Back to Career Site






Our Mission is to Make Healthcare Right. Together. Built upon the belief that by connecting and aligning the best local resources in healthcare delivery with the financing of care, we can deliver a superior consumer experience, lower costs, and optimized clinical outcomes.

What drives our mission? The company values we live and breathe every day. We keep it simple: Be Brave. Be Brilliant. Be Accountable. Be Inclusive. Be Collaborative.

If you share our passion for changing healthcare so all people can live healthy, brighter lives – apply to join our team.


 

SCOPE OF ROLE

Bright Health is seeking a Senior IT Auditor for its rapidly growing organization. In this role, the Senior IT Auditor will support the building of a value-added internal audit function that focuses on the risks that matter, is collaborative and innovative. The Senior IT Auditor will perform assigned individual audit projects or portions of projects to evaluate IT, IT operations and the adequacy of the system of control to achieve established objectives. The Senior IT Auditor will also support Audit’s annual risk assessment and the corporate Sarbanes-Oxley (SOX) compliance program, prepare audit reports, report results to management and other related duties. This is a dynamic position that requires working with personnel across all functions of the company and at varying levels of responsibility.

ROLE RESPONSIBILITIES

The Senior IT Auditor job description is intended to point out major responsibilities within the role, but it is not limited to these items.

  • Plan and execute corporate information technology (IT) audit projects designed to provide assessment of internal control processes and operational performance, in accordance with department and professional standards
    • This includes preparing detailed plans for performing individual projects, including the identification of key risks and controls, determination of audit objectives, and development of an appropriate audit program
  • Perform or assist in the performance of SOX compliance activities, system implementations, special projects, including risk assessments, fraud investigations, audit department policy updates, due diligence acquisition reviews, etc.
  • Prepare and review audit work papers and reports documenting the result of reviews of assigned activities and management’s planned corrective actions
  • Assist in the development and execution of a comprehensive audit plan based upon risk assessment, management’s goals and objectives
    • Identify potential audit areas and estimating the time and skills required to complete audit projects
  • Maintain a proficient level of knowledge to demonstrate and apply a thorough understanding of complex information systems and use knowledge of the current IT environment and industry IT trends to identify potential issues and risks
  • Other duties and responsibilities as assigned

SUPERVISORY RESPONSIBILITIES

This position does not have supervisory responsibilities but will have eventually responsibilities as the continues to grow.

EDUCATION, TRAINING, AND PROFESSIONAL EXPERIENCE

Required:

  • Bachelor’s degree in Computer Science, Management Information Systems or Accounting/Finance, or equivalent degree and/or experience
  • Five to seven (5-7) years IT audit experience in an environment that provides exposure to sophisticated information systems audit techniques, network security, technology infrastructure, and software development.
  • Previous experience with SOX and an understanding of the general compliance requirements related to information technology
  • Understanding of concepts related to information systems audit, including security and control risks such as logical and physical access security, change management, information security, business recovery practices and network technology.
  • Strong analytical ability, including network and network systems design, capacity planning, operations methodology, error detection/resolution techniques, quality assurance techniques, and IT implementation and management methodologies.
  • Knowledge of Control Objectives for Information and Related Technology (COBIT) and other relevant IT / IS frameworks (e.g., HIPAA Security, ISO, NIST, PCI DSS)

Preferred:

  • Previous experience in the health industry (e.g., payer, provider care)
  • Data analytics/business intelligence experience
  • Automation (e.g., robotic process automation) experience
  • Data governance, data integration and database (e.g., data lake) management experience
  • Mergers and acquisitions, due diligence, business process/system integration experience
  • Governance, Risk and Compliance software experience

PROFESSIONAL COMPETENCIES

  • Proven analytical skills - defining problems, collecting relevant data, drawing valid conclusions, and recommending improvement/corrective actions
  • Demonstrated organizational and leadership skills, including the ability to successfully manage multiple projects simultaneously
  • Demonstrated ability to work independently while contributing to the success of the team
  • Exceptional communication skills that provide the ability to interact with all levels of the organization with a high customer service orientation
  • Ability to negotiate and inspire effective, timely, proactive or corrective action by management
  • Proficient in MS Office applications which include Outlook, Word, Excel, PowerPoint, Access, and Visio

BEHAVIORAL AND LEADERSHIP NORMS

  • Bright Values: Lives the Bright Values.  Given the individual role in the organization, creates a culture of positivity within team. Leads by example.  Acts with quiet, calm determination. Effectively influences in team setting.
  • Communication: Is an effective communicator. Internally, leads 1:1 and small groups of people in meetings. Capable of developing agenda, setting objectives, driving clarity of purpose and delivering the intended results. Can clearly articulate an inspiring goal/objective for each teammate and define success.
  • Delivers Results: Is results oriented. Focuses on results, not effort, and is able to efficiently direct time and energy to achieving intended outcome.  Takes strategic company initiatives and translates them to implementable processes that drive outcomes. Achieves strong results within their functional area. Focuses on managing against a predetermined set of objectives and creates and follows process.
  • Direct Management: May oversee a team of people who interact externally with members/brokers/vendors or who perform highly specialized work. Responsible for training new employees and developing existing employees. Translates corporate goals into actionable individual goals. Delivers thoughtful and constructive feedback to teams. Sets an example for employees. Manages up appropriately and knows how and when to escalate an issue or situation to more senior manager.
  • Prioritization: Establishes priorities by looking to predetermined goals in the organization. Is capable of deciphering priorities for self and for others and focuses the group on what must be done today, and who must do what. Is flexible and agile and can quickly reset priorities within team with clarity of purpose.

LICENSURES AND CERTIFICATIONS

  • Certification as a Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or other relevant certification

WORK ENVIRONMENT

Work responsibilities will usually be performed in a home or open office setting, carrying out detailed work sitting at a desk/table and working on the computer. Occasional travel will be required.

 

We’re Making Healthcare Right. Together.

We are realizing a completely different healthcare experience where payors, providers, doctors, and patients can all feel connected, aligned and unified on the same team. By eradicating the frictions of competing needs, we are making it possible to give everyone more of what they want and deserve. We do this by:
 
Focusing on Consumers
We understand patient pain points, eliminating complexity while increasing transparency, for greater access and easier navigation.
 
Building on Alignment
We integrate and align individual incentives at all levels, from financing to optimization to delivery of care.
 
Powered by Technology
We employ our purpose built, integrated data platform to connect clinical, financial, and social data, to deliver exceptional outcomes.
 
          

 
As an Equal Opportunity Employer, we welcome and employ a diverse employee group committed to meeting the needs of Bright Health, our consumers, and the communities we serve. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
 

 

Apply for this Job

* Required

  
  
When autocomplete results are available use up and down arrows to review
+ Add Another Education


Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Bright Health’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.