Senior IT Auditor
BH Corporate Office
Address : Street
2901 North Central Ave
Address : Location
Information Technology - Non-Clinical
Good health care is key to a good life. At Banner Health, we understand that, and that’s why we work hard every day to make a difference in people’s lives. We’ve united under a common goal: Make health care easier, so life can be better.
The Internal Audit department
within Banner Health is focused on reviewing the effectiveness of governance, risk management, and control processes throughout the organization to add value and improve operations.
As an IT Internal Audit Senior Consultant
, you'd be working side by side with the Information Security team conducting IT audits as well as assisting other departments during their audits in regards to the IT aspect. You'd be based out of Banner Headquarters located in Downtown Phoenix, AZ. This is a full time, full-benefit, permanent position.
Your pay and benefits (Total Rewards) are important components of your Journey at **MEMBERS ONLY**SIGN UP NOW***. Banner Health offers a variety of benefit plans to help you and your family. We provide health and financial security options so you can focus on being the best at what you do and enjoying your life.
This position is part of the organization's internal audit functions, with responsibilities including assessing key IT risks to the organization, planning IT related audits and evaluating the design and operating effectiveness of internal controls. Communicates audit results effectively, while providing meaningful recommendations and assisting management in developing risk mitigation action plans to strengthen the internal control environment for the organization. Works very closely with management and cooperatively with other departments (e.g. Compliance, Risk Management) and other service providers to ensure the timely completion of audits, projects and implementation of remediation action plans. This position will develop and execute audits to evaluate IT related controls and management mitigation actions plans to address risks and audit findings.
Audits IT processes and controls with a deep understanding of IT risk and control frameworks (example, COSO, CoBIT, ISO, NIST, PCI DSS)
Plans and executes IT related audits such as ITGCs, Application controls reviews, system configuration reviews, as well as perform Information Technology and Security risk assessments. Assessments include but not limited to access management; security policies and standards; security architecture; threat and vulnerability management; computer and data breach incident management; data protection; 3rd party/vendor management; security monitoring; security operations and administration; business continuity; disaster recovery; cloud security, cyber security; data security; network security; system security, technology operations and security awareness.
Coordinates, plans, and executes audits by working with managers and process owners to develop audit programs that document, assess, and test the effectiveness of key internal controls.
Communicates the audit plan and process so that those being audited understand the requirements and expectations. Listens effectively throughout the audit process in order to effectively evaluate the risks and controls. Communicates audit results throughout the audit life cycle with and management and issue final audit reports with minimum re-work and support of management.
Facilitates and/or provides advisory services to assist auditee in developing their mitigating plans to address audit findings and risks identified. Responsible for managing assigned audit findings and ensure remediation plans are completed by management on time to effectively mitigate the risk
Provides support to external technology, financial, compliance, and operational auditors in the performance of the audits they have been engaged to perform. This includes working and serving as liaison to technology and key business partners to ensure alignment and ongoing communication on security controls and risk mitigation.
Requires a Bachelor's degree in information technology, computer science, business, accounting, Finance and information technology or other relevant field or equivalent experience.
Must possess a proficiency level in analyzing and documenting business process controls, identifying risk and performance as generally achieved in 5 years public accounting and/or internal audit experience. Relevant experience in improving internal control processes are a job requirement. A solid track record of demonstrated career achievements and academic excellence are expected. The successful candidate should demonstrate excellent communication skills (both oral and written) and strong technical audit skills.
Master's degree and/or professional designations such as Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Fraud Examiner (CFE), or Certified Information System Auditor (CISA) CISM, CRISC, CGEIT, CRMA are preferred. Also, knowledge of healthcare regulations (e.g. CMS, HIPAA, PCI, etc.) and health plans are a plus.
Additional related education and/or experience preferred.
Apply For This Job
Connect With Us!
Join one of our Talent Communities
to learn more about a career at **MEMBERS ONLY**SIGN UP NOW***.