• Senior Information Technology Internal Auditor

    Job ID
    Regular Full-Time
    Fred Hutchinson Cancer Research Center
    Information Technology
  • Overview

    Cures Start Here. At Fred Hutchinson Cancer Research Center, home to three Nobel laureates, interdisciplinary teams of world-renowned scientists seek new and innovative ways to prevent, diagnose and treat cancer, HIV/AIDS and other life-threatening diseases. Fred Hutch’s pioneering work in bone marrow transplantation led to the development of immunotherapy, which harnesses the power of the immune system to treat cancer. An independent, nonprofit research institute based in Seattle, Fred Hutch houses the nation’s first cancer prevention research program, as well as the clinical coordinating center of the Women’s Health Initiative and the international headquarters of the HIV Vaccine Trials Network. Careers Start Here.

    The Senior IT Auditor position provides IT internal audit and controls consulting services for assigned areas as prioritized by the Director Internal Audit per the Annual Audit Plan. A Senior IT Auditor is expected to possess high level skills in IT internal audit techniques and practices, while developing subject matter expertise in certain technical, financial, compliance, or operational areas within Fred Hutch.


    The Senior IT Auditor works under minimal daily supervision and exercises judgment in making non-routine decisions. The auditor demonstrates discretion in all matters related to audit assignments and confidential information, and represents the department professionally in a variety of settings. Responsibilities include:

    • Performs IT audit and consulting projects following Fred Hutch and Institute of Internal Auditor audit practice standards with minimal supervision while keeping management well apprised of audit results and project completion status.
    • Executes technical and complex audit projects, including projects being performed under the direction of legal counsel.
    • Research assigned subject areas to gain an understanding of the risk and control environment and industry practices. Make recommendations to audit director on the audit scope and approach.
    • Analyze audit results considering condition, criteria, cause and effect. Draft audit report and work with management to obtain their action plan to improve controls and mitigate risk to the organization.
    • Monitor open management action plans working closely with client management to assure plans are completed and risk is mitigated in a timely manner.
    • Represent Fred Hutch Internal Audit either directly or as back-up to Director on technology related committees, councils, or initiatives including new systems implementations.
    • Act as primary client contact and risk and control expert for select technical, compliance or operational functions/activities.
    • Prepare and conduct presentations regarding the activities of the Internal Audit department to all levels of the organization, including the board, management, and staff.
    • Work with Office of General Counsel, Research Administration and Information Security on investigations and breaches. Provide analysis of control breakdowns and recommendations for mitigation, as needed.
    • Provide support in the development of the annual audit plan and enterprise risk management assessment including conducting risk assessment interviews with select client leaders.
    • Performs special projects and other duties as assigned.


    Education and Experience:

    • Bachelors of Arts or Sciences in management information systems, computer science, business administration, accounting, finance, or related fields of study is required.
    • Minimum of 7 years of progressive internal/external IT audit experience is required. Healthcare industry or research institution experience preferred.
    • One of the following is required. Other certifications will be considered on a case by case basis. Licenses and certifications must be maintained current.
      • Certified Public Accountant
      • Certified Internal Auditor certification
      • Certified Information Systems Auditor certification
      • Certified Information Systems Security Professional

    Knowledge, Skills and Abilities:

    • Ability to analyze risk based on audit results and understanding of the broader internal and external environment in order to develop and negotiate practical and creative solutions with stakeholders.
    • Strong oral and written communication skills including active listening skills. Comfortable presenting topics and ideas to peers and others within and outside the organization.
    • Understanding of the International Standards for the Professional Practices of Internal Auditing and the Code of Ethics developed by The Institute of Internal Auditors.
    • Understanding of and ability to apply pertinent IT control standards and regulations such as HIPAA/HITECH, ISO 27000, COBIT, and PCI DSS in a healthcare environment.
    • Knowledge of and ability to apply appropriate IT audit tools, as required.
    • Knowledge of IT trends, emerging technologies, and associated risks and how it applies to audit assignments.
    • Commitment to professional growth and understanding of the changing IS and business environment through current events reading, continuing education, self-study, cross- functional training, and work assignment variation.

    Our Commitment to Diversity

    We are committed to cultivating a workplace in which diverse perspectives and experiences are welcomed and respected. We are proud to be an Equal Opportunity and VEVRAA Employer. We do not discriminate on the basis of race, color, religion, creed, ancestry, national origin, sex, age, disability, marital or veteran status, sexual orientation, gender identity, political ideology, or membership in any other legally protected class. We are an Affirmative Action employer. We encourage individuals with diverse backgrounds to apply and desire priority referrals of protected veterans. If due to a disability you need assistance/and or a reasonable accommodation during the application or recruiting process, please send a request to our Employee Services Center at escmail@fredhutch.org or by calling 206-667-4700.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed