From our rich history of diversity firsts to our sustained efforts to integrate diversity into every aspect of our daily operations, Kaiser Permanente has distinguished itself as a socially conscious leader that supports and empowers its workforce.
Recruiting and cultivating diverse talent is integral to achieving our key business objectives. To consistently deliver high-quality, accessible, culturally competent care to our members and patients, it is essential that our employees reflect the communities we serve.
At Kaiser Permanente, we want our workforce to reflect the perspectives of everyone: women, people with disabilities, the world's ethnicities and races, veterans, LGBTQ communities and more.
Job Location Options: Oakland, CA or Pasadena, CA
Performs a strategic assessment and management function within Internal Audit. Responsible for assigned areas maintaining a collaborative and consultative relationship with customers.
Develops the strategy and sets priorities for multiple practice areas and regions, leveraging and engaging other members of the team as necessary. Takes the lead role in driving practice area/regional development based on risk assessment activities, client interactions, and industry knowledge. Directs the on-going risk assessment process.
Identifies and leads continuous improvement efforts within IAS.
Plays a lead role in the coordination of audit projects with other audit and compliance functions to maximize efficiency and coverage of key risk areas.
Hires, develops, and manages an effective and diverse workforce.
Plans, schedules and supervises assigned audit projects and staff in accordance with the audit plan, project budgets, and milestones. Reviews and approves project level risk assessments, develops audit plan programs, reviews work papers, and approves/prepares reports. Adheres to professional and IAS standards.
In addition to an audit certification, a technical and/or information security certification such as Certified Information Security Manager (CISM) and/or Certified Information Systems Security Professional (CISSP) is desirable.
Excellent understanding of concepts related to information systems audit, information security, general IT controls, application controls, and technology risks.
Proficient in conducting reviews of highly technical areas including current/emerging/disruptive technologies (e.g., Agile/DevOps, Digital, Big Data, Internet of Things/Medical Devices, Artificial Intelligence) and key layers of IT such as networks, databases, cloud services and applications, data and cyber security, operating systems, firewalls, third party risk, etc.
Extensive information security, cybersecurity and network control audit knowledge.
Experience with auditing large programs, transformations and systems implementations.
Strong working knowledge of internal control, regulatory compliance and industry frameworks (e.g., COBIT, NIST CSF & 800-53, ISO27001, SOC, HITRUST, HIPAA, PCI, etc.).
Strong understanding of internal control concepts and experience evaluating and determining the adequacy of controls by considering business and technology risks in an integrated manner.
Ability to articulate technology risks and business impact and communicate effectively to various levels of management.
Experience working with Cyber Security/Information Security, Governance, Risk Management, Compliance, Information Technology, and Legal/Privacy functions.
Experience providing risk and control advisory services to management to assist in initial design or redesign efforts that improve the control environment.
Can promote new ideas and new ways of executing projects to gain efficiencies and effectiveness including use of technology.
Strong experience in managing audit project teams in a complex operational and regulatory environment.
Same functional knowledge and skills as Manager, Internal Audit with the addition of demonstrated experience integrating various priorities, internal issues, and situation analyses into a cohesive strategic approach to department management.
Minimum seven (7) years of professional auditing or comparable experience required.
Additional Certifications: Certified Internal Auditor (CIA), Certified Public Accountant (CPA)
Bachelor's degree in business, accounting, finance or information systems or related field, OR four (4) years of experience in a directly related field.
High School Diploma or General Education Development (GED) required.
Minimum five (5) years of supervisory experience to include increasing levels of internal audit and project management experience preferred.
Master's degree preferred.
Internal Number: 824206
About Kaiser Permanente
Founded in 1945, Kaiser Permanente is one of the nation's largest not-for-profit health plans, serving 12.2 million members in 8 states and the District of Columbia, with headquarters in Oakland, California. It comprises: Kaiser Foundation Health Plan, Inc., Kaiser Foundation Hospitals and its subsidiaries and The Permanente Medical Groups. Care for members and patients is focused on their total health and guided by their personal Permanente Medical Group physicians, specialists, and team of caregivers. Our expert and caring medical teams are empowered and supported by industry-leading technology advances and tools for health promotion, disease prevention, state-of-the-art care delivery, and world-class chronic disease management. We are dedicated to care innovations, clinical research, health education, and improving community health. Our Mission: Kaiser Permanente exists to provide high-quality, affordable health care services and to improve the health of our members and the communities we serve. Our Vision: We are trusted partners in total health, collaborating with people to help them thrive and creating communities that are among the healthiest in the nation.