This is a Full Time, Salaried position located at our Corporate Offices in La Jolla and offers Scripps Health's award-winning benefit package.
Join the Scripps Health team and work alongside passionate caregivers and provide patient-centered healthcare. Receive endless appreciation while you build a rewarding career with one of the most respected healthcare organizations nationwide.
Why join Scripps Health?
AWARD-WINNING WORKPLACE: #5 in Fortune Best Workplaces in Health Care 2023
#78 in 2023 PEOPLE Companies that Care
#95 in Fortune 100 Best Companies to Work for 2023
Recognized by Newsweek as one of America's Greatest Workplaces for Diversity in 2024
Nearly a quarter of our employees have been with Scripps Health for over 10 years.
Reporting to the Manager, Information Systems Audits, (who reports to the Director of Internal Audit), the Senior Information Systems Auditor plans and conducts Information Technology (IT) and integrated audit projects based on risk assessments of Scripps Health information resources. Supports the goals and objectives of the Audit & Compliance Services Department Annual work plan and Information Security Program approved by senior management and the Audit Committee of the Board of Trustees. At times, this position will lead team reviews and oversee activities or other auditors. Conducts audits and reviews of the processes and safeguards in place to protect the organization's information system resources and their data confidentiality, integrity, and availability. Assignments include but are not limited to reviews of new implementation projects and installed clinical and business application system controls and IT general controls for key infrastructure components. Determines the extent of compliance with established Scripps Health policies, procedures, and technology standards. Reports risk-based observations and audit findings, develops practical mitigation recommendations with agreed-upon correction action plans for remediation of internal control gaps and deficiencies, reducing costs, and or improving operational efficiency and effectiveness.
#LI-JS1
Qualifications
Required Education/Experience/Specialized Skills: Bachelor's degree required in Accounting, Management Information Systems, Computer Engineering, Computer Science, or a related discipline.
3 years of auditing complex IS systems including IT general controls and/or application controls.
Experience/Specialized Skills:
Ability to evaluate and audit complex information systems and related information security safeguards including application, operating system, database, and networking level.
Technical knowledge of information security concepts, information technology internal controls and safeguards, technologies, system vulnerabilities, and applicable rules and regulations.
Knowledge of the professional auditing standards (Institute of Internal Auditors Professional Practice of Internal Auditing), as well as internal and information security control frameworks and principles.
Demonstrated effective interpersonal, written, and verbal communication skills.
High level of personal accountability for accuracy, attention to detail, task prioritization, and timely completion.
Ability to work independently under conditions of changing priorities due to investigations and special requests; important deadlines; and rapid response to security incidents.
Required Certification/Registration: At least one of the following active certifications at time of hire: CISA, CRISC, CISSP or CISM.
Must possess valid CA Drivers license and be able to independently travel to all business units and local workshops and seminars.
Preferred Education/Experience/Specialized Skills/Certification: Master's degree;
Preferred: CIA, PMP or other relevant IT risk and security certification.
Understanding of key clinical information systems and processes in an integrated healthcare delivery environment.
Experience with computer-assisted audit techniques through ACL or similar software and/or other tools.
