Information systems auditor job description

GovCIO is a team of transformers-people who are passionate about transforming government I.T. We believe in making a difference by developing digital strategies and delivering the technology-related innovation governmental operations that improve the citizen experience every day.

But we can't do it alone. We welcome and nurture an inclusive and diversified work culture. Because different backgrounds, experiences, abilities, and perspectives make us better decision-makers, problem solvers, and creators. We're changing the face of I.T. - from our diverse staff to the end-products we develop. And we're excited to expand our team. Are you ready to be a transformer?
Responsibilities


Assist the government in preparing client stakeholders for external audits Coordinate client responses to external audits by ensuring information provided to external auditors is timely, accurate, and satisfies the auditor's request Assist the government to ensure audit findings and recommendations are accurate and proposed remediation is achievable and track remediation status of all external audit findings and recommendations Assist the government in assessing and analyzing external audit findings and recommendations to identify areas for improvement in the client's cybersecurity program.


Qualifications


Bachelor's with 8+ years (or commensurate experience) 3 - 5 years of experience in IT risk and compliance, IT governance, IT auditing or an IT/cybersecurity related field. Certified Information Systems Auditor (CISA) or Certified Internal Auditor (CIA) certifications. Demonstrated knowledge of compliance practices and IT audit operations. Demonstrated knowledge of operating systems, application development, change management, operations, networking and telecommunications, databases, business continuity, disaster recovery, and physical and logical security. Excellent analytical skills to understand organizational objectives, evaluate risks and controls and accurately document and support work performed and conclusions reached. General knowledge of internal control concepts, principles, risk analysis, FISMA, PCI Compliance, HIPAA, Privacy, process improvement and techniques, including frameworks such as NIST, ISO2700, COSO and COBIT. A high degree of personal integrity, attention to detail, and strong investigative skills. All personnel assigned under this task order must possess current TS clearances and maintain them throughout the life of the contract. Personnel must be SCI eligible.


Desired Qualifications


Bachelor's degree in Computer Information Systems, IT/ cybersecurity related discipline


#zr



COVID Policy:
New employees will be required to adhere to the Company's and its clients' COVID-19 safety procedures. In the event that the COVID-19 vaccination mandate for Federal Contractors is enforced, you must become fully vaccinated or request and be approved for an exemption. Employees working onsite at a client location must comply with our client's COVID-19 requirements.

GovCIO is a team of professionals who want to make a difference. And that can only happen with a diverse, happy, and cared-for team. So, we prioritize your well-being, equity for all and look for ways to make work a better place for each of us every day.


We are an Equal Opportunity Employer.
All qualified applicants receive consideration for employment without regard to race, ethnicity, religious affiliation, gender, gender identity or expression, sexual orientation, national origin, or disability status. EOE AA M/F/Vet/Disabled

At Scripps Health, you will experience the pride, support, and respect that has been repeatedly recognized as one of the nation's Top 100 Places to Work.

You'll be surrounded by people committed to making a difference in the lives of their patients and their teammates. So, if you're open to change, go ahead, and unlock your potential.

Reporting to the Manager, Information Systems Audits, (who reports to the Director of Internal Audit), the Senior Information Systems Auditor plans and conducts Information Technology (IT) and integrated audit projects based on risk assessments of Scripps Health information resources. Supports the goals and objectives of the Audit & Compliance Services Department Annual work plan and Information Security Program approved by senior management and the Audit Committee of the Board of Trustees.
Responsibilities include, but are not limited to:

* Lead team reviews and oversee activities or other auditors.
* Conduct audits and reviews of the processes and safeguards in place to protect the organization's information system resources and their data confidentiality, integrity, and availability.
* Assignments include but are not limited to reviews of new implementation projects and installed clinical and business application system controls and IT general controls for key infrastructure components.
* Determine the extent of compliance with established Scripps Health policies, procedures, and technology standards.
* Report risk-based observations and audit findings, develops practical mitigation recommendations with agreed-upon correction action plans for remediation of internal control gaps and deficiencies, reducing costs, and or improving operational efficiency and effectiveness.

The Ideal Candidate will have:

* Ability to evaluate and audit complex information systems and related information security safeguards
* Technical knowledge of information security concepts, information technology internal controls and safeguards, system vulnerabilities, and applicable rules and regulations
* Understand key clinical information systems and processes in a healthcare delivery environment
* Knowledge of the professional auditing standards (Institute of Internal Auditing), as well as internal and information security control frameworks and principles
* Effective interpersonal, written, and verbal communication skills
* High level of personal accountability for accuracy, attention to detail, task prioritization, and timely completion
* Ability to work independently under changing priorities due to investigations; important deadlines; and rapid response to security incidents

This is a Full Time, Salaried position located at our Corporate Offices in La Jolla and offers Scripps Health's award-winning benefit package.

