Senior Director of IT Audit

Confidential Company  •  Nashville, TN

11 - 15 years experience  •  Healthcare

$150K - $180K
Posted on 06/13/18 by Steve Whiting
Confidential Company
Nashville, TN
11 - 15 years experience
Healthcare
$150K - $180K
Posted on 06/13/18 Steve Whiting

Our client is a market leader in their niche providing technology solutions to the Healthcare industry. They wish to hire a Senior Director of IT Audit to join their senior management team with a focus on InfoSec.

Essential daily duties will include:-

  • Develop & maintain positive relationships with key management & other stakeholders for the assigned businesses / functions.
  • Educate & dialogue with stakeholders regarding the role of Internal Audit in the organization.
  • Develop & continually enhance knowledge businesses and processes in portfolio.
  • Collaboratively & actively participate in the Enterprise Risk Management program related to portfolio with key stakeholders and other internal risk assessing organizations.
  • Based on knowledge of businesses and processes, identification of key risks in and on-going dialogue with the stakeholders, identify key drivers (i.e., sub risks) contributing to risks.
  • Based on risks identification, develop annual IT Internal Audit strategy and plan for portfolio & continual refresh as needed based on risks identification.
  • Actively lead execution of Internal Audit plan for portfolio ensuring that audits are conducted in accordance with department policies & procedures and are executed in accordance with planned timing.
  • Develop audit scope, objectives & planned timing based on identified risks.
  • Determine & coordinate resource requirements to meet audit objectives.
  • Actively lead planning of audit program.
  • Effectively communicate with stakeholder?s expectations of audit process.
  • Review audit work in-process to ensure work meets quality expectations & is being completed in accordance with plan.
  • Effectively & timely communication of key findings to management to facilitate expedient closure / remediation of key issues.
  • Provide information regarding status & results for audit portfolio to Internal Audit Program Manager in a timely manner for internal & Board level updates.
  • Actively engage portfolio audit resources to ensure production is at the expected level.
  • Individually engage with each portfolio audit resource at least quarterly to ensure appropriate dialogue related to objectives & key results.
  • Create and execute a continuous learning culture including a road map of proficiency to be attained through courses/certifications and hands-on training
  • Ensure key Internal Audit metrics are met for portfolio resources.

Job Requirements:-

  • Bachelors' Degree in Information Systems, Engineering, Technology, Computer Science or equivalent discipline 
  • CISSP or CISA or CIA preferred
  • 10+ years of progressive Internal Audit leadership experience in a complex technology environment (Experience within IT Operations and/or IT Leadership roles within Infrastructure, Security, Application development considered a plus
  • Advanced knowledge of technology controls including: application security management [e.g. user entitlements, authentication, accountability, data protection], system architecture and design [e.g. availability, performance, scalability, data integrity and validation], technology operations [e.g. change and release management, data backup and retention, performance and capacity management], and technology governance [e.g. technology risk management, cyber security rules and regulations
  • Hands-on knowledge & experience with industry-leading technologies and products supporting Cloud/DevOps, information security, data privacy, risk management, and IT compliance
  • Strong understanding of application development, databases, operating systems, networking and other key technology infrastructure components
  • Advanced knowledge of technology controls including: application security management [e.g. user entitlements, authentication, accountability, data protection], system architecture and design [e.g. availability, performance, scalability, data integrity and validation], technology operations [e.g. change and release management, data backup and retention, performance and capacity management], and technology governance [e.g. technology risk management, cyber security rules and regulations
Not the right job?
Join Ladders to find it.
With a free Ladders account, you can find the best jobs for you and be found by over 20,0000 recruiters.