• The ability to effectively perform onsite audits and walk-throughs of Delegated Entity’s IT Systems – for security, integrity, etc.
• HIPAA Security Rules expertise in relation to HIPAA security compliance.
• Strong technical and analytical abilities, including a detailed understanding of application and IT general controls, technical environments and emerging IT trends.
• 7+ years of IT auditing experience, either in Internal Audit or with a professional services firm (i.e. Big 4).
• A solid understanding of Compliance and Privacy requirements.
• Execute assigned audit procedures and document workpapers in line with CS internal audit standards.
• Identify and present audit issues, manage agreed upon actions in audit reports including discussion with relevant to management.
• The ability to develop, present and finalize audit reports. This process entails initial drafting of the report, discussion with management to ensure factual accuracy and concurrence.
• Developing, presenting and finalizing audit reports. This process entails initial drafting of the report, discussion with management to ensure factual accuracy and concurrence and coordination with Management to obtain written responses to Audit’s recommendations
• Liaise with the audit team during each audit, including advising the audit manager of progress and issues; and Continuous monitoring and Key Risk Indicator analysis, e.g. stability reporting, problem tickets, usage of break-glass access (if needed)
• Maintaining relevant audit tools/scripts to support technical analysis (e.g. of operating system, database configurations).
• Alternatively, comparable experience within IT or a related area e.g. IT risk management.
• Results driven and able to build good working relationships with senior management in a variety of cultures.
• Highly motivated and proactive professional with strong organizational, interpersonal and time management skills.
• IT audit-relevant certification (e.g. CISA, CISSP, CIA) or commensurate experience preferable.
• Prior experience conducting SOC I & II audits, HI-TRUST audits
• Excellent communication and written skills.
• Project Management or Lean Six Sigma background would be a bonus.
• Cyber Defense knowledge would be useful as well.

Required Qualifications

• Broad knowledge of information assurance (IA) principles and organizational requirements that are relevant to confidentiality, integrity, and availability of data.
• Excellent analytical and problem-solving skills. Requires deep knowledge of job area typically obtained through advanced education combined with experience.
• Typically, viewed as a specialist within discipline. May have broad knowledge of project management.
• Requires a college degree or equivalent experience and minimum 7 years of prior relevant experience.
• Experience with Security Architecture

Preferred Qualifications

• Preferred CISSP-ISSAP, CIA, CISA certifications
• Certified Red Team preferred
• Certified Ethical Hacker preferred

Pay Range

The pay range for this role is: $ 118800.00 to $ 178200.00 for California.

Note

Please note that this range represents the pay range for this and many other positions at Blue Shield that fall into this pay grade. Blue Shield salaries are based on a variety of factors, including the candidate's experience, location (California, Bay area, or outside California), and current employee salaries for similar roles.

#LI-EB1