#LI-JS1

*Required Education/Experience/Specialized Skills:*

* Bachelor's degree required in Accounting, Management Information Systems, Computer Engineering, Computer Science, or a related discipline.
* 3 years of auditing complex IS systems
* Ability to evaluate and audit complex information systems and related information security safeguards.
* Technical knowledge of information security concepts, information technology internal controls and safeguards, technologies, system vulnerabilities, and applicable rules and regulations.
* Understanding of key clinical information systems and processes in an integrated healthcare delivery environment.
* Knowledge of the professional auditing standards (Institute of Internal Auditors Professional Practice of Internal Auditing), as well as internal and information security control frameworks and principles.
* Demonstrated effective interpersonal, written, and verbal communication skills.
* High level of personal accountability for accuracy, attention to detail, task prioritization, and timely completion.
* Ability to work independently under conditions of changing priorities due to investigations and special requests; important deadlines; and rapid response to security incidents.
* Strong technical skills and ability to learn and deploy computer-assisted audit techniques (CAAT) through ACL audit software and other tools.

*Required Certification/Registration:*

* At least one of the following active certifications at time of hire:
o CISA, CRISC, CISSP or CISM.
* Must possess valid CA Drivers license and be able to independently travel to all business units and local workshops and seminars.

*Preferred Education/Experience/Specialized Skills/Certification:*

* Master's degree
* Preferred: CIA, PMP or other relevant IT risk and security certification.

**Job:** **Regulatory*

**Organization:** **Scripps Health Corp*

**Title:** *Sr. Information Systems Auditor*

**Location:** *Central San Diego County-SAN DIEGO-SCRIPPS CORPORATE OFFICES*

Apply now »

Date:Oct 6, 2022

Location: Tallassee, AL, US

Company: GKN Aerospace Careers

About Us

GKN Aerospace is the world's leading multi-technology tier 1 aerospace supplier. With 38 manufacturing locations in 12 countries, we serve over 90% of the world's aircraft and engine manufacturers. We design and manufacture innovative smart aerospace systems and components. Our technologies are used in aircraft ranging from the most used single aisle aircraft and the largest passenger planes in the world to business jets and the world's advanced 5th generation fighter aircraft.

About the opportunity

GKN Aerospace is a global engineering business. Every time you travel by air almost anywhere in the world, it is likely that GKN is helping you on your way. We design, manufacture and service systems and components for original equipment manufacturers around the world. We are continuously evolving, pioneering new technologies and reinventing existing ones, stretching ourselves to be better in everything we do.

We are looking for people who want to make a difference, talented members with the skills and passions to become the best of the future in what they do.

Job Summary

Act as business partner to the site/entity manufacturing process managers and leadership in assuring and improving the manufacturing processes and product/service quality performance.

To provide Internal (1st Party) audit capability for the assessment of the manufacturing processes and products/services, ensuring process compliance, robustness and effectiveness in relation to the Customer requirements, quality needs and expectations. To plan, host and support external (customer, regulatory and other 3rd parties) audits.

To report & ensure conclusion on non-compliances, as well as highlighting improvement & best practice sharing opportunities and help drive a value added, continual improvement culture through the organization.

Job Responsibilities

+ Ensuring the delivery of the manufacturing process/product audit objectives (when acting as the Lead Auditor), ensuring adequate preparation for the conduct of the audit criteria against the local audit plan;

+ Within the specific audit criteria for gathering of appropriate audit evidence, recommendations and thus preparing the audit and distributing the audit report and conducting the audit follow up;

+ For the evaluation of the audit evidence, non-conformities recommendations / opportunities for improvement and for the communication of subsequent recommendations, including risk identification to the BMS/QMS Manager;

+ Provide planning and hosting of external 2nd and 3rd party audits including support to follow up activity support (e.g RCCA/NCR/OASIS) integrity management.

Job Qualifications

Required:

• Continuous improvement foundation training or equivalent training

• Industry experience within a Manufacturing environment (APQP) preferably aerospace/automotive.

• Thorough understanding of the content and application of the IAQG / EAQG ISO Standards and IAQG SCMH.

• Experience in the use of the IAQG OASIS database for the input to audit planning.

• Knowledge of Business Process Management and the APQC Process Classification Framework.

Preferred:

+ GKN Aerospace Experience

Diversity Inclusion and Belonging (DIB)

As a global engineering company, innovation is what differentiates us from our competitors and is central to our success.

A balance of cultures, ethnicities and genders help bring new ideas and creativity to GKN. We need people of different backgrounds, with different skills and perspectives to spark originality, imagination and creativeness in our teams around the world.

GKN is an equal opportunity employer.

We treat all our employees and applicants fairly and are committed to ensuring that there is no discrimination or harassment against any employee or qualified applicant on the grounds of age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, or veteran status or any other characteristic protected by law.