Lead - Internal Audit

Role Overview: As the Lead IT Internal Auditor at Providence, you will be responsible for assessing Providence's IT systems and emerging technology risks. Your role will involve identifying vulnerabilities and recommending risk-mitigation strategies. You will play a crucial part in supporting risk-based and operational IT audits, with a growing emphasis on cybersecurity, cloud, data, and third-party risks. Additionally, you will collaborate with management on advisory initiatives to enhance the organization's IT security posture. Key Responsibilities: - Lead and execute risk-based Information Technology internal audit projects globally, encompassing IT governance reviews, control framework assessments, cybersecurity reviews, and technology-enabled advisory projects. - Identify, assess, and test IT and automated controls and processes across critical technology environments such as ERP, network, OS, applications, infrastructure, and databases. - Assist in the development and upkeep of IT control and audit documentation, including walkthroughs, testing approaches, and controls evaluation. - Coordinate and conduct testing of key IT and application controls, monitor completion, track status, and ensure continuous follow-up with process owners. Address any internal control deficiencies by identifying, remediating, and re-testing them. - Conduct targeted reviews of cybersecurity, information security, and data privacy controls, evaluating aspects like identity and access management, privileged access, incident response, and vulnerability management. - Evaluate technology risks associated with cloud services, third-party vendors, and outsourced IT operations. - Assess risks stemming from new technologies, automation, and digital transformation initiatives as part of the audit plan. - Utilize data analytics and technology-enabled audit techniques to enhance audit coverage, efficiency, and insight where appropriate. - Collaborate with IT and business stakeholders as a trusted advisor, communicating risks, impacts, and practical recommendations clearly. - Lead discussions with management regarding audit findings, risk impacts, and remediation expectations. - Produce high-quality, concise audit reports and ensure the timely completion of assigned audits. Qualification Required: - 58 years of experience in IT Internal Audit, IT Risk, or Technology Controls, with a track record of independently leading audits (Big Four Experience Preferred). - Exposure to the US Healthcare industry or regulated/complex environments (e.g., large enterprises, shared services) is advantageous. - Professional certifications such as CISA, CISSP, CRISC, or CISM are preferred; cloud or security-focused certifications (e.g., CCSP, AWS/Azure fundamentals) are an added advantage. - Bachelors degree in Engineering, Information Technology, or related field; an MBA is a plus. - Strong verbal and written communication skills, enabling effective interaction with IT and business stakeholders. - Organized, detail-oriented, and a collaborative team player with sound professional judgment. Additional Company Details: Providence's vision of creating 'Health for a Better World' underscores its commitment to providing a fair and equitable workplace for all employees. The organization promotes individuality, diversity of thought, and backgrounds, recognizing their role in its success. Providence is dedicated to offering equal employment opportunities, irrespective of various factors such as race, religion, color, disability, gender, age, nationality, and more. The company actively supports programs aimed at empowering underrepresented groups, including Women, PWD (Persons with Disabilities), LGTBQ+ individuals, Veterans, and others. Providence is committed to combating all forms of discrimination and harassment, providing a safe and confidential process for reporting any misconduct. Contact the Integrity hotline for further information and familiarize yourself with the company's Code of Conduct. Role Overview: As the Lead IT Internal Auditor at Providence, you will be responsible for assessing Providence's IT systems and emerging technology risks. Your role will involve identifying vulnerabilities and recommending risk-mitigation strategies. You will play a crucial part in supporting risk-based and operational IT audits, with a growing emphasis on cybersecurity, cloud, data, and third-party risks. Additionally, you will collaborate with management on advisory initiatives to enhance the organization's IT security posture. Key Responsibilities: - Lead and execute risk-based Information Technology internal audit projects globally, encompassing IT governance reviews, control framework assessments, cybersecurity reviews, and technology-enabled advisory projects. - Identify, assess, and test IT and automated controls and processes across critical technology environments such as ERP, network, OS, applications, infrastructure, and databases. - Assist in the de