Senior IT Auditor (Remote)

Resp & Qualifications

PURPOSE:

Assess organization IT infrastructure controls to ensure systems and processes function efficiently and remain in compliance with Corporate policies, procedure, and regulations. Evaluates internal IT processes to identify controls and potential threats and weaknesses. Report audit findings to leadership and recommends solutions to improve data integrity, security, development, and IT governance.

ESSENTIAL FUNCTIONS:

• Conduct information systems audits utilizing computer assisted audit techniques. Analyze and evaluate IT operations and strategies to identify opportunities for improvement in processes and outcomes and provide technical audit advice relating to systems/operations; systems development, design and controls; IT general controls; systems security; change/project management; segregation of duties; business process improvement; complex integrated systems and related computer applications and disaster recovery.
  
  Participate in the development of the risk assessment for the business process or project under review. Perform process walkthroughs. Facilitate Entrance and Exit meetings.
  
  Responsible for drafting audit findings and draft report. Maintain audit documentation in automated workpaper repository of business processes and related risks.

• Monitor the progress and management of corporate IT initiatives or projects, as assigned. Advise and consult on risk management and controls for new systems and/or processes associated with the assigned corporate projects, following a system development life cycle methodology, as appropriate.
  
  Work collaboratively with the project team to identify project and post-implementation risk/issues and develop recommendations for corrective actions. Follow-up with project management to resolve identified problems, including internal control testing, coding and unit testing, system and acceptance testing, conversion testing, implementation testing, post-implementation review, as appropriate.
  
  Write memoranda and status reports to management communicating the risks and recommended corrective action plans identified in these monitoring and advisory activities.

• Perform special reviews and audits or advisory services as requested by management. Write reports or memoranda to management communicating the results of the work performed, recommend management action plans, and perform follow-up to validate completion of action plans.
  
  Support department strategic initiatives and other special assignments aimed at continuous quality improvement. Maintain a repository of IT audit issues and related corrective action plans. Update management on outstanding issues and potential risks periodically.

• Identify best practices and benchmarking information related to corporate IT business operations. Assist in the coordination/management of external audits of IT information systems and operations as assigned.

SUPERVISORY RESPONSIBILITY:

Position does not have direct reports but is expected to assist in guiding and mentoring less experienced staff. May lead a team of matrixed resources.

QUALIFICATIONS:

Education Level: Bachelor's Degree in Business Administration, Management Sciences, Information Systems, Finance, Accounting or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.

Experience: 5 years Progressively responsible auditing, systems analyst/programmer or consulting and business advisory services experience with a project management background.

Preferred Qualifications: Possess certification as a CPA, CIA, CISA, CISM, PMP or CISSP; advanced degree; healthcare insurance industry experience.

Knowledge, Skills and Abilities (KSAs)

• Proficiency with data analysis and visualization tools (e.g., MS Excel, Tableau, SAS, ACL, TeamMate).

• Knowledge and understanding of security risk management, IT security, and infrastructure.

• Knowledge of various auditing methods, practices, standards and procedures.

• Ability to recognize, analyze, and solve a variety of problems.

• Skill in talking to others to convey information effectively.

Licenses/Certifications Preferred:

• Certified Information Systems Auditor (CISA)

• Certified Internal Auditor (CIA)

• CISSP Certified Information Systems Security Professional

• Certified Information Security Manager (CISM)

• Certified Project Management Professional (PMP)-PMI

Salary Range: $79,344 - $157,586

Travel Requirements:

Estimate Amount: 5% Travel to various CareFirst offices, vendor locations, and training facilities.

Salary Range Disclaimer

The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration.

It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).

Department

FEP Audit Services

Equal Employment Opportunity

CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.

Where To Apply

Please visit our website to apply: www.carefirst.com/careers

Federal Disc/Physical Demand

Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.

PHYSICAL DEMANDS:

The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required.

The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.

Sponsorship in US

Must be eligible to work in the U.S. without Sponsorship.

#LI-LJ1