Job Description
Your Role
We are seeking a knowledgeable and organized person who has a balance of IT Auditing, HIPAA Security, Compliance and Privacy knowledge to audit Delegated Organizations IT systems for system integrity/security.
Your Work
In this role, you will:
- The ability to effectively perform onsite audits and walk-throughs of Delegated Entity’s IT Systems – for security, integrity, etc.
- HIPAA Security Rules expertise in relation to HIPAA security compliance.
- Strong technical and analytical abilities, including a detailed understanding of application and IT general controls, technical environments and emerging IT trends.
- 7+ years of IT auditing experience, either in Internal Audit or with a professional services firm (i.e. Big 4).
- A solid understanding of Compliance and Privacy requirements.
- Execute assigned audit procedures and document workpapers in line with CS internal audit standards.
- Identify and present audit issues, manage agreed upon actions in audit reports including discussion with relevant to management.
- The ability to develop, present and finalize audit reports. This process entails initial drafting of the report, discussion with management to ensure factual accuracy and concurrence.
- Developing, presenting and finalizing audit reports. This process entails initial drafting of the report, discussion with management to ensure factual accuracy and concurrence and coordination with Management to obtain written responses to Audit’s recommendations
- Liaise with the audit team during each audit, including advising the audit manager of progress and issues; and Continuous monitoring and Key Risk Indicator analysis, e.g. stability reporting, problem tickets, usage of break-glass access (if needed)
- Maintaining relevant audit tools/scripts to support technical analysis (e.g. of operating system, database configurations).
- Alternatively, comparable experience within IT or a related area e.g. IT risk management.
- Results driven and able to build good working relationships with senior management in a variety of cultures.
- Highly motivated and proactive professional with strong organizational, interpersonal and time management skills.
- IT audit-relevant certification (e.g. CISA, CISSP, CIA) or commensurate experience preferable.
- Prior experience conducting SOC I & II audits, HI-TRUST audits
- Excellent communication and written skills.
- Project Management or Lean Six Sigma background would be a bonus.
- Cyber Defense knowledge would be useful as well.
Qualifications
Your Knowledge and Experience
- Broad knowledge of information assurance (IA) principles and organizational requirements that are relevant to confidentiality, integrity, and availability of data.
- Excellent analytical and problem-solving skills. Requires deep knowledge of job area typically obtained through advanced education combined with experience.
- Typically, viewed as a specialist within discipline. May have broad knowledge of project management.
- Requires a college degree or equivalent experience and minimum 7 years of prior relevant experience.
- Experience with Security Architecture
- Preferred CISSP-ISSAP, CIA, CISA certifications
- Certified Red Team preferred
- Certified Ethical Hacker preferred
Pay Range
The pay range for this role is: $ 118800.00 to $ 178200.00 for California.
Note
Please note that this range represents the pay range for this and many other positions at Blue Shield that fall into this pay grade. Blue Shield salaries are based on a variety of factors, including the candidate's experience, location (California, Bay area, or outside California), and current employee salaries for similar roles.
About The Team
Blue Shield of California’s mission is to ensure all Californians have access to high-quality health care at a sustainably affordable price. We are transforming health care in a way that genuinely serves our nonprofit mission by lowering costs, improving quality, and enhancing the member and physician experience.
To fulfill our mission, we must ensure a diverse, equitable, and inclusive environment where all employees can be their authentic selves and fully contribute to meet the needs of the multifaceted communities we serve. Our continued commitment to diversity, equity, and inclusion upholds our values and advances our goal of creating a healthcare system that is worthy of our family and friends while addressing health disparities, promoting social justice, and integrating health equity through our products, business practices, and presence as a corporate citizen.
Blue Shield has received awards and recognition for being a certified Fortune 100 Best Companies to Work, Military Friendly Employer, People Companies that Care, a Leading Disability Employer, and one of California’s top companies in volunteering and giving. Here at Blue Shield, we strive to make a positive change across our industry and communities – join us!
Our Values:
- Honest. We hold ourselves to the highest ethical and integrity standards. We build trust by doing what we say we're going to do and by acknowledging and correcting where we fall short.
- Human. We strive to be our authentic selves, listening and communicating effectively, and showing empathy towards others by walking in their shoes.
- Courageous. We stand up for what we believe in and are committed to the hard work necessary to achieve our ambitious goals.
Our Workplace Model:
Blue Shield of California is dedicated to making work-life balance a reality. Whether you prefer to work in an office or from home, we understand flexibility is more important than ever. That’s why Blue Shield is a hybrid company, offering you the opportunity to decide where you can do your best and most meaningful work.
Two ways of working: Hybrid (our default) and office
- Hybrid – In a business unit approved office a few times per year to 3 days per week, on average
- Office – In a business unit approved office 4+ days a week, on average. If the role you’re applying for is deemed an “Essential Role,” the company has determined that the role can only be performed in a Blue Shield office or in the field and would require your to meet the office worker classification.
Physical Requirements:
Office Environment - roles involving part to full time schedule in Office Environment. Due to the current public health emergency in California, Blue Shield employees are almost all working remotely. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.
Please click here for further physical requirement detail.
Equal Employment Opportunity:
External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, State and local laws.