Information Protection Senior Analyst - HIH - Evernorth

ABOUT EVERNORTH: 

Evernorth℠ exists to elevate health for all, because we believe health is the starting point for human potential and progress. As champions for affordable, predictable and simple health care,
we solve the problems others don’t, won’t or can’t. 

Our innovation hub in India will allow us to work with the right talent, expand our global footprint, improve our competitive stance, and better deliver on our promises to stakeholders. We are passionate about making healthcare better by delivering world-class solutions that make a real difference.

We are always looking upward. And that starts with finding the right talent to help us get there.

Position Overview

At Evernorth, we’re more than a health insurance company. We’re a global health service company. Identity and Access Management is an integral part of IT whose mission is to enforce the principle of Least Privilege through regular Reviews and other Technical Access Controls while preserving Compliance for testing by external auditors.

Help us audit our future and reduce risk through proactive control monitoring and audit readiness. Get ready for a job that encourages you to think strategically yet stay connected with your teams. Do you have GRC, Audit and Data Analytics experience? The Identity Audit and Controls Analyst will be responsible for the design, development, and delivery of the enterprise Access Control audit evidence. Access controls are operated to enforce the principle of Least Privilege and meet stringent regulatory requirements. These controls are tested by external auditors for accuracy and completeness which requires flawless and consistent execution with compelling documentation.

Responsibilities

As Identity Audit and Control Analyst, you will be responsible for facilitating control gap identification, risk remediation, and proactive control monitoring. Responsibilities include, but are not limited to, the following:

• Deliver and present control evidence to internal and external auditors.
• Contribute to the planning and exertion of Audit findings remediation.
• Control evidence quality analysis.
• Work among various teams within the Identity and Access Management (IAM) department to validate, analyze and articulate user access controls.
• Develop automated capabilities that support control monitoring, evidence gathering and reporting.
• Ensure effective testing of all IAM controls, as well as provide timely accurate reporting of the results.

Qualifications

• Experience as an Internal Auditor is preferred
• Proficiency in scripting and programming languages (e.g., Python, Java, PowerShell, SQL, etc.) is preferred
• Hands-on experience with Identity Governance tools such as Saviynt, Aveksa, or Active Directory preferred
• Experience in data analytics and/or data mining
• Proficiency in Excel
• Basic experience working in the fields of Identity and Access Management and Privileged Access Management
• Effective verbal and written communication skills for working with both technical teams and business end users
• Ability to adapt in a dynamic work environment by learning quickly, solving problems, and making decisions with minimal supervision
• Proficient in developing project metrics, including gathering reporting, trend analysis, creation and metrics
• Ability to identify issues and problems, generate solutions and choose appropriate alternatives using basic root cause analysis
• Understanding of information risk management concepts and proven ability to meet strict audit deadlines
• Demonstrated ability to coordinate people and teams cross functionally to resolve complex issues with designated time frames
• Proactive and positive mindset
• Experience with compliance frameworks such as SOX, SOC1, SOC2, PCI, NIST, and HIPAA preferred
• CPA, CISA, or CISSP preferred

Required Experience and Education:

• 3 – 5 years of Governance, Risk, Compliance experience required.

• Bachelor's degree in computer science, Cyber Security, Risk Management, Information Technology, Information Sciences, or equivalent educational or professional experience and/or qualifications preferred.

Desired Experience

• Proficiency in scripting and programming languages (e.g.,Python, Java, PowerShell etc).

• Proficiency in Excel

Equal Opportunity Statement

• Evernorth is an Equal Opportunity Employer actively encouraging and supporting organization-wide involvement of staff in diversity, equity, and inclusion efforts to educate, inform and advance both internal practices and external work with diverse client populations.

About Evernorth Health Services

Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.