Sr. Information Systems Auditor

About the job Sr. Information Systems Auditor

Responsibilities include, but are not limited to:

• Lead team reviews and oversee activities of other auditors.
• Conduct audits and reviews of the processes and safeguards in place to protect the organization’s information system resources and their data confidentiality, integrity, and availability.
• Assignments include but are not limited to reviews of new implementation projects and installed clinical and business application system controls and IT general controls for key infrastructure components.
• Determine the extent of compliance with established Scripps Health policies, procedures, and technology standards.
• Report risk-based observations and audit findings, develop practical mitigation recommendations with agreed-upon correction action plans for remediation of internal control gaps and deficiencies, reducing costs, and/or improving operational efficiency and effectiveness.

The Ideal Candidate will have:

• Ability to evaluate and audit complex information systems and related information security safeguards.
• Technical knowledge of information security concepts, information technology internal controls and safeguards, system vulnerabilities, and applicable rules and regulations.
• Understand key clinical information systems and processes in a healthcare delivery environment.
• Knowledge of the professional auditing standards (Institute of Internal Auditing), as well as internal and information security control frameworks and principles.
• Effective interpersonal, written, and verbal communication skills.
• High level of personal accountability for accuracy, attention to detail, task prioritization, and timely completion.
• Ability to work independently under changing priorities due to investigations; important deadlines; and rapid response to security incidents.

This is a Full Time, Salaried position located at our Corporate Offices in La Jolla and offers Scripps Health’s award-winning benefit package.

#LI-JS1

• Bachelor’s degree required in Accounting, Management Information Systems, Computer Engineering, Computer Science, or a related discipline.
• 3 years of auditing complex IS systems.
• Ability to evaluate and audit complex information systems and related information security safeguards.
• Technical knowledge of information security concepts, information technology internal controls and safeguards, technologies, system vulnerabilities, and applicable rules and regulations.
• Understanding of key clinical information systems and processes in an integrated healthcare delivery environment.
• Knowledge of the professional auditing standards (Institute of Internal Auditors Professional Practice of Internal Auditing), as well as internal and information security control frameworks and principles.
• Demonstrated effective interpersonal, written, and verbal communication skills.
• High level of personal accountability for accuracy, attention to detail, task prioritization, and timely completion.
• Ability to work independently under conditions of changing priorities due to investigations and special requests; important deadlines; and rapid response to security incidents.
• Strong technical skills and ability to learn and deploy computer-assisted audit techniques (CAAT) through ACL audit software and other tools.

• At least one of the following active certifications at time of hire: CISA, CRISC, CISSP, or CISM.
• Must possess a valid CA driver’s license and be able to independently travel to all business units and local workshops and seminars.

• Preferred: CIA, PMP or other relevant IT risk and security certifications.

Job:
Regulatory Primary

Location:

Central San Diego County – San Diego – Scripps Corporate Offices