Cyber Audit Manager, Bureau of Audit Services

The nation’s leading public health agency, The New York City Department of Health and Mental Hygiene (DOHMH) is seeking a Cyber Audit Manager to join DOHMH’s Bureau of Audit Services, the internal audit function for DOHMH. The Cyber Audit Manager will supervise a team of IT audit and data analysis team and will report to the Assistant Commissioner for Audit Service and Medicaid Compliance Officer, who reports to the Chief Operating Officer/Executive Deputy Commissioner. The Bureau of Audit Services plays a leading role in risk-based assessments of the Department’s operational efficiencies, control effectiveness and compliance with federal laws, such as the Health Insurance Portability and Accountability Act (HIPAA), New York State’s Code of Rules and Regulations, New York City’s Administrative and Health codes and Comptroller directives.

Duties

–Develop and implement a technology risk assessment process that is designed to identify, trend, evaluate and report on the top technology and Cyber security vulnerabilities across DOHMH.

–Analyze and evaluate risks and controls relevant to cyber security including, identity and access security, web applications security, mobile applications, data sharing, third-party providers etc. and provide risk reduction recommendations.

–Perform system control audits, general control reviews and integrated audits.

–Assess Department’s compliance with HIPAA Privacy and Security laws, evaluate Department’s Cybersecurity governance, policies and procedures against NIST, applicable regulatory and citywide standards. Recommend solutions to control weaknesses and to policies and procedures.

–Develop written reports of IT and business risks, control descriptions, findings and recommendations.

–Manager, supervise and mentor the Cyber audit staff.

–Maintain on going and open communication with the Department’s IT leadership.

–Validate the implementation of corrective actions.

–Research and stay up to date on Cyber security risk management and relevant audit concepts and methods.

If you have a foreign education evaluation which indicates the equivalency of your degree to one in the united states, please indicate the education equivalency on your resume and include the name of the foreign education service too. If it is from an acceptable service and you are selected, you will be required to provide the original hard copy of the foreign education evaluation when processed.

A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,

Education and/or experience which is equivalent to “1” above.