Transforming the future of healthcare isn't something we take lightly. It takes teams of the best and the brightest, working together to make an impact.
As one of the largest healthcare technology companies in the U.S., we are a catalyst to accelerate the journey toward improved lives and healthier communities.Here at Change Healthcare, we're using our influence to drive positive changes across the industry, and we want motivated and passionate people like you to help us continue to bring new and innovative ideas to life.
If you're ready to embrace your passion and do what you love with a company that's committed to supporting your future, then you belong at Change Healthcare.
Pursue purpose. Champion innovation.
Earn trust. Be agile. Include all.
Empower Your Future. Make a Difference.
The mission of the Internal Audit organization is to enhance and protect organizational value by providing risk-based and objective assurance, advice, and insight. Responsibilities of a Senior Auditor include execution of independent and team activities that support the Internal Audit scope of activities and annual plan, which may include routine evaluations of the company's risks and control activities, performance of assigned internal audit assurance projects, and consulting and advisory activities.
Assessments may include, but are not limited to information security practices, application architecture & design, and/or IT infrastructure. Upon completion of assessment activities, a Senior Auditor will independently develop and present value added insights to senior management and applicable stakeholders and recommend corrective actions.
This role requires subject matter expertise within key technology disciplines, knowledge of information technology trends & associated risks, audit standards and practices, healthcare solutions & services, etc.
Work independently, within a team, or supervise staff to develop and perform audits to assess technology platforms for risk and vulnerabilities. Develop knowledge and expertise in information technology & security and associated risks.
Maintain regular contact with business line management to keep abreast of new issues and initiatives; advise senior management on IT risk management practices. Evaluate highly-complex information systems and controls within applications, security configurations, networks, and computer and data center operations. Identify and evaluate risks (e.g., technical, financial, operational, compliance) to the organization, make recommendations for corrective actions/mitigation of risks, and partner with internal teams to provide expertise and guidance.
With no supervision conducts highly-complicated internal information technology system audits and risk assessments. Works independently and may guide lower-level Auditors to develop and implement audits and control framework to monitor IT production environments for potential system integrity exposure and control weaknesses.
Identifies various risks (e.g., financial, operational, compliance) to the organization and makes recommendations for corrective actions/mitigation of risks. Evaluates highly-complex information systems and controls including but not limited to applications, business control processes, change control management procedures, security, networks, and computer and data center operations. Reports findings to management and communicates recommendations for corrective actions.
Primary Duties/Responsibility 1: Conduct integrated and information technology audits, including pre/post- implementation, and cybersecurity reviews.
Primary Duties/Responsibility 2: Prepare audit plans and understands the specific risks/ issues to be evaluated.
Primary Duties/Responsibility 3: Ensure that audit issues and associated root causes are understood, well defined, and presented to audit and client management.
Primary Duties/Responsibility 4: Assist in the development of formal written reports to communicate audit results to management, and makes recommendations as appropriate.
Primary Duties/Responsibility 5: Acts as liaison between the department and key business partners/business executives in the development and execution of the audit plan.
Primary Duties/Responsibility 6: Ensure audit issues presented are appropriately reviewed with the auditee for accuracy and completeness.
Primary Duties/Responsibility 7: Builds and maintains key relationships with IT stakeholders to inform IT risk assessments and the audit plan.
Primary Duties/Responsibility 8: Support other department initiatives and deliverables as needed.
Does this job communicate across multiple sub-business units?
Does this job communicate across multiple business units?
Does this job communicate across multiple countries?
Does this job communicate globally across the enterprise?
Does this job disseminate information internally?
Does this job disseminate information externally?
Does this job negotiate internally within Change Healthcare?
Does this job negotiate externally with customers or third parties etc.?
While not part of daily activities, there could be instances where this position interacts with audits pertaining to our vendors, or customers. Additionally, there could be instances where the position is responsible to interact with regulator inquiries, or investigation requests, pertaining to IT security or Finance related subjects.
4.The heart of this job is to help identify and solve complex problems for the areas that are being audited. While there are processes defined on how to conduct audits, each audit will be unique and need to be customized and tailored to solve/conduct audits to provide meaningful insights and value to the auditees and other stakeholders, e.g. mgmt, audit committee.
5.The position will play and active role in contributing to drive efficiencies and enhancement opportunities to existing auditing processes and techniques, using data analytics, automation and other process improvement techniques, ideas.
JUDGEMENT AND DECISION MAKING
6.This position will play an active role in identifying process and control gaps and required to make recommendations to address the risks identified that are feasible within the risk appetite for the businesses being audited
7.Requires knowledge of auditing and IT frameworks and standards such as CoBiT, COSO, NIST, ISO, HIPAA etc. Must be able to quickly understand existing processes and diagnose control gaps, associated risks and improvement opportunities.
8.4 year Bachelor's degree at an accredited University/College
RELATED EXPERIENCE REQUIREMENTS/QUALIFICATIONS
9.Minimum of 3 years experience at a public accounting firm, or 5 years of relevant audit experience.
10. Certified Information Systems Auditor (CISA) designation, CISSP, CIA or equivalent preferred, (Willingness to pursue and pass the Certified Information Systems Auditor (CISA) or similar designation within year of joining, if necessary).
Join our team today where we are creating a better coordinated, increasingly collaborative, and more efficient healthcare system!
Equal Opportunity/Affirmative Action Commitment
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.