Corporate & IT Auditor

With more than 7,000 employees, we are the largest health insurance company in Michigan. We offer an exciting work environment with a diverse group of employees. Our goal is to make health insurance easier for our members. We want to transform the industry and become a resource that people can trust.

Detroit, MI

Blue Cross Blue Shield of Michigan

When you think of <a href="https://www.bcbsm.com/" target="_blank" rel="noopener noreferrer">Blue Cross Blue Shield of Michigan</a> for health insurance, you can know you&rsquo;re getting much more. We're a company founded on a tradition of affordable, quality health care for everyone, improving the present and investing in the future.&nbsp;<br /><br />We offer:<br />Plans for employers and individuals that meet today&rsquo;s needs, budgets and lifestyle<br />The largest network of doctors and hospitals in the state<br />Lower health care costs Higher quality health care<br />Award-winning diversity practices<br />Grants and programs that promote better health throughout Michigan<br /><strong><br />Mission:&nbsp;</strong>We commit to being our members&rsquo; trusted partner by providing affordable, innovative products that improve their care and health.<br /><br /><a href="http://www.bcbsm.com/index/about-us/our-company.html" target="_blank" rel="noopener noreferrer"><strong>Click here</strong></a> to learn more about our commitment to our Social Mission, view company updates and reviews, and view our awards &amp; accolades.<br /><br />For Application Timeline &amp; Selection Process:&nbsp;<a href="https://s3.amazonaws.com/data.vizirecruiter.com/Images/BCBSMCareers+-+Quick+Reference+Guide.pdf" target="_blank" rel="noopener noreferrer">Click Here</a>. Learn more about your options as an external candidate. <a href="https://ejko.fa.us2.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_3/requisitions" target="_blank" title="BCBSM" rel="noopener noreferrer">Click here</a> to view open positions. http://www.bcbsm.com

keywords: position summary,support,analysis,risk management,performance,audit,communication,knowledge,skills,solutions,degree,experience,professional

Full-Time

Competitive Total Compensation Package

Overview: Responsible for serving as an internal control consultant conducting internal corporate and information technology (IT) and system audits and reviews of business processes and supporting vendors. Provides risk education and project risk assessment to mitigate risk and assess the control environment of each auditable unit. Develops and communicates risks and recommended controls for multiple layers of leadership.
Responsibilities: <ul> <li>Conduct internal audits and reviews to identify risks, document established controls to mitigate risk, and assess the control environment of each auditable unit.</li> <li>Identify datasets/sources that are relevant to the audit and connect risks to data.</li> <li>Communicate issues, audit results, and recommendations in a clear and concise manner to appropriate levels of operating and/or Information Technology management, including activity updates to the Audit Committee of the Board of Directors.</li> <li>Assist in the development of the annual audit plan through risk universe identification.</li> <li>Assist in the facilitation of project risk assessments and lessons learned sessions. Assist in conducting management action planning workshops to discuss business and IT risks, prioritize control issues and develop corrective action plans.</li> <li>Provide information on business risk management standards and responsibilities and the implementation and application of a project risk control process.</li> <li>Develop, maintain, and report against a work plan, as work progresses, given scope and objectives.&nbsp; Prepare complete and accurate audit work papers in a timely manner.</li> <li>Suggests improvements to audit methodologies, policies, and procedures to incorporate lessons learned, including innovative uses of data including analytics and visualization.</li> <li>Assist in educating and training BCBSM project staff, employees, and management on internal corporate and Information Technology controls and encourage change that promotes an effective and efficient control environment.</li> </ul>
Requirements: <ul> <li>Bachelor's Degree in Business Administration, Accounting, Finance, Management or Accounting Information Systems, Computer Science, or closely related field is required.</li> <li>Four (4) years of related work experience, which includes two (2) years of identifying and evaluating technology risk and controls</li> <li>One or more of the following professional certifications required: Certified Internal Auditor, Certified Public Accountant, Certified Information Systems Auditor, Certified in Risk and Information Systems Control, Certified Information Systems Security Professional, Certified in the Governance of Enterprise IT or Project Management Professional.</li> <li>Strong analytical and critical thinking skills, as is necessary to identify datasets/sources that are relevant to the audit.&nbsp;</li> <li>Strong oral communication skills, including presentations, as is necessary to effectively communicate audit information to financial and non-financial individuals, including senior level management.&nbsp;</li> <li>Strong written communication skills, including the proven ability to tell a relevant business story using data and visualizations.</li> <li>Intermediate problem-solving ability, as necessary to solve problems in a dynamic team environment and handle multiple assignments in a timely manner.&nbsp;</li> <li>Advanced conflict management skills, as necessary to resolve issues where corporate areas are in disagreement.</li> <li>Intermediate proficiency using Microsoft Word, Excel, and Project.</li> <li>Intermediate proficiency in use of audit software and visualization tools (i.e., automated work papers, ACL, Tableau, etc.).</li> <li>Strong interpersonal skills to effectively interface with various levels of management as well as contacts outside the organization.&nbsp;</li> <li>Knowledge of project audit methodologies, risk management and project management techniques to detect and resolve complex multidisciplinary issues.</li> <li>Demonstrate high standards of conduct and ethics as well as appropriate judgment, independence and discretion as required by the IIA Standard of Professional Practice of Internal Auditing and Code of Ethics.</li> <li>Understanding of auditing principles and applications as derived from standards for the professional practice of internal and information technology auditing (i.e. Institute of Internal Auditors (COSO), the Information Systems Audit &amp; Control Association (COBIT), and the Project Management Institute).</li> <li>Comprehensive understanding of auditing principles, processes, and working knowledge of information technology general controls (e.g. system development life cycle, change control, access administration) and business process - IT controls (e.g. application controls including embedded and configurable (i.e., passwords and edit checks, etc.).</li> </ul> <div id="gtx-trans" style="position: absolute; left: -137px; top: -20px;">&nbsp;</div>