Senior IT Auditor

Website Mercy Hospital


Evaluates the efficiency and effectiveness of internal controls and assists in the definition, design and execution of technology and integrated audits. Perform select IT audits based on the annual IT audit plan and prepare reports to communicate audit findings and recommendations to senior leadership under general supervision of the Manager, IT Audit.  Has a solid understanding of IT general controls, best practices, IT processes, and infrastructure.  Responsible for on-going monitoring and reporting of remediation efforts and contributes to the overall department wide goals and objectives.

Responsible for leading Information Technology audits. This position participates in the evaluation of the adequacy, effectiveness and efficiency of the systems of controls and identifies weakness, along with providing recommendations to mitigate those weaknesses within a technology environment. This position proactively works with management to ensure compliance with policies, laws and regulations.

Manage Execution of Audit Process

Assists in the development of the annual risk assessment and audit plan. • Drafting of the audit program, audit scope, and execution of audit steps, • Performs the drafting of questionnaires, spreadsheets, etc. to assist in analyzing business processes. • Drafting of audit reports to summarize audit findings. • Leads meetings to communicate findings to senior leadership.  • Provides on-going monitoring and reporting of remediation status


Partner with the business on identifying recommendations on risk issues • Takes responsibility for quality of work product • Identifies and shares relevant business and audit topics with the audit group.

Building Relationships

Partners with management to identify constructive and value-added recommendations to address risks identified • Leads meetings for assigned audits • Identifies opportunities for and participates in approved special projects, investigations or other significant business issues.


Wears proper personal protective equipment when appropriate. Observes universal precautions consistently. Wears clothing and Health System badge consistent with dress code, and attends to personal hygiene to maintain a clean, well-groomed appearance. Meets Health System attendance standards. Performs related duties as assigned.

Because you’re committed to excellence, you understand the importance of being properly prepared for your role at Mercy. That’s why you’ll bring to your role the right set of qualifications:

Education and Experience

Four year college degree in Information Systems or Technology related field required
Four to five years IS audit experience, or four to five years technical experience preferred
Professional Certification (CISA, CISSP, CISM) or advanced degree preferred
Healthcare experience preferred
Key Skills and Qualifications
Strong analytical skills, interpersonal, organizational and oral/written communication skills • Self-directed, and able to work independently • Proven ability to meet goals and work at a high performance level • Ability to work within a team environment and interacting with management • Knowledge of ACL, UNIX, Windows, LAN, WAN, Oracle, SQL, SDLC, Firewalls, Routers, COBIT, SOX 404, network security, IT general controls, application and database controls.

To apply for this job please visit