Information Technology (IT)/SOX Internal Auditor
Job Description:
This is a global role focused on leading IT general computing control testing support for both Sarbanes-Oxley (SOX) and non-SOX environments, such as System and Organization Controls (SOC) Reports within the Internal Audit SOX/SOC Center of Excellence team. The Information Technology Internal Advisor will collaborate with organization-wide Technology teams to drive better SOX control and risk mitigation practices, identify gaps in controls, and support audit activities. The successful candidate will have the knowledge and skillset to understand audit best practices and serve as a subject matter expert over corporate technology support functions.
Responsibilities:
Execute key functions of Internal Audit’s SOX/SOC oversight program for EvernorthCoordinate testing oversight, evidence gathering, deficiency analysis, and additional testing in support of external and internal audit teamsCollaborate with Financial Compliance team and SOX office to assess scope and facilitate testing coverageMeet frequently with control owners to assess compliance with audit requestsCollaborate with technical teams to interpret control requirements and assess design and operating effectiveness of key controlsIdentify and communicate internal and external security/audit risks through analysis of control evidenceAssess the effectiveness of IT general controls, including system development, security, backup, disaster recovery, and maintenance controlsReview and provide feedback on scope changes to systems and infrastructure (including AWS, AI, and other technologies) and integrate them into SOX testing strategyAssist internal SOX testing team in execution of annual SOX test programPerform and document testing over key IT general controlsReview and respond to internal and external data requests for regulatory auditsAssist with engagement planning, fieldwork, and reportingAdvise management on control implementation, remediation, and process changes, including follow-up on identified gapsDevelop and deliver risk and control awareness trainingPrepare, review, and deliver documentation and reports for internal and external stakeholdersInfluence senior and line management on risk and control mattersManage and review the work of staff performing control assessments, providing feedback and improvement opportunitiesContribute to process improvements, including establishing continuous monitoring models and staying current on emerging technology trendsQualifications:
This role will be accountable for establishing and maintaining processes that enable the primary responsibilities described above in support of SOX and SOC compliance activities.
Desired candidate will have excellent written and verbal communication skills, and a history of demonstrated courage, conflict management, customer focus, dealing with ambiguity, interpersonal savvy, organizational agility, perseverance, and problem solvingBachelor’s degree in a related field with 6+ years of relevant experienceStrong understanding of controls, risk, and audit methodology over information technologyCertifications such as CISA, CIA, CISM, or CISSP preferredExpertise in executing regulatory compliance audits such as SOX and SOC1Excellent written and verbal communication skillsInnovative enterprise mindset (self- starter, action oriented, results driven) and a proactive approach to improving internal processesIf you will be working at home occasionally or permanently, the internet connection must be obtained through a cable broadband or fiber optic internet service provider with speeds of at least 10Mbps download/5Mbps upload.
About The Cigna Group
Doing something meaningful starts with a simple decision, a commitment to changing lives. At The Cigna Group, we’re dedicated to improving the health and vitality of those we serve. Through our divisions Cigna Healthcare and Evernorth Health Services, we are committed to enhancing the lives of our clients, customers and patients. Join us in driving growth and improving lives.Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.
If you require reasonable accommodation in completing the online application process, please email: SeeYourself@cigna.com for support. Do not email SeeYourself@cigna.com for an update on your application or to provide your resume as you will not receive a response.
The Cigna Group has a tobacco-free policy and reserves the right not to hire tobacco/nicotine users in states where that is legally permissible. Candidates in such states who use tobacco/nicotine will not be considered for employment unless they enter a qualifying smoking cessation program prior to the start of their employment. These states include: Alabama, Alaska, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Iowa, Kansas, Maryland, Massachusetts, Michigan, Nebraska, Ohio, Pennsylvania, Texas, Utah, Vermont, and Washington State.
Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal, state and local ordinances.