Sr IT Auditor

With more than 7,000 employees, we are the largest health insurance company in Michigan. We offer an exciting work environment with a diverse group of employees. Our goal is to make health insurance easier for our members. We want to transform the industry and become a resource that people can trust.

Detroit, MI

Blue Cross Blue Shield of Michigan

When you think of <a href="" target="_blank" rel="noopener noreferrer">Blue Cross Blue Shield of Michigan</a> for health insurance, you can know you&rsquo;re getting much more. We're a company founded on a tradition of affordable, quality health care for everyone, improving the present and investing in the future.<br /><br />We offer:<br />Plans for employers and individuals that meet today&rsquo;s needs, budgets and lifestyle<br />The largest network of doctors and hospitals in the state<br />Lower health care costs Higher quality health care<br />Award-winning diversity practices<br />Grants and programs that promote better health throughout Michigan<br /><strong><br />Mission:&nbsp;</strong>We commit to being our members&rsquo; trusted partner by providing affordable, innovative products that improve their care and health.<br /><br /><a href="" target="_blank" rel="noopener noreferrer"><strong>Click here</strong></a> to learn more about our commitment to our Social Mission, view company updates and reviews, and view our awards &amp; accolades.<br /><br />Learn more about your options as an external candidate. <a href="" target="_blank" rel="noopener noreferrer">Click here</a> to view open positions.

keywords: professional,audit,risk management,maintain,analysis,management,leadership,department requirements,department preferences,degree,experience,license and certification,knowledge and skills,travel


Competitive Total Compensation Package

Overview: Blue Cross Blue Shield of Michigan is currently seeking a Sr. IT Auditor for our downtown Detroit location.
Responsibilities: <p>The selected individual will function as a highly skilled internal control consultant responsible for:</p> <ul> <li>Providing advisory and related consultative services for risk management, governance, execution and control of projects and programs prior to implementation through: <ul> <li>Risk assessments and rapid risk assessments.</li> <li>Lessons learned reviews.</li> <li>Process and control consulting reviews.</li> </ul> </li> <li>Conducting audits to provide reasonable assurance the IT control structure is effectively designed and implemented to verify processes and deliver intended results through: <ul> <li>Post-implementation and application reviews.</li> <li>Vendor information security audits.</li> <li>Computer-aided tools to extract, analyze and identify data irregularities and variances.</li> </ul> </li> </ul> <p>The individual will also provide supervision and training for lower level staff.<br /><span style="text-decoration: underline;"><strong><br />Corporate Summary</strong></span></p> <p>Functions as a highly skilled internal control consultant responsible for conducting internal information technology (IT) audits/reviews, providing risk education and project consulting services on behalf of the corporation to mitigate risk and assess the control environment of each auditable unit. Provides supervision and training for lower level IT audit staff.&nbsp;</p> <ul> <li>Conduct internal audits and reviews on behalf of the corporation to identify risks, document established controls to mitigate risk and assess the control environment of each auditable unit.</li> <li>Lead and coordinate audit efforts to ensure successful and timely completion of assignments.</li> <li>Communicate issues, audit results, and recommendations in a clear and concise manner to appropriate levels of operating, IT, and executive management, including activity updates to the Audit Committee of the Board of Directors.&nbsp;</li> <li>Meet or exceed annual goals for deliverables (audit committee reports).</li> <li>Train, educate, supervise, and assist in evaluating new and lower level IT audit staff.</li> <li>Facilitate project risk assessments and lessons learned sessions.</li> <li>Participate in divisional or departmental infrastructure projects as assigned.</li> <li>Maintain working knowledge of information technology pre-production (e.g. system development life cycle, change control, operating systems, applications and security) and post- production (e.g. operating systems, applications, security and data center operations) controls.</li> <li>Conduct effective and efficient IT and project audit work. Provides recommendations to improve the control environment.</li> <li>Effectively applies audit methodologies, policies, and procedures applicable to BCBSM and subsidiaries (e.g., BCN, Dentemax).&nbsp;</li> <li>Suggests improvements to audit methodologies, policies, and procedures to incorporate lessons learned.</li> <li>Prepare complete and accurate audit workpapers in a timely manner.</li> <li>Maintain a thorough and current understanding of project management methodologies applicable to BCBSM and subsidiaries (e.g., BCN, Dentemax).</li> <li>Maintain a thorough and current understanding of auditing principles and applications as derived from standards for the professional practice of internal and information technology auditing [i.e. Institute of Internal Auditors (COSO), the Information Systems Audit &amp; Control Association (COBIT), and the Project Management Institute].</li> <li>Ability to develop, maintain and report against a work plan, as work progresses, given scope and objectives.</li> <li>Other duties may be assigned.</li> </ul>
Requirements: <p><strong><u>Departmental Requirements</u></strong></p> <ul> <li>Critical thinking <ul> <li>Analyzing.</li> <li>Assessing and applying standards.</li> <li>Information Seeking.</li> <li>Logical Reasoning.</li> </ul> </li> <li>Preparing reports and findings and presenting to executive level leadership</li> </ul> <p><strong><u>Departmental Preferences</u></strong></p> <ul> <li>Professional Certifications <ul> <li>CISA</li> <li>CISSP</li> <li>CRISC</li> </ul> </li> </ul> <p><strong><u>Qualifications</u></strong></p> <ul> <li>Bachelor's Degree in Accounting, Business Administration, Finance, Management Information Systems, Healthcare Administration or closely related field required.</li> <li>Five (5) years related experience, which includes three (3) years of IT auditing experience.</li> <li>Strong understanding of project management and information technology background.</li> <li>Two years of BCBSM experience preferred.</li> <li>Professional Audit Certifications CIA, CISA, CCSA, or CISSP preferred.</li> <li>Valid and unrestricted driver's license required.</li> <li>Excellent analytical, organizational, verbal and written communication skills.</li> <li>Ability to solve problems in a dynamic team environment and handle multiple assignments in a timely manner.</li> <li>Experience in conflict management skills necessary to resolve issues where corporate areas are in disagreement.</li> <li>Proficient in current industry standard PC applications (e.g., Microsoft Office) including automated workpaper system (i.e., TeamMate).</li> <li>Ability to effectively interface with various levels of management internally and as well as contacts outside the organization.</li> <li>Must be able to travel to other BCBSM facilities and vendor sites to meet with operating or audit personnel.</li> <li>Other related skills and/or abilities may be required to perform this job.</li> </ul>