This site uses cookies. To find out more, see our Cookies Policy

Senior Internal Auditor, Security Governance and Compliance in Chicago, IL at Anthem, Inc.

Date Posted: 3/14/2018

Job Snapshot

Job Description

Senior Internal Auditor, Security Governance and Compliance

Our mission: to reinvent healthcare in America to make it safer, cost effective and more appropriate.  To make this possible, we need talented people like you to help us support innovation and ‘speed-to-market’ in our solutions and allow no barriers from technology.  Working while having fun, you will grow and use your talents in ways you never thought possible.

We are AIM Specialty Health (AIM), a proud member of the Anthem family of companies, and we are looking for technology professionals who are looking to grow their talent and career while helping make a real difference in people’s lives.

AIM’s Security Governance team is responsible for ensuring AIM’s security program complies with the legislative, regulatory, contractual and organizational requirements directly applicable to its role as a Business Associate in the healthcare industry. We are looking for a Senior Internal Auditor to help demonstrate AIM remains compliant with the industry’s most stringent security certifications including ISO 27001:2013, HITRUST CSF, SOC 2, etc. This position reports directly to AIM’s VP, Security Governance and will have considerable input to AIM’s security compliance and audit programs.


  • Ensures stability and compliance with audit and regulatory requirements/mandates. 
  • Mentors analysts and auditors in performing compliance audits. 

  • Performs interviews and asks questions to gather necessary to perform reviews and audits.

  • Researches complex business and technical processes.

  • Assesses risk of IT systems, operational processes and cybersecurity controls and operations.

  • Suggests process improvements through consultation with operations and IT staff. 

  • Creates tools to gather and retain information with ease to support audit team. 

  • Produces engagement plans, assessment plans, documents findings, and defines appropriate remediation actions. 

  • Leads and executes engagement plan objectives. 

  • Provides formal status and reporting metrics for AIM’s IT Leadership and Senior Management Groups and external entities.

  • Resolves conflict and escalates issues when appropriate.

About AIM Specialty Health

AIM Specialty Health is a leading specialty benefit management company with more than 20 years of experience and a growing presence in the management of radiology, cardiology, oncology, sleep medicine, and specialty pharmacy benefits. Our mission is to make healthcare services more clinically appropriate, safe and more affordable. As such, we promote the most appropriate use of specialty care services through the application of widely accepted clinical guidelines delivered via an innovative platform of technologies and services. With over 32 million members covered across 50 states, AIM ensures delivery of the right test at the right time in the right place.

We maintain offices in Chicago, Deerfield, Schaumburg and Westchester, IL as well as Glendale, CA.

AIM’s services include:

  • Prospective clinical review of outpatient advanced imaging procedures such as CT, MRI, Nuclear Cardiology and PET ScansClinical review for cardiology and specialty pharmacology products and services
  • Oncology Management programs leveraging AIM’s proven specialty benefit platform to drive consistent and effective cancer care through services review along with management of close to 70 oncologic drugs

  • Specialty Drug programs to provide review for over 142 specialty drugs offering providers an automated drug review process through our provider friendly web portal

  • Sleep Management, designed to align the diagnosis and treatment of sleep apnea against clinical guidelines, enhance member access to high value providers and ensure treatment compliance for the dispensing of supplies

Our programs combine clinical excellence, its innovative technology and a commitment to customer service, ensuring the company’s on-going leadership in the rapidly evolving healthcare environment.

AIM is certified by the National Committee for Quality Assurance (NCQA) and has received Full Accreditation for Health Utilization Management from the Utilization Review Accreditation Commission (URAC).


Job Requirements

Qualified candidates will have:

  • Bachelor’s Degree strongly preferred
  • Five to eight years of experience in IT/security audit; or any combination of education and experience, which would provide an equivalent background. 

  • Proficient understanding of - and experience with - audit and regulatory requirements and standards (ISO 27001, HITRUST CSF, SOC 2 ) and other related standards and certification processes required.

  • Security or audit related certifications such as CISSP, CISA, CISM, CIA strongly desired.

  • Must be able to work in a fast-paced environment and comfortable working across multiple teams and business units.

  • Strong written and verbal communication skills required. 

  • Excellent time management skills, including the ability to multitask across several large initiatives or projects.

  • Able to communicate complex technical concepts effectively and concisely with all levels in a clear and professional manner, verbally and written.

  • Healthcare experience a plus