CareFirst BlueCross BlueShield
Washington, DC, United States
Audit, It, Finance
Jul 11, 2022
Oct 24, 2022
Resp & Qualifications
CareFirst, Inc., and its affiliated companies, generally referred to as CareFirst BlueCross BlueShield (CareFirst), is the Mid-Atlantic region’s largest private sector health insurer, serving the healthcare needs of 3.5 million members in Maryland, the District of Columbia, and portions of northern Virginia. The Company offers a comprehensive portfolio of products and services to individuals and groups, as well as state and federal government sponsored plans. With a market share almost three times that of the closest competitor, the company commands 45 percent penetration across the region.
In July 2018, Brian D. Pieninck assumed the role of President and CEO after serving as the company’s COO of Strategic Business Units and IT Division. Under his leadership, the organization completed an extensive review of its operations and clinical programs, resulting in an expansive 3-year strategy to grow and diversify the company’s core business. Along with a 5-year vision to drive the transformation of the healthcare experience across the continuum of its members, partners, and communities, the company has placed a renewed and intentional focus on fostering a mission-based culture, which drives every decision the company makes. The organization employs over 5,600 full-time employees in Maryland, Northern Virginia, the District of Columbia, and West Virginia. CareFirst has earned multiple workplace awards recognizing its leadership in diversity and inclusion, wellness engagement, and creation of a supportive and equitable work environment for all employees.
At CareFirst, you are part of an inspired, collaborative team that is building the healthcare experience we want for our families and our future. Every day, we make a meaningful difference in the communities where we live and work.
We practice empathy, seek to understand, invest in inclusion, demand equity and nurture belonging every day for our employees and the communities we serve. We rely on the rich diversity of our employees’ experiences and backgrounds to achieve our mission. Every year we host a Week of Equity and Action where we deepen our investment and commitment to diversity, equity, and inclusion. During this week thousands of employees engage in workshops and volunteerism with the goal of bettering themselves and our community.
Women make up around 70% of CareFirst’s employee population, and over 50% identify as BIPOC (Black, Indigenous, and people of color).
We have 9 resource groups that connect employees over shared identities (LGBTQ, veteran status, race, etc.) and passions (climate change, healthy living, leadership development).
Employees are encouraged to give back and volunteer in their communities with their civic engagement hours.
As a not-for-profit, CareFirst regularly ranks among the most philanthropic organizations with $65 million invested in the community in 2020 to improve overall health, and increase the accessibility, affordability, safety, and quality of healthcare throughout its market area. The company’s employees consistently add to this impact by devoting thousands of volunteer hours to numerous community organizations and social causes. The company’s continued efforts to reinvest in community health care programs has repeatedly earned CareFirst regional accolades as a leading corporate philanthropist, including the No. 2 and No. 7 spots on the Baltimore Business Journal and Washington Business Journal’s 2019 list of top corporate givers, respectively.
The Senior IT Auditor role is a REMOTE role.
Assess organization IT infrastructure controls to ensure systems and processes function efficiently and remain in compliance with Corporate policies, procedure, and regulations. Evaluates internal IT processes to identify controls and potential threats and weaknesses. Report audit findings to leadership and recommends solutions to improve data integrity, security, development, and IT governance.
Conduct information systems audits utilizing computer assisted audit techniques. Analyze and evaluate IT operations and strategies to identify opportunities for improvement in processes and outcomes and provide technical audit advice relating to systems/operations; systems development, design and controls; IT general controls; systems security; change/project management; segregation of duties; business process improvement; complex integrated systems and related computer applications and disaster recovery. Participate in the development of the risk assessment for the business process or project under review. Perform process walkthroughs. Facilitate Entrance and Exit meetings. Responsible for drafting audit findings and draft report. Maintain audit documentation in automated workpaper repository of business processes and related risks.
Monitor the progress and management of corporate IT initiatives or projects, as assigned. Advise and consult on risk management and controls for new systems and/or processes associated with the assigned corporate projects, following a system development life cycle methodology, as appropriate. Work collaboratively with the project team to identify project and post-implementation risk/issues and develop recommendations for corrective actions. Follow-up with project management to resolve identified problems, including internal control testing, coding and unit testing, system and acceptance testing, conversion testing, implementation testing, post-implementation review, as appropriate. Write memoranda and status reports to management communicating the risks and recommended corrective action plans identified in these monitoring and advisory activities.
Perform special reviews and audits or advisory services as requested by management. Write reports or memoranda to management communicating the results of the work performed, recommend management action plans, and perform follow-up to validate completion of action plans. Support department strategic initiatives and other special assignments aimed at continuous quality improvement. Maintain a repository of IT audit issues and related corrective action plans. Update management on outstanding issues and potential risks periodically.
Identify best practices and benchmarking information related to corporate IT business operations. Assist in the coordination/management of external audits of IT information systems and operations as assigned.
Bachelor's Degree in Business Administration, Management Sciences, Information Systems, Finance, Accounting or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.
5 years progressively responsible auditing, systems analyst/programmer or consulting and business advisory services experience with a project management background.
Possess certification as a CPA, CIA, CISA, CISM, PMP or CISSP; advanced degree; healthcare insurance industry experience.
Knowledge, Skills and Abilities (KSAs):
Proficiency with data analysis and visualization tools (e.g., MS Excel, Tableau, SAS, ACL, TeamMate).
Knowledge and understanding of security risk management, IT security, and infrastructure.
Knowledge of various auditing methods, practices, standards and procedures.
Ability to recognize, analyze, and solve a variety of problems.
Skill in talking to others to convey information effectively.
Must be able to meet established deadlines and handle multiple customer service demands from internal and external customers, within set expectations for service excellence. Must be able to effectively communicate and provide positive customer service to every internal and external customer, including customers who may be demanding or otherwise challenging.
5% Travel to various CareFirst offices, vendor locations, and training facilities.
IT Audit & Advisory Services
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Hire Range Disclaimer
Actual salary will be based on relevant job experience and work history.
Where To Apply
Please visit our website to apply: www.carefirst.com/careers
Federal Disc/Physical Demand
Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.
The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.
Sponsorship in US
Must be eligible to work in the U.S. without Sponsorship
CareFirst BlueCross BlueShield
Website : http://www.carefirst.com/main/html/HomePage.html