Job Information
Healthfirst Sr Analyst, Internal Audit - IT in Remote, New York
The Senior Analyst, Internal Audit - IT would perform complex and comprehensive Information Technology- Information Security (ITIS) audits and reviews in conformance with professional auditing standards. Candidate should demonstrate strong technical knowledge in Information Technology/ IT Operations and Information Security Audits areas. The ideal candidate should also demonstrate good problem-solving and critical thinking capabilities and should have a good working knowledge of auditing standards and methodology. In this role you will use advanced audit and internal control concepts and techniques to identify ITIS processes, risks, and controls. As a Senior IT auditor, you will be responsible for assessing and reporting on the adequacy and effectiveness of Healthfirst’s internal controls. Key responsibilities include working on multiple engagements simultaneously and managing against project timelines
Responsibilities include:
Participate in the identification, rationalization, and testing of ITIS controls. Such activities may include:
Perform and ensure all phases of audits including planning, fieldwork, reporting results and subsequent follow-up procedures are completed and communicated timely.
Perform walkthroughs to understand the control objectives, risks and controls associated to the process area under review and create complete and accurate Audit Program Guide (APG)
Create or update process narrative, flow-charts, and risk control matrix to reflect processes in place
Test completeness, accuracy, and validity of all ITIS related controls. Including sending and tracking document request lists while testing the ITIS controls
Employ professional judgment in evaluating evidence, and conclude on adequacy for compliance with auditing standards
Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk and impact implications, and draw the appropriate conclusions
Assist business stakeholders in developing remediation plans and track and monitor progress against agreed upon timelines.
Drive operational efficiency by sourcing analytics to drive for continuous insight, monitoring and improvements
Meet professional expectations, deepen healthcare industry proficiency to deliver exceptional audit quality and results
Excellent communication (verbal, written), presentation and organization skills essential
Additional duties as assigned
Minimum Qualifications:
3+ years of IT Auditing (preferably with a regional or Big 4 accounting firm) IT Controls Assessment, and/or relevant experience
Professional Certification CISA or CIA
Bachelor’s degree in Information Systems, Technology, Accounting, or related field
Excellent communication (verbal, written), presentation and organization skills
Ability to work independently, and multi-task in a fast-paced/changing environment
Experience working with advanced Microsoft Office Suite
Open to learn new technologies and adapt to new processes
Must be able to handle confidential information appropriately
Preferred Qualifications:
Experience documenting and testing key IT controls under SOX 404 or Model Audit Rule (MAR)
Experience working with Information Security audit compliance testing such as HI-Trust, PCI, CIS, NIST or equivalent
Experience working with Information privacy audit testing such as HIPAA, NYCRR or equivalent
Experience working with GRC frameworks such as NIST (800-53), COBIT, ITIL or equivalent.
Ability to effectively communicate technical findings and recommendations (both written and verbal) into business terms.
Compliance & Regulatory Responsibilities : Noted above
WE ARE AN EQUAL OPPORTUNITY EMPLOYER. Applicants and employees are considered for positions and are evaluated without regard to mental or physical disability, race, color, religion, gender, national origin, age, genetic information, military or veteran status, sexual orientation, marital status or any other protected Federal, State/Province or Local status unrelated to the performance of the work involved.
If you have a disability under the Americans with Disability Act or a similar law, and want a reasonable accommodation to assist with your job search or application for employment, please contact us by sending an email to careers@Healthfirst.org or calling 212-519-1798 . In your email, please include a description of the accommodation you are requesting and a description of the position for which you are applying. Only reasonable accommodation requests related to applying for a position within Healthfirst Management Services will be reviewed at the e-mail address and phone number supplied. Thank you for considering a career with Healthfirst Management Services.EEO Law Poster and Supplement (https://www1.eeoc.gov/employers/poster.cfm)
WE ARE AN EQUAL OPPORTUNITY EMPLOYER. Applicants and employees are considered for positions and are evaluated without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, age, genetic information, military or veteran status, marital status, mental or physical disability or any other protected Federal, State/Province or Local status unrelated to the performance of the work involved.
If you have a disability under the Americans with Disability Act or a similar law and want a reasonable accommodation to assist with your job search or application for employment, please contact us by sending an email to careers@Healthfirst.org or calling 212-519-1798 . In your email please include a description of the accommodation you are requesting and a description of the position for which you are applying. Only reasonable accommodation requests related to applying for a position within Healthfirst Management Services will be reviewed at the e-mail address and phone number supplied. Thank you for considering a career with Healthfirst Management Services.
EEO Law Poster and Supplement (http://www.dol.gov/agencies/ofccp/posters)
All hiring and recruitment at Healthfirst is transacted with a valid “@healthfirst.org” email address only or from a recruitment firm representing our Company. Any recruitment firm representing Healthfirst will readily provide you with the name and contact information of the recruiting professional representing the opportunity you are inquiring about. If you receive a communication from a sender whose domain is not @healthfirst.org, or not one of our recruitment partners, please be aware that those communications are not coming from or authorized by Healthfirst. Healthfirst will never ask you for money during the recruitment or onboarding process.