IT Audit Advisor

Internal Audit helps colleagues identify and evaluate risks and internal controls to better deliver on our mission - together. With a systematic and disciplined approach, Internal Audit improves the effectiveness of risk management, controls, and governance processes.

This position can be located in Madrid or Glasgow with a hybrid in-office/work from home arrangement.

Cigna seeks an experienced information technology (IT) auditor to join its Internal Audit team, supporting the company’s rapidly evolving technology strategy. The role offers exposure to key stakeholders driving technology initiatives, fostering individual and team development through training, coaching, and career advancement opportunities. Professional growth is encouraged, with support for relevant certifications and memberships.

• Audit Planning: Collaborate with audit team members and management to plan audits aligned with organizational priorities and risk areas. Independently survey functions and activities in assigned areas under review.
• Execution: Conduct risk and control reviews, analyze data, evaluate evidence, and provide informed opinions on control effectiveness.
• Reporting & Recommendations: Present findings to management, recommend corrective actions, and suggest best practices for improvement.
• Remediation Monitoring: Monitor ongoing remediation efforts, update corrective action plans, and address escalated issues.
• Relationship Management: Network with organizational stakeholders to build and maintain effective working relationships.
• Special Projects: Engage in additional assignments as needed.

• Educational Background: BS in Computer Information Systems, Information Technology, or related fields.
• Professional Experience: Minimum 5, with 7 years or more preferred, in internal or external IT auditing, with at least 2 years as a senior/in-charge IT auditor.
• Certifications: CISA, CISM, CRISC, CGEIT, CISSP, CIA, or equivalent.
• Technical Skills: Expertise in IT systems (Cloud, mainframe, client/server platforms) and proficiency with Microsoft Office, data analytics tools (e.g., ACL), and dashboards (e.g., Tableau, PowerBI).
• Frameworks & Standards: Knowledge of COSO, COBIT, Sarbanes-Oxley, and IT/Cybersecurity standards like NIST, ISO 27001, CIS Controls.
• Healthcare Industry Knowledge: Preferred experience with healthcare systems and regulations.

• Effective communication and presentation skills with high attention to quality.
• Ability to build relationships and collaborate across departments.
• Knowledge of IT stack layers (network, operating system, database, applications) and automated business controls.
• Performing control effectiveness reviews for large, corporate-wide system implementations or projects, with a focus on the system development life cycle (SDLC).
• Capacity to handle sensitive information professionally and meet deadlines under pressure.

Cigna Healthcare, a division of The Cigna Group, is an advocate for better health through every stage of life. We guide our customers through the health care system, empowering them with the information and insight they need to make the best choices for improving their health and vitality. Join us in driving growth and improving lives.

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: SeeYourselfEMEA@cigna.com for support.