Internal Auditor - (I.T./Cyber)

Cleveland Clinic

4d•Hybrid

About The Position

At Cleveland Clinic Health System, we believe in a better future for healthcare. And each of us is responsible for honoring our commitment to excellence, pushing the boundaries and transforming the patient experience, every day. We all have the power to help, heal and change lives — beginning with our own. That’s the power of the Cleveland Clinic Health System team, and The Power of Every One. Join the Cleveland Clinic team, where you will work alongside passionate caregivers and provide patient-first healthcare. Cleveland Clinic is recognized as one of the top hospitals in the nation. At Cleveland Clinic, you will receive endless support and appreciation and build a rewarding career with one of the most respected healthcare organizations in the world. Seeking an Information Technology auditor with 2+ years of experience executing assessments/audits related to Information Technology (IT), Cybersecurity, and Emerging Digital competencies. A relevant certification is highly preferred. A caregiver in this role works days from 8:00 a.m. – 5:00 p.m. This is a hybrid position requiring local residency in the Cleveland area, with three days remote and two days on-site at West Creek Independence. A caregiver who excels in this role will: Plan, perform and evaluate internal audits. Leverage agile methodology concepts in executing procedures. Help identify control improvements in response to enterprise IT/Cybersecurity risks. The ideal future caregiver is someone who: Can complete IT audit and advisory procedures for assigned projects efficiently, including testing the effectiveness of internal controls and/or adherence to policy/requirements. Demonstrates critical thinking skills, decisive judgement, and can work both collaboratively and independently. Effectively documents applicable I.T. and cyber audit and advisory findings, including recommendations for improving controls and complying with regulatory requirements. Can manage multiple priorities and projects with competing priorities at once. Has general business knowledge of IT/Cybersecurity concepts, including familiarity with the Health Insurance Portability and Accountability Act (HIPAA) Security Rule/concepts and/or National Institute of Standards and Technology (NIST) Cybersecurity Framework. By taking this opportunity, you will add value to all areas of Cleveland Clinic and make meaningful impacts to help our patients, community, organization and caregivers. This collaborative team also offers 40 hours of education/training (for candidates with a certification) and works a required hybrid work schedule. At Cleveland Clinic, we know what matters most. That's why we treat our caregivers as if they are our own family, and we are always creating ways to be there for you. Here, you'll find that we offer: resources to learn and grow, a fulfilling career for everyone, and comprehensive benefits that invest in your health, your physical and mental well-being and your future. When you join Cleveland Clinic, you'll be part of a supportive caregiver family that will be united in shared values and purpose to fulfill our promise of being the best place to receive care and the best place to work in healthcare.

Requirements

Bachelor's of Science or BBA degree with specialization in Accounting, Business Administration, or related field
Working knowledge of information systems concepts and controls
Consulting or tech consulting background or support area
Knowledge of common cybersecurity frameworks, controls

Nice To Haves

Advanced degree
Two years of professional andfunctionally relevant information technology or cybersecurity experience.
Technology and Cybersecurity technical experience
Internal Audit experience
Hands-on experience with cybersecurity auditing, assessment, or consulting
Proficient with Microsoft Office tools (Excel, Word, PowerPoint and Teams)
Experience translating complex technical content into clear action items or presentations
Familiarity with common cybersecurity frameworks, controls, and terminology (e.g. CISA, CISSP concepts)

Responsibilities

Under general supervision, completes assignments relating to IT audits or advisory projects.
Plans and conducts audit and advisory tests and procedures designed to evaluate the adequacy and effectiveness of controls for safeguarding Cleveland Clinic data and assets.
Effectively collects and analyzes data from diverse sources, including utilizing computer-assisted auditing techniques, and coordinates documentation requests and clarifying questions with internal stakeholders.
Ability to select samples and generate clear and concise supporting documentation results against defined attributes.
Prepares and maintains complete and accurate support documentation in response to assigned auditing and advisory activities.
Documents applicable audit and advisory findings, including recommendations for improving controls and complying with regulatory requirements.
Assures appropriate completion of assignments; tracks time and organizes electronic audit and advisory documentation using applicable department software.
Manages multiple priorities and projects with competing priorities.
Acts as an internal resource to enhance awareness and understanding of leading practices, risk management and use of controls by management.
Maintains current and proficient knowledge of applicable federal, state, and local laws, regulations, policies, and procedures.
Complies with the Institute of Internal Auditors (IIA) Global Audit Standards.
Other duties as assigned.

Benefits

resources to learn and grow
a fulfilling career for everyone
comprehensive benefits that invest in your health, your physical and mental well-being and your future

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume