• IT Auditor

    Location US-IA-Des Moines
    Job ID
    Internal Audit
    Requires Non-Compete?
  • Job Summary

    What's the role? Reporting to the Director of Internal Audit Services, you will perform IT audit work including audits of complex computer applications and technology solutions. You will accurately assess risk and controls, develop effective test plans, exhibit appropriate judgment regarding issue notification and escalation, draft findings, and final audit reports.


    What does it take? At least four years of audit experience, including at least one year of IT audit, ideally within health insurance or financial services. Ideal candidates possess core knowledge of the technical infrastructure (e.g., applications, databases, operating systems, networks, information security), they value stakeholder relationships, and they’re effective consultants—trusted business partners, inquisitive, effective communicators, and a knack for developing business/financial acumen. (Our industry, after all, is complex!) They’re also go-getters with track records of success and passion for continuous learning.


    Why Wellmark? We’re a mutual insurance company owned by our policy holders across Iowa and South Dakota, and we’ve built our reputation on over 75 years’ worth of trust. We aren’t motivated by profits. We’re motivated by the well-being of our friends, family and neighbors–our members. If you’re passionate about joining an organization working hard to put its members first, to provide best-in-class service, and one that is committed to sustainability and innovation, consider applying today!

    Minimum Qualifications Required (all must be met to be considered)

    • Bachelor’s Degree in accounting, information systems, or a related field.
    • 4+ years of audit experience, including at least 1 year of IT audit experience. Demonstrated knowledge of technical infrastructure.
    • Excellent analytical and critical thinking skills. Ability to recognize the existence of risks/potential risks and determine actions to be taken. Attentive to details.
    • Strong verbal and written communication skills with the ability to concisely communicate audit findings. Group facilitation skills.
    • Strong interpersonal skills with the ability to develop stakeholder relationships of collaboration and trust.
    • Effective time management skills with demonstrated success managing multiple projects. 
    • Understanding of applicable rules, regulations, and guidelines.
    • Proficiency with Microsoft Office.


    Hiring Specifications Preferred

    • Master's Degree
    • Previous experience in the health insurance or financial services industries.
    • Strong technical acumen with deep understanding of IT systems and system implications.
    • Certified Information Security Management (CISM)

    • Certified Information Systems Auditor (CISA)

    • Certified Information Systems Security Professional (CISSP)

    • Certified Internal Auditor (CIA)

    • Certified Public Accountant (CPA)


    Job Accountabilities

    a. Responsible for the identification and assessment of Wellmark’s information systems and related procedures; including technology implementations and deployed controls. Document, evaluate and test information technology general controls and related business controls. Will develop basic audit programs that test the level to which such risk has been addressed in the area audited.

    b. Execute the audit process (e.g. perform detail testing and analysis) on a wide variety of computing environments. Create clear and accurate work paper documentation as well as testing results and exceptions in such a manner that other reviewers can follow the auditor’s logic, methodology and conclusions.

    c. Independently apply internal control concepts in information technology to collect and analyze data to detect deficient controls, duplicated effort, inefficiencies, fraud, or non-compliance with laws, regulations and management policies.

    d. Prepare and present formal oral and written reports on audit findings. Formulate recommendations which are appropriate, practical, and cost effective. Participate in exit conferences as appropriate and follow-up to ensure issues are resolved.

    e. Demonstrate strong business acumen, contribute to the technical understanding and adoption of technology control standards, solutions and tools, through collaboration and education with business stakeholders. Work with financial/operational auditors to appropriately address and assess key technology risks.

    f. Maintain and continually improve understanding of Wellmark’s information technology environment including compliance with laws and regulations, new products and services offered by Wellmark, organization structure, corporate policies, and Wellmark’s strategic direction.

    g. Provide assistance to external auditors during their interim and/or year-end audit. Test controls for the WellSOX program as well as the Service Organization Control (SOC) report to ensure controls are operating effectively. Abide by the Standards for the Professional Practice of Internal Auditing.

    h. Participate in reviews of major technology applications and/or infrastructure components with minimal supervision demonstrating an ability to fully grasp technical concepts quickly.

    i. Maintain a current understanding of emerging trends and risks associated with changes and increased sophistication in technology. Provide guidance to team members on information technology and business issues, as needed.

    j. Other duties as assigned.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed