IT Auditing Consultant
- Atlanta, GA
With our rich history of quality products and services, we are committed to providing our customers with the information and tools needed for you to be successful in your role in healthcare. Whether you are a clinician, doctor or administrator of a hospital, a distributor or GPO, we hope you will find the information in this section useful in our collaborative quest for positive patient outcomes.
This position is responsible for: Communicating with third parties to obtain their information security standards and evidence of their documented security controls. Working closely the Third Party Vendor Management group, business stake holders and the third party providers themselves. Conduct reviews by assessing vendor provided documentation control standards. Summarizing findings and recommending health grade. Highlighting gaps in security programs/areas of concern backed up with appropriate analysis. Report to senior management on progress of reviews in flight, escalating all obstacles to review completion. May be required to travel and perform on site assessments as required.
To perform this job successfully, an individual must be able to perform each essential function satisfactorily with or without accommodation. The requirements listed below are representative, but not all inclusive, of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job functions. Provides technical expertise relating to complex IT Audit issues and questions from staff and clients. Builds client relationships. Maintains smooth working relationship with clients and solicits client input on satisfaction. Assists partners/managing directors in managing effective billing and collections. Appropriately manages risk and ensures quality control procedures are being executed on all engagement activities. Ensures efficient execution of engagement financial management. Other job duties as assigned.
High school diploma or equivalent. Certification requirement may be waived with verifiable on-the-job training and experience. Ability to multi-task- Manages multiple tasks at one time; quickly and accurately shifts attention among multiple tasks under distracting conditions without loss of accuracy or appearance of frustration. Communication skills - Reads, writes and speaks fluent English, using appropriate grammar, style and vocabulary. Correctly spells commonly used English words and job specific terms. Demonstrates exceptionally strong written and verbal communication skills. Organizational ability - Demonstrates a systematic approach in carrying out assignments. Is very orderly and excels at cutting through confusion and turning chaos into order. Problem solving skills - Demonstrates a strong ability to identify, analyze and solve problems. Translates problems into practical solutions. Client service skills - Consistently ensures the team provides the client with attentive, courteous and informative service. Gains and shows personal satisfaction from delivering great service. Intellectual ability - Accurately and consistently follows instructions delivered in an oral, written or diagram format. Minimum 1 - 2+ years experience in IT security. Experience working directly with third parties. 1 - 3+ years experience in auditing IT security controls. Must have general experience with standard security practices in the following areas: Network Security and Firewalls, User Access Administration, Database Management, Data Encryption, Log Collection and Event Monitoring, Vulnerability Management, Penetration testing, Data Privacy, Loss Prevention, Application Security best practices, including Web and client-server, Application Authentication and Authorization, System Development best practices, Change Management, Incident Response Planning, Business Continuity Planning. Must be able to work in complex, critical network environments. Computer skills - Comfortably and confidently uses a computer and specialized software. Microsoft Word, Excel, Access, Outlook, etc. New program graduates will be considered.
As a medical products company with a strong technological heritage, our employment opportunities include scientific, professional, technical, and managerial positions, as well as a wide range of marketing, operations, manufacturing, data processing, and support functions. It has been and will continue to be a fundamental policy of our Company not to discriminate on the basis of race, color, religion, sex, national origin, age, disability, or status as a Vietnam era or special disabled veteran with respect to recruitment, hiring, training, promotion and other terms and conditions of employment. In addition, our Company complies with local laws in each jurisdiction in which it maintains facilities.