Senior IS Auditor

Bring your drive for excellence, team orientation, and customer commitment to Independence; help us renew and reimagine our business and shape the future of health care.  Our organization is looking to diversify, grow, innovate, and serve, and we are looking for committed, empowered, learning-oriented people to join our team.  If this describes you, we want to speak with you. The job of a Senior IS Auditor involves various functions to ensure the success of an organization’s IT audit programs. 

Responsibilities:

• Carry out review of organizational activities assigned following departmental standards, as well as the Standards for the Professional Practice of Internal Audit 

• Following department and professional standards, plan, develop, and execute corporate IT audit projects created to provide an accurate assessment of operational performance and internal control processes 

• Produce and review reports and audit work papers, ensuring effective documentation of results of reviews on assigned activities that have been made, as well as the recommended action that management should take, for easy follow-up. 

• Identify potential IT risks and related issues by applying knowledge of Information Technology industry trends and the present IT environment 

• Perform the required IT audits of the organization as an individual or working in a team, following both established department standards and the Standards for the Professional Practice of Internal Audit established by the IIA 

• Make comprehensive plans to carry out individual audit tasks, including the determination of audit objectives, identifying major controls and risks, and creating the right audit program; make recommendations for the required budget and staff to complete the project 

• Take part in major IT initiatives and projects, as well as in reviews of security systems and internal controls under development 

• Participate in developing and implementing a detailed audit plan that takes into consideration risk assessment, goals and objectives of management, as well as the Board Audit Committee requirements 

• Carry out estimation of skills and time needed to complete audit projects; find out potential audit areas; and provide assistance in determining the level of inherent risk 

• Participate in special projects or studies such as fraud investigation, risk assessment, due diligence acquisition reviews, audit department policy updates, etc. 

Qualifications: 

• Possess advanced knowledge of network and application vulnerability assessment, IT practices, risk assessment practices, change control, data privacy, and business continuity 

• Broad audit experience across various areas of IT, including databases, operating systems, and applications 

• Strong proficiency and skills with database applications, including Access and SQL, Microsoft Office, and other related technologies 

• Strong ability to give attention to detail in addition to organization and project management skills 

• Possess sound judgment, business risk awareness, and an inquisitive personality; ability to think critically and critically evaluate events and outcomes professionally 

• Strong ability to research and gather information from both business and IT functions 

• Strong analytical and problem-solving skills to resolve issues promptly as they occur 

• Strong ability to work collaboratively and cooperatively with all employees, irrespective of their status in the organization 

• Strong presentation, verbal and written communication, and interviewing skills 

• Exceptional ability to work on and manage multiple projects and responsibilities effectively 

• Exceptional interpersonal skills to get other people to put in additional efforts at achieving departmental goals, as well as to build consensus across diverse teams 

• Strong knowledge of the various auditing standards recognized in the industry, including ISACA IS Audit and Assurance Standards and Guidelines, and Institute of Internal Auditors (IIA) Standards and Guidelines 

Education & Experience:

• BS/BA degree required  

• Three (3)+ years of experience in IT audit 

• Certification (such as CISA or CISSP) is highly desirable