Info Systems Auditor III
About Us.Overview
With a mantra of Empowering Human Potential Together, Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering the most advanced O&P solutions, clinically differentiated programs and unsurpassed customer service. Hanger's Patient Care segment is the largest owner and operator of O&P patient care clinics nationwide. Through its Products & Services segment, Hanger distributes branded and private label O&P devices, products and components, and provides rehabilitative solutions to the broader market. Built on the legacy of James Edward Hanger, the first amputee of the American Civil War, Hanger is steeped in 155 years of clinical excellence and innovation with a vision to lead the orthotic & prosthetic markets by providing superior patient care, outcomes, services, and value. Collectively, Hanger employees act with the highest level of integrity touching thousands of lives each day, helping people achieve new levels of mobility and freedom. (Hanger, Inc. is an equal opportunity employer - female/minority/disability/vet)
As our Information Systems Auditor III, you will be identifying risks within the Company's threat landscape and evaluating and implementing tools and processes to remediate them. Serving as a member of the IT Risk Team reporting directly to the Chief Information Security Officer (CISO), you will actively conduct internal information technology system audits, risk assessments, and control gap analysis work. You will additionally have the opportunity to develop and implement audit and control mechanism to monitor IT production environments for potential system integrity exposure and control weaknesses.
Responsibilities
Providing compliance advocacy and support throughout the organization, working closely with middle to senior-level management and cross-functional work groups comprised of analysts, project managers, developers, and business stakeholders
Identifying and documenting financial operational, and regulatory compliance risks
Communicating recommendations for corrective actions to senior leadership
Evaluating complex information systems and controls applications, business control processes, change control and program governance procedures, security, networks, and computer and data center operations, and
Providing support for Sarbanes-Oxley (SOX), HIPAA and PCI compliance
Qualifications
Bachelor's degree from an accredited college or university with a minimum of four (4) years of progressive IT experience to include at least two (2) years of handling compliance issues around Sarbanes-Oxley, PCI, and/or HIPAA privacy issues for IT OR-a high school diploma with a minimum of eight (8) years progressive IT experience to include at least two (2) years of handling compliance issues around Sarbanes-Oxley, PCI, and/or HIPAA privacy issues for IT is required.
Proficiency in performing audits, responding to audits, and facilitating IT's compliance activities with internal and external auditors
In-depth knowledge of and experience in managing full lifecycle of control remediation projects directed at bringing previously non-compliant business units or subsidiaries into full compliance
Strong and actionable understanding of control overlap between multi-regulatory requirements and governance frameworks and the ability to tie and streamline these controls to a single policy, standard, procedure, or guideline
Strong planning, communication, negotiation, leadership, and relationship-building skills
Healthcare or other government regulated industry experience desired
Experience in developing an ISO 27000 ISMS desired
ISACA certification is beneficial
CISSP and/or technical security certification beneficial
Hanger, Inc. is committed to providing equal employment opportunity in all aspects of the employer-employee relationship. All conditions and privileges of employment are administered to all employees without discrimination or harassment because of race, religious creed, color, age, sex, sexual orientation, gender identity, national origin, religion, marital status, medical condition, physical or mental disability, military service, pregnancy, childbirth and related medical conditions, special disabled veteran status, or any other classification protected by federal, state, and local laws and ordinances. The Company will comply fully with all applicable state or local fair employment laws that forbid discrimination or harassment on the basis of other protected characteristics. Retaliation against any employee for filing or supporting a complaint of discrimination or harassment is prohibited.
Knowledge.Job Complexity.Supervision.
. Apply now!Estimated Salary: $20 to $28 per hour based on qualifications.
With a mantra of Empowering Human Potential Together, Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering the most advanced O&P solutions, clinically differentiated programs and unsurpassed customer service. Hanger's Patient Care segment is the largest owner and operator of O&P patient care clinics nationwide. Through its Products & Services segment, Hanger distributes branded and private label O&P devices, products and components, and provides rehabilitative solutions to the broader market. Built on the legacy of James Edward Hanger, the first amputee of the American Civil War, Hanger is steeped in 155 years of clinical excellence and innovation with a vision to lead the orthotic & prosthetic markets by providing superior patient care, outcomes, services, and value. Collectively, Hanger employees act with the highest level of integrity touching thousands of lives each day, helping people achieve new levels of mobility and freedom. (Hanger, Inc. is an equal opportunity employer - female/minority/disability/vet)
As our Information Systems Auditor III, you will be identifying risks within the Company's threat landscape and evaluating and implementing tools and processes to remediate them. Serving as a member of the IT Risk Team reporting directly to the Chief Information Security Officer (CISO), you will actively conduct internal information technology system audits, risk assessments, and control gap analysis work. You will additionally have the opportunity to develop and implement audit and control mechanism to monitor IT production environments for potential system integrity exposure and control weaknesses.
Responsibilities
Providing compliance advocacy and support throughout the organization, working closely with middle to senior-level management and cross-functional work groups comprised of analysts, project managers, developers, and business stakeholders
Identifying and documenting financial operational, and regulatory compliance risks
Communicating recommendations for corrective actions to senior leadership
Evaluating complex information systems and controls applications, business control processes, change control and program governance procedures, security, networks, and computer and data center operations, and
Providing support for Sarbanes-Oxley (SOX), HIPAA and PCI compliance
Qualifications
Bachelor's degree from an accredited college or university with a minimum of four (4) years of progressive IT experience to include at least two (2) years of handling compliance issues around Sarbanes-Oxley, PCI, and/or HIPAA privacy issues for IT OR-a high school diploma with a minimum of eight (8) years progressive IT experience to include at least two (2) years of handling compliance issues around Sarbanes-Oxley, PCI, and/or HIPAA privacy issues for IT is required.
Proficiency in performing audits, responding to audits, and facilitating IT's compliance activities with internal and external auditors
In-depth knowledge of and experience in managing full lifecycle of control remediation projects directed at bringing previously non-compliant business units or subsidiaries into full compliance
Strong and actionable understanding of control overlap between multi-regulatory requirements and governance frameworks and the ability to tie and streamline these controls to a single policy, standard, procedure, or guideline
Strong planning, communication, negotiation, leadership, and relationship-building skills
Healthcare or other government regulated industry experience desired
Experience in developing an ISO 27000 ISMS desired
ISACA certification is beneficial
CISSP and/or technical security certification beneficial
Hanger, Inc. is committed to providing equal employment opportunity in all aspects of the employer-employee relationship. All conditions and privileges of employment are administered to all employees without discrimination or harassment because of race, religious creed, color, age, sex, sexual orientation, gender identity, national origin, religion, marital status, medical condition, physical or mental disability, military service, pregnancy, childbirth and related medical conditions, special disabled veteran status, or any other classification protected by federal, state, and local laws and ordinances. The Company will comply fully with all applicable state or local fair employment laws that forbid discrimination or harassment on the basis of other protected characteristics. Retaliation against any employee for filing or supporting a complaint of discrimination or harassment is prohibited.
Knowledge.Job Complexity.Supervision.
. Apply now!Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
