Perform internal audits at both the enterprise level and at respective locations or department levels as determined by the engagement.
Manage and support annual internal audit plan, risk assessments, data and reporting capabilities, audits and investigations.
Complete fieldwork, work paper reviews and finalize audit reports.
Review findings and conduct follow-up on the remediation plans with audit team and senior leadership.
Ensure systems, policies, applications, and processes comply with internal policies and external industry regulations.
Prepare and update risk assessments to assess controls, identify vulnerabilities, and mitigate risks associated with healthcare systems and regulations (HIPAA, HITECH).
Guide and support internal audit team in preparing audit reports that are accurate, clear, concise, constructive, objective and timely.
Prepare clear and compelling reporting, including executive summaries and presentations for senior leadership and stakeholders.
Analyze audit findings to identify inefficiencies, weaknesses, or non-compliance.
Collaborate across departments and recommend improvements to enhance regulatory compliance, data integrity and analytics, confidentiality, security, privacy, and integrity of operational and technology infrastructure.
Requirements
Bachelor’s degree in Accounting, Finance, Mathematics, Information Systems, Information Technology, Health Information Management, Health Informatics, or other Business-related degree with an Accounting minor is required.
Masters degree is preferred.
Minimum of 5 years related work experience is required, preferably in the health industry or in a lead auditor role.
Must have solid understanding of auditing frameworks, and accounting principles and standards is required.
Understanding of general audit concepts, techniques, approaches and processes is required.
Ability to prioritize tasks and manage projects effectively.
Demonstrate accuracy and attention to detail.
Must have strong experience with data analytic reporting tools.
Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Risk Management Assurance (CRMA), Certified Information Systems Security Professional (CISSP) HealthCare Information Security and Privacy Practitioner (HCISPP) or Certified Controls Self Assessment (CCSA) preferred.