a broad range of tools and techniques to extract insights from from current trends in business area. * Review your work and that of others for quality, accuracy and relevance. * Share relevant thought leadership. * Use straightforward communication, in a structured way, when influencing others. * Able to read situations and modify behavior to build quality, diverse relationships. * Uphold the firm's code of ethics and business conduct. The specialty area of Process Assurance provides services related to controls around the financial reporting, compliance and operational processes, including business process and IT management controls. Job Requirements and Preferences: Basic Qualifications: Minimum Degree Required: Bachelor Degree Required Fields of Study: Mathematics, Accounting, Finance, Management Information Systems, Management Information Systems & Accounting, Computer and Information Science, Computer and Information Science & Accounting, Economics, Economics and Finance, Economics and Finance & Technology, Business Administration/Management, Engineering, Accounting & Technology Minimum Years of Experience: 2 year(s) of IT auditing, consulting and/or implementing Preferred Qualifications: Certification(s) Preferred: CPA License, CISA or CIA Preferred Knowledge/Skills: Demonstrates thorough abilities and/or a proven record of success in providing services related to controls around the financial reporting, compliance and operational processes, including business process and IT management controls, which includes a proven record of success with facilitating and completing deliverables involving the following: * Financial reporting and information technology risks, processes and controls; * Current and emerging technologies which may include Oracle, SAP, Oracle Database, web development tools, virtualization, UNIX, Linux, and security technologies; * COSO Framework, CoBIT and/or other leading business and IT control frameworks; and, * Key domains of information technology general controls, including change management, access to programs and data, computer operations and systems development. Demonstrates thorough abilities and/or a proven record of success in controls around the financial reporting, compliance and operational processes within a professional services firm or large enterprise a consultant, auditor or business process specialist, including business process and IT management controls, which includes a proven record of success with completing deliverables related to the following: * Identifying key risks and controls, knowledge of Sarbanes Oxley readiness, controls optimization, including the configuration of controls around security, business process and within IT environments; * Applying internal control principles and business/technical knowledge including information technology general controls and application controls, financial reporting concepts, and working experience applying professional skepticism skills; * Leading the adaption a work program and practice aid, as well as perform assessments, using PwC's proprietary or other relevant tools to evaluate controls, security, SOD, and potential for optimization; * Exhibiting project management skills, including developing project plans, budgets, and deliverables schedules; * Creating a positive environment, monitoring workloads of the team while meeting client expectations, and respecting the work-life quality of team members including providing candid, meaningful feedback in a timely manner and keeping leadership informed of progress; and, * Interacting with clients on solutions and executing projects on client engagements, forming client relationships and demonstrating an understanding of the client's business. All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer. Pwc Atlanta GA

IT Risk & Controls Manager (Internal Audit Manager) (E13) Or IT Risk & Controls Senior (Internal Auditor Senior) (E12) -Ps35306

Anthem, Inc.