The Technology Internal Audit Manager develops and executes audit programs focused on cybersecurity risks, IT controls, and technology processes to ensure compliance with Humana policies and industry standards. You will apply advanced cybersecurity expertise to assess control effectiveness across areas such as access management, data protection, and system security. It determines audit approach, resources, timelines, and objectives based on assigned goals.

The Technology Internal Audit Manager plans and executes risk-based audits focused on cybersecurity, IT controls, and technology processes. This role evaluates the protection of information assets across systems, applications, data, and third-party environments. The focus is on areas such as identity and access management, data protection, cloud security, vulnerability management, and change management.

The Audit Manager develops audit objectives, scope, and testing strategies to assess the design and operating effectiveness of cybersecurity and IT controls. These strategies include identifying control gaps, assessing risk exposure, and evaluating alignment with organizational policies, regulatory requirements, and industry frameworks (e.g., NIST CSF).

Job Responsibilities:

• Prepare clear, executive-ready reports that highlight cybersecurity risks and provide applicable recommendations to strengthen the organization's security posture.
• Collaborate with IT, cybersecurity, risk, and business stakeholders to validate findings, support remediation, and monitor progress. They also manage and develop a team of IT auditors, providing direction, coaching, and performance oversight.
• Determine audit approach, resource allocation, and timelines, and promotes continuous improvement in audit practices while maintaining regular communication with senior leadership and cross-functional teams.

Use your skills to make an impact

Required Qualifications

• Bachelor's Degree in Information Systems, Cybersecurity, Computer Science, or a related field
• One or more of the following certifications required: CISA, CISM, CEH, or CISSP
• 6+ years of experience in IT audit, cybersecurity, or technology risk consulting
• 2+ years of management or team leadership experience
• Strong track record of leading cybersecurity audits and advising on IT risk, including areas such as access management, data protection, cloud security, and third-party risk
• Ability to think strategically about cybersecurity risks while managing multiple audits and initiatives in a fast-paced environment
• Excellent written and verbal communication skills, with the ability to translate technical cybersecurity risks for business stakeholders
• Passion for strengthening cybersecurity posture and protecting consumer data

Preferred Qualifications

• Advanced certifications (e.g., CISSP, CISM, CEH, or CISA); two or more certifications preferred
• Master's degree in Cybersecurity, Information Systems, or a related field

Additional Information

Qualified candidates are required to currently live in, or be willing to move to, a commutable distance for a hybrid (~3 days in-office) work arrangement.

Location options are:

Washington, D.C. metropolitan area

Louisville, KY metropolitan area

New York City, NY metropolitan area

Interview Format

As part of our hiring process for this opportunity, we will be using an interviewing technology called HireVue to enhance our hiring and decision-making ability. HireVue allows us to quickly connect and gain valuable information from you pertaining to your relevant skills and experience at a time that is best for your schedule.

WAH Internet Statement

To ensure Home or Hybrid Home/Office employees’ ability to work effectively, the self-provided internet service of Home or Hybrid Home/Office employees must meet the following criteria:At minimum, a download speed of 25 Mbps and an upload speed of 10 Mbps is required; wireless, wired cable or DSL connection is suggested.Satellite, cellular and microwave connection can be used only if approved by leadership.Employees who live and work from Home in the state of California, Illinois, Montana, or South Dakota will be provided a bi-weekly payment for their internet expense.Humana will provide Home or Hybrid Home/Office employees with telephone equipment appropriate to meet the business requirements for their position/ from a dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information.

Scheduled Weekly Hours

40

Pay Range

The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc.$115,200 - $158,400 per year

 

This job is eligible for a bonus incentive plan. This incentive opportunity is based upon company and/or individual performance.

Description of Benefits

Humana, Inc. and its affiliated subsidiaries (collectively, “Humana”) offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities.