IT Senior Manager - Internal Audit

Change Healthcare   •  

Alpharetta, GA

Industry: Healthcare

  •  

8 - 10 years

Posted 31 days ago

Empower Your Future. Make a Difference.

CURRENT NEED

This position is responsible for planning, leading and coordinating the risk-based audits performed by the IT Internal Audit program for a sub-set of key business units within Change Healthcare. This involves working
closing with the Senior Directors of IT and Audit as well as the Chief Audit Executive to identify and assess significant IT risks and recommend mitigation strategies.

  • Work independently, within a team, and/or through leading team members to plan, execute and deliver timely audits and assessments utilizing industry best practices and frameworks.
  • Direct the IT aspects within engagement planning, including testing strategy development, execution, reporting, and issue monitoring for the audit plan
  • Develop strong relationships with the IT business partners to foster a collaborative environment.
  • Represent IA through participation in relevant councils, committees and/or governance meetings
  • Participate in the annual audit planning and direct the IT audit strategy for the enterprise Actively participate in the Enterprise Risk Management (ERM) program related to portfolio with key stakeholders and other internal risk assessing organizations to identify significant risks and subrisks
  • Direct the professional development, retention and talent recruitment for the IT audit team Prepare audit and compliance committee reporting materials, executive leadership presentations and team training presentations
  • Complete other projects and assignments as directed by manager including coordination with external third parties and management of external resources.

MINIMUM QUALIFICATIONS

Education

  • Undergraduate degree in Computer Information Systems or Accounting or related discipline
  • Graduate degree in Accounting and Information Systems preferred Have and maintain at least one professional certification, including but not limited to:
  • Certified Information Systems Security Professional (CISSP) strongly preferred.
  • Certified Information Systems Auditor (CISA) preferred
  • Certified Internal Auditor (CIA) preferred

Business Experience

  • Eight to ten years of progressive IT internal auditexperience – Big 4 IT Risk Advisory experience a plus
  • Experience in a complex IT and multi-business unit environment
  • Proficiency in project planning and management of multiple priorities simultaneously
  • Healthcare IT experiencepreferred

Specialized Knowledge/Skills

  • Familiarity with internal audit assessment methodologies, industry practices, and frameworks (COSO, IPPF, etc.)
  • Experience with Enterprise Risk Management frameworks and assessments Excellent communication and interpersonal skills to interact effectively with all levels of the organization including written communication and presentations.
  • Ability to utilize Microsoft Office suite, including intermediate to advanced knowledge of MS Excel and MS PowerPoint. (i.e. MS Excel - constructing pivot tables, data analysis and trending and MS PowerPoint – creating Board level presentations and communication materials)
  • Effective analytical, problem-solving and decision-making skills with ability to organize, plan and work well under pressure and in an environment of change.
  • Technical experience with various environments including: Windows & Unix (AIX & Solaris) Operating Systems, SQL & Oracle Databases Oracle ERP System TCP/IP networking protocol and TCP/IP-based networks
  • Databases, firewalls, authentication systems
  • Understanding of project planning/management and change management concepts and tools with ability to prioritize and handle multiple issues and projects concurrently.
  • Working knowledge of the following with demonstrated proficiency in one or more areas: Healthcare specific technologies and compliance requirements (FDA, DEA, DHHS, Privacy (HIPAA/HITECH))System Development Life Cycle (SDLC) approaches, methodologies, and tools Management of large-scale internal system development programs Management of a shared service environment, for IT and other functions IT Service Management or ITIL disciplines
  • Ability to promote ideas persuasively and work through conflicts while building positive working relationships.
  • Willingness to engage in both tactical hands-on work and strategic work as needed in order to manage and complete priorities.
  • Ability to maintain confidentiality with sensitive customer and internal information.

CURRENT NEED

This position is responsible for planning, leading and coordinating the risk-based audits performed by the IT Internal Audit program for a sub-set of key business units within Change Healthcare. This involves working
closing with the Senior Directors of IT and Audit as well as the Chief Audit Executive to identify and assess significant IT risks and recommend mitigation strategies.

  • Work independently, within a team, and/or through leading team members to plan, execute and deliver timely audits and assessments utilizing industry best practices and frameworks.
  • Direct the IT aspects within engagement planning, including testing strategy development, execution, reporting, and issue monitoring for the audit plan
  • Develop strong relationships with the IT business partners to foster a collaborative environment.
  • Represent IA through participation in relevant councils, committees and/or governance meetings
  • Participate in the annual audit planning and direct the IT audit strategy for the enterprise Actively participate in the Enterprise Risk Management (ERM) program related to portfolio with key stakeholders and other internal risk assessing organizations to identify significant risks and subrisks
  • Direct the professional development, retention and talent recruitment for the IT audit team Prepare audit and compliance committee reporting materials, executive leadership presentations and team training presentations
  • Complete other projects and assignments as directed by manager including coordination with external third parties and management of external resources.

MINIMUM QUALIFICATIONS

Education

  • Undergraduate degree in Computer Information Systems or Accounting or relatd discipline
  • Graduate degree in Accounting and Information Systems preferred Have and maintain at least one professional certification, including but not limited to:
  • Certified Information Systems Security Professional (CISSP) strongly preferred.
  • Certified Information Systems Auditor (CISA) preferred
  • Certified Internal Auditor (CIA) preferred

Business Experience

  • Eight to ten years of progressive IT internal auditexperience – Big 4 IT Risk Advisory experience a plus
  • Experience in a complex IT and multi-business unit environment
  • Proficiency in project planning and management of multiple priorities simultaneously
  • Healthcare IT experiencepreferred

Specialized Knowledge/Skills

  • Familiarity with internal audit assessment methodologies, industry practices, and frameworks (COSO, IPPF, etc.)
  • Experience with Enterprise Risk Management frameworks and assessments Excellent communication and interpersonal skills to interact effectively with all levels of the organization including written communication and presentations.
  • Ability to utilize Microsoft Office suite, including intermediate to advanced knowledge of MS Excel and MS PowerPoint. (i.e. MS Excel - constructing pivot tables, data analysis and trending and MS PowerPoint – creating Board level presentations and communication materials)
  • Effective analytical, problem-solving and decision-making skills with ability to organize, plan and work well under pressure and in an environment of change.
  • Technical experience with various environments including: Windows & Unix (AIX & Solaris) Operating SystemsSQL & Oracle Databases Oracle ERP System TCP/IP networking protocol and TCP/IP-based networks
  • Databases, firewalls, authentication systems
  • Understanding of project planning/management and change management concepts and tools with ability to prioritize and handle multiple issues and projects concurrently.
  • Working knowledge of the following with demonstrated proficiency in one or more areas: Healthcare specific technologies and compliance requirements (FDA, DEA, DHHS, Privacy (HIPAA/HITECH))System Development Life Cycle (SDLC) approaches, methodologies, and tools Management of large-scale internal system development programs Management of a shared service environment, for IT and other functions IT Service Management or ITIL disciplines
  • Ability to promote ideas persuasively and work through conflicts while building positive working relationships.
  • Willingness to engage in both tactical hands-on work and strategic work as needed in order to manage and complete priorities.
  • Ability to maintain confidentiality with sensitive customer and internal information.

R6913