Internal Controls Manager

About the role

Point32Health is a leading not-for-profit health and well-being organization dedicated to delivering high-quality, affordable healthcare. Serving nearly 2 million members, Point32Health builds on the legacy of Harvard Pilgrim Health Care and Tufts Health Plan to provide access to care and empower healthier lives for everyone. Our culture revolves around being a community of care and having shared values that guide our behaviors and decisions. We've had a long-standing commitment to inclusion and equal healthcare access and outcomes, regardless of background; it's at the core of who we are. We value the rich mix of backgrounds, perspectives, and experiences of all of our colleagues, which helps us to provide service with empathy and better understand and meet the needs of the communities where we serve, live, and work. We enjoy the important work we do every day in service to our members, partners, colleagues and communities. Learn more about who we are at Point32Health . Job Summary The Internal Controls Manager reports to the Audit Senior Manager and is responsible for aiding in the evaluation, execution, maintenance, and continuous improvement of the organization's Model Audit Rule (MAR) and Service Organization Control (SOC) reporting programs. This role serves as a key control advisor and partner to Finance, IT, Operations, and Compliance ensuring control integrity, audit readiness, and alignment with regulatory and customer assurance control expectations. The Internal Controls Manager also partners with external auditors and regulators ensuring alignment with regulatory and customer expectations. Job Description Key Responsibilities/Duties - what you will be doing (top five): Oversee the delivery of Model Audit Rule and SOC program activities including the creation and/or maintanence of process documentation, execution of walk-throughs, testing and reporting. Coordinate management's risk assessment of internal control over financial reporting (ICFR) in accordance with MAR requirements. Maintain and enhance MAR control frameworks, process narratives, risk and control matrices (RCMs), and testing protocols. Manage the annual SOC examination lifecycle, including scope definition, controls mapping to relevant control objectives, and overall organization readiness activities. Review and validate SOC deliverables including the updating of SOC report(s), coordination and monitoring of external auditors as part of walk-through, testing and reporting activities Track and manage MAR and SOC deficiencies, including root cause analysis, remediation plans, and validation of corrective actions Serve as the primary liaison with management and external auditors on MAR and SOC related inquiries testing, and overall project management activities Monitor changes in MARand SOC standards and assess program and organizational impact. Direct, oversee and provide performance and development feedback to audit staff assigned to MAR and SOC actvities. Communicate with Audit Plan Managers about budget, timelines and current status of the MAR and SOC activities to ensure timely execution of deliverables. Qualifications - what you need to perform the job Education, Certification and Licensure Bachelor's degree, advanced degree preferred Certified Public Accountant (CPA) or Certified Internal Auditor (CIA) certification is preferred Experience (minimum years required): 5+ years of progressive of audit experience preferably including Model Audit Rule/SOX 404 and SOC reporting. Knowledge of insurance operations, preferrably healthcare insurance Auditing sampling and internal controls testing methodologies Knowledge of AuditBoard or equivalent audit management platform Skill Requirements Proficient understanding of SOX frameworks including Model Audit Rule/ICFR and SOC Reporting Excellent written and verbal communication skills Strong teamwork skills and the ability to work with a diverse group of people Self-motivated and ability to work independently with little supervision Detail oriented with organizational skills Time management skills and the ability to complete multiple projects simultaneously and in a timely manner Analytical and critical thinking skills Data analytics experience preferred Working Conditions and Additional Requirements (include special requirements, e.g., lifting, travel): The position will include working within a hybrid work arrangement with a commitment of two office days. Must be able to work under normal office conditions and work from home as required. Work may require simultaneous use of a telephone/headset and PC/keyboard and sitting for extended durations. May be required to work additional hours beyond standard work schedule during peak hours. Limited travel may be required. Disclaimer The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list