The Information Systems (IS) Internal Auditor is responsible for assisting in advancing the mission of the Internal Audit & Process Improvement Department in a manner consistent with the values and standards of the Department and the internal audit profession.
The IS Internal Auditor is responsible for familiarizing themselves with the annual work plan, researching relevant topics to carry out assigned project areas and fostering important strategic relationships with other Sutter Health System Office functions.
The IS Internal Auditor will have primary responsibility for executing a variety of independent assurance and consulting services covering IS risk and IS related operational and reporting processes of Sutter Health and its Affiliates’ financial, clinical, and other support service functions as well as participate in the risk assessment process. Execution of these projects consists of carrying out the assigned project tasks, and complying with project budgets and timelines, collaborations with engagement team members, assisting with writing reports, ensuring quality of project deliverables, and effective communication with the project lead.
The IS Internal Auditor will also participate in improving the efficient and effective delivery of the Department’s assurance and consulting services including promoting the Internal Audit & Process Improvement brand, complying with Department and professional standards, participating in Department initiatives and internal process improvement projects, and providing input into the enhancement of audit methodologies, work flows and tools.
The preferred candidate will posses a technical background, a desire to improve existing processes, have an innate understanding of leadership principles and their application, internalize the Department’s vision, and take a client focused approach on every engagement.
Education/Certification/Licensure: A Bachelor’s degree in Information Technology / Systems, Management Information Systems, Computer Science / Electrical Engineering, Information Security/Assurance, or a related field such as Accounting Information Systems or Accounting when combined with relevant professional work experience is required. A Master’s degree in these subjects is desired.
Relevant professional certifications for information systems/technology or security such as Certified Information Systems Auditor (“CISA”), Certified in Risk and Information Systems Control (“CRISC”), or HealthCare Information Security and Privacy Practitioner (“HCISPP”) is highly desired.
Two to four years of progressive IS / IT auditing and/or consulting experience is required with some internal audit or public accounting experience preferred. Healthcare experience gained through roles in internal or external auditing, and/or healthcare information technology administration or operations strongly desired.
In addition, the IS Auditor must have an understanding of / experience with: • The governance and management of information systems as well as their acquisition, development, implementation, operation, administration, security, maintenance and support as well as applicable frameworks over this such as Control Objectives for Information and Related Technology (COBIT) or Information Technology Instrastructure Library (ITIL). • Assessing IS risk, including the risk inherent in various systems, the risk in IS department processes, and the risk introduced to financial, operational and compliance processes by the use of information systems.Information Technology General Controls / General Computer Controls as well as Application Controls and • Theory, methodologies, and processes for auditing information systems, as would be applied to integrated audits as well as audits of an IS department, including computerized auditing techniques.
The IS Internal Auditor must display a high degree of professionalism and leadership and possess proficient organizational, analytical and project management skills. Must have excellent written, verbal, and interpersonal and presentation skills.
Travel may be required depending on the project or data location (20%-30% annually). Must have reliable transportation and available for unplanned travel. Flexibility in working hours may be necessary. Significant amounts of sitting; use of both hands (for grasping, file handling, telephone use, word processing); hearing, speech, vision; and driving capabilities are all needed physical abilities.
Internal Number: SHSO-1908610
About Sutter Health
Sutter Health has a long history in California. Some of our facilities have cared for their communities for more than 100 years. Today, our network of physician organizations, not-for-profit hospitals, outpatient centers, home health and other medical services cares for 3 million patients in more than 100 Northern California cities and towns. Every day, Sutter Health’s doctors, nurses, clinicians, employees and volunteers partner toward a single, shared purpose: providing high-value health care that’s personalized to patients’ needs.