Senior IT Auditor (Cisa Or Cissp)

Blue Cross And Blue Shield Of North Carolina Durham , NC 27701

Posted 3 weeks ago

Additional Locations:

Job Description

BlueCross BlueShield North Carolina is improving healthcare for everyone. Doing that takes all of us, currently 4,500+ strong! Are you ready for a job that matters and a mission that is bigger?

Our Senior IT Auditor will hold a CISA or CISSP certification. That preparation, along with their 5+ years' experience in IT Audit will prepare you to evaluate high risk areas of the BCBSNC information technology environment to ensure that an adequate control environment has been implemented. Responsibilities will include the complete audit process, including risk assessment, planning, process walkthroughs, fieldwork, issues resolution, reporting, and follow-up on corrective action plans.

  • Perform risk based audits of information technology at BCBSNC, including applications, databases, operating systems, physical security, telecommunications, disaster recovery, vendor management and cloud computing.

  • Evaluate the high risk areas to determine the adequacy of controls and, where appropriate, compare to industry best practices and control frameworks such as Committee of the Sponsoring Organizations of the Treadway's Commission (COSO) and Control Objective for Information and related Technology (COBIT).

  • Assess compliance with BCBSNC policies, standards, and procedures.

  • Provide controls consulting on projects related to information technology areas.

Hiring Requirements

  • Bachelors degree in a technology, audit or financial related field

  • Minimum 5 years experience in IT auditing

  • Recent experience conducting risk-based technical audits such as operating system, database, Firewall, application, data center, or web-based applications

  • Certified Information Systems Auditor (CISA) or

  • Certified Information Systems Security Professional (CISSP)

Hiring Preferences

  • Detailed technical knowledge of technical systems such as: Unix, iSeries, Windows, Oracle, DB2, SQL Server, Mainframe, Firewall, etc.

  • Understanding of risks that impact an IT control environment and the related controls that mitigate those risks

  • Familiarity with control frameworks, such as CobiT, is a necessity, along with the ability to use the framework to assess a control environment and as a basis for control improvement recommendations

  • Leadership and management skills needed to coach, direct, moderate and coordinate a team to the successful completion of an audit/review

  • Effective verbal and written communication

  • Excellent presentation skills

  • Interpersonal (listening, facilitating, interviewing) skills

  • Analytical, project management and consulting skills

  • Certified Internal Auditor (CIA), Project Management Professional (PMP)

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Auditor Office Of Risk And Compliance (Oarc)

Duke University

Posted 4 days ago

VIEW JOBS 10/17/2020 12:00:00 AM 2021-01-15T00:00 Occupational Summary The Office of Audit Risk and Compliance (OARC) is a dynamic risk and controls focused partner for Duke University, Duke University Health System and their affiliated entities (''Duke"). OARC performs operational, financial compliance and information technology audits to assess business processes and technology systems for efficiency, effectiveness and accuracy. OARC also conducts advisory engagements focused on risk assessment, root cause analysis, performance metrics, process design and technology pre implementation. The Principal Auditor supports the mission and objectives of OARC through highly engaged interaction with the Manager and Director, collaboration with team members and independent delivery of high quality professional services. Valuable professional attributes include personal initiative, highly developed critical thinking, strong relationship building skills, confident communication style and diplomacy. The successful Principal Auditor is also a visible and engaged member of Duke, building and developing effective partnerships with key internal and external customers to achieve results. Also, successful candidates will possess solid business acumen, well-developed analytical skills, and the desire to achieve value-added project outcomes. Position requires experience in the management, review or analysis of accounting and financial operations, including responsibility for audit engagement planning, oversight and delivery. The Principal Auditor position is an ideal gateway into the complex, challenging and rewarding environment of a world class university and academic medical center. The broad exposure to the organization provides the Principal Auditor the knowledge and experience to pursue career advancement. The most successful Principal Auditor is one who has capitalized on his/her relationships for long-term success within Duke. More information about OARC mission, objectives, guiding principles and leadership is found at: https://oarc.duke edu/ Work Performed * Communicate and collaborate with OARC team members, department leadership and client representatives. * Plan and perform independent, objective audit and advisory service engagements based upon understanding risks, developing scope and project management against milestones. * Examine and analyze records and conduct client interviews to evaluate internal controls, business process design, risk mitigation strategy and/or compliance with Duke policy or third party regulations. * Lead risk-based engagement planning, perform fieldwork, document workpapers and draft engagement reports. Core Competencies (205.1) Technical Skills * Project management * Workpaper documentation * Research and investigation * Business process documentation * Risk and control identification * Data collection and analysis * Problem solving tools and techniques Duke is an Affirmative Action/Equal Opportunity Employer committed to providing employment opportunity without regard to an individual's age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or veteran status. Duke aspires to create a community built on collaboration, innovation, creativity, and belonging. Our collective success depends on the robust exchange of ideas-an exchange that is best when the rich diversity of our perspectives, backgrounds, and experiences flourishes. To achieve this exchange, it is essential that all members of the community feel secure and welcome, that the contributions of all individuals are respected, and that all voices are heard. All members of our community have a responsibility to uphold these values. Essential Physical Job Functions: Certain jobs at Duke University and Duke University Health System may include essentialjob functions that require specific physical and/or mental abilities. Additional information and provision for requests for reasonable accommodation will be provided by each hiring department. Nearest Major Market: Durham Nearest Secondary Market: Raleigh Duke University Durham NC

Senior IT Auditor (Cisa Or Cissp)

Blue Cross And Blue Shield Of North Carolina