Internal Audit Analyst

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together.

The position is for SG25 IT Auditor within Internal Audit & Advisory Services-India Team. The candidate is expected to contribute to ongoing and new ITGC, SOX-404, and specialized Information Systems and IT related Audits & Advisory projects related to Internal Controls over Financial Reporting, Risk Assessments and technology focused Audits.

Position in this function perform and administer IT audits to ensure the existence of and adherence to the established IT controls of a particular portion of the organization’s operations. Determine consistency with organization’s objectives and standards through various verification procedures and methods. Ensures all regulatory compliance requirements are met, including Sarbanes-Oxley (SOX).  Support SOX compliance processes by planning and providing employee training on IT-SOX awareness programs.

Primary Responsibilities:

The candidate will be accountable for supporting the execution of the annual audit plan for UnitedHealth Group and its family of companies. This position will be part of UHG Internal Audit & Advisory Services-India Team. She/he will provide support to the various Internal Controls over Financial Reporting (ICFR) compliance and control initiatives including Sarbanes-Oxley (SOX), Companies Act – IFC Implementation related to ITGC. She/he will also be responsible to conduct IT Risk Assessments for Business and IT Processes and conduct IS and IT Audits.

• Assist in the preparation of audit planning documentation for all assigned audits
• Lead the IT Audit Walkthroughs independently
• Perform Test of Design and Test of Operating Effectiveness for the IT-GCC Controls
• Perform detailed audit procedures and testing, prepare documentation on the audit performed
• Perform testing on different application environment i.e. Mainframe & Distributed
• Perform various Physical and Datacenter Audits
• Perform SOX-404 ITGC testing for different UHG corporate, Optum, and UHC segments
• Build relationships with other Audit Firm(EY & DT)
• Prepare clear, accurate and complete work-papers in accordance with department quality standards; meet project timelines and deliverable due dates
• Build, implement and Test ITGC framework for India legal entities of the group
• Develop knowledge of control assessment frameworks and an awareness of the overall control environment
• Follow up on and tracking of Remediation plans for testing till closure
• Support Business Audit/ICFR testing projects during down-time(availability)
• Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so

Required Qualifications:

• Masters or Bachelors in Science/Technology
• 4+ years of IT Audit, GCC Testing, SOX-404 or related experience
• Hands on experience in conducting IT Audits on areas – Mainframe, distributed, operating systems/platforms, Mobile computing, cloud, big-data etc.
• Hands-on experience with e-GRC applications
• Sound knowledge of IT processes and associated IT-Risk and Controls – SDLC, Operations – Back-up and Restore, Job scheduling and Batch processing, Quality Assurance, Testing – User Acceptance, System Testing, Logical Security related to mainframes/web-based applications, application architecture etc.
• Proven solid interpersonal skills and the ability to coordinate with various departments – Risk mgmt., Finance, Technology Services-Architecture, Testing, Development, Legal etc. and to maintain healthy working relationships.
• Proven solid verbal & written communication skills, exp. in preparing dashboards, audit documentation, Status/Summary reports
• Proven sound MS-Excel, PowerPoint and MS-Visio skills, ability to work on huge technology data sets
• Proven good Analytical, problem-solving skills and project management skills
• Proven ability to influence and communicate across levels of management
• Proven to make a positive impact with the ability to manage multiple tasks and shift priorities
• Proven exposure towards managing International clients/customers

Preferred Qualifications:

• Certification in Audit, Risk Management or related discipline – CISA, CIA, CPA, CRISC, ISO etc.
• IT-GCC Testing and Audit experience for complex applications used in health care/insurance
• Knowledge of Risk and Control frameworks – COSO, COBIT etc.

Value bases competencies

• Integrity: Demonstrated modeling of ethical behavior; holding team members accountable for integrity and ethical behavior
• Compassion: Ability to deliver value to customers,  Maximize Customer Growth and Retention, Optimize the customer experience
• Relationships: Drive emp. engagement, Foster teamwork & collaboration, Learn and develop self, Communicate with impact, Influence and negotiate, Listen actively, Present effectively
• Innovation: Ability to lead change and innovation, demonstrate emotional resilience, Implement innovative solutions, manage change
• Performance: Demonstrated ability to drive sound, disciplined decisions, Make decisions to drive action, ability to drive high-quality execution, drive operational excellence

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes – an enterprise priority reflected in our mission.