Conducts the examinations and evaluations of the adequacy and effectiveness of the organization's system of internal control and the quality of performance in carrying out assigned responsibilities as defined in the Internal Audit Charter. Focuses on the Information Technology aspects of the Geisinger Health System and to include the areas of systems development, data processing applications, data center operations, data processing administration/operations, data processing security, and disaster recovery. Performs duties to support the goals and objectives of the Geisinger Health System in its efforts to provide quality patient care and patient satisfaction. Reports directly to the Team Lead or Audit Director and works in close cooperation with other members of the Internal Audit Department.
MAJOR DUTIES AND RESPONSIBILITIES:
*1. Conducts reviews of the existing control environments of operational applications and GHS IT infrastructure with assistance of the Team Lead.
*2. Completes reviews of IT systems to ensure compliance with applicable policies, plans, procedures, laws, established frameworks, industry best practices and regulations which could have a significant impact on operations and reports in determining whether the organization is in compliance.
*3. Independently researches frameworks, external guidance and regulatory requirements to establish expected controls and applicable regulations specific to the audit area.
*4. Develops test objective and test procedures in audit program and executes defined test objectives and procedures to validate the effectiveness and efficiency of controls with the assistance of the Team Lead.
*5. Conducts bi-annual/annual testing of the GHS internal control environment, through the completion of Model Audit Rule testing and Internal Controls Testing.
*6. Acts independently as a project manager on assigned engagements. Manages established resources allocations, time lines and triages issues from the assigned audit team. Leads engagement meetings and communications.
7. Assists in the quarterly review of compliance with completed organizational Risk Acceptances and Provides support in the assessment of the current organization risk level for assigned projects.
*8. Provides assistance in annual audit planning to determine IS audit objectives. Once approved, provides quarterly updates based on risk assessment. Assists in the time budgeting and resource allocation necessary to meet established objectives.
*9. With the assistance of the Team Lead provides consulting and oversight services in line with Internal Audit expectation. Specifically, in the implementation and /or upgrade of GHS applications or infrastructure.
*10. Obtains, analyzes and appraises evidentiary data and other available information as a basis for an informed, objective opinion on the adequacy and effectiveness of the system and the efficiency of performance of the assigned areas being audited.
COMPETENCIES AND SKILLS:
Demonstrates ability to communicate audit findings both orally and in writing. Proficient in independent research of standards and best practices, evidencing fundamental understanding of established criteria and ability to apply such criteria to specific audit areas. Demonstrates the ability to work across multiple platforms and adapts quickly to changing demands and regulations of the IT environment. Evidence of strong interpersonal skills, within a team environment and with customers. Basic project management/time management skills required. Basic knowledge of IT frameworks and standard controls. Advanced customer service skills, meaning the ability to interact professionally across and outside of the Health System. Ability to build and maintain strong relationships with operational leaders. Independently evaluate and learn multiple software applications, including but not limited to the GHS core financial application, multiple billing applications, electronic health records, claims applications as well as data extraction and manipulation tools.
EDUCATION AND/OR EXPERIENCE:
Bachelor’s degree in Information Technology, Computer Science, Accounting or related field required. Minimum of three years’ information systems, internal/external audit, information security or information systems related experience required.
OR Associate's degree in Information Technology, Computer Science, Accounting or related field required. Minimum of six years’ information systems, internal/external audit, information security or information systems related experience required. Prior information systems programming or related experience preferred.
Internal Number: 53965
Geisinger is a physician-led health system comprised of approximately 30,000 employees, including nearly 1,600 employed physicians, 13 hospital campuses, two research centers, and a 583,000-member health plan Geisinger is nationally recognized for innovative practices and quality care. Geisinger serves more than 3 million people in central, south-central and northeast Pennsylvania and also in southern New Jersey with the addition of National Malcolm Baldridge Award recipient AtlantiCare, A member of Geisinger.