Information Systems Auditor III

Job ID
# Positions
Posted Date
3 weeks ago
Information Technology


With a mantra of Empowering Human Potential, Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering the most advanced O&P solutions, clinically differentiated programs and unsurpassed customer service. Hanger's Patient Care segment is the largest owner and operator of O&P patient care clinics nationwide. Through its Products & Services segment, Hanger distributes branded and private label O&P devices, products and components, and provides rehabilitative solutions to the broader market. Built on the legacy of James Edward Hanger, the first amputee of the American Civil War, Hanger is steeped in 150 years of clinical excellence and innovation with a vision to be the partner of choice for products and services that enhance human physical capability. Collectively, Hanger employees touch thousands of lives each day, helping people achieve new levels of mobility and freedom. Hanger, Inc. is an equal opportunity employer - female/minority/disability/vet.




As our Information Systems Auditor III, you will be identifying risks within the Company’s threat landscape and evaluating and implementing tools and processes to remediate them. Serving as a member of the IT Risk Team reporting directly to the Chief Information Security Officer (CISO), you will actively conduct internal information technology system audits, risk assessments, and control gap analysis work.  You will additionally have the opportunity to develop and implement audit and control mechanism to monitor IT production environments for potential system integrity exposure and control weaknesses.


  • Providing compliance advocacy and support throughout the organization, working closely with middle to senior-level management and cross-functional work groups comprised of analysts, project managers, developers, and business stakeholders
  • Identifying and documenting financial operational, and regulatory compliance risks
  • Communicating recommendations for corrective actions to senior leadership
  • Evaluating complex information systems and controls applications, business control processes, change control and program governance procedures, security, networks, and computer and data center operations, and
  • Providing support for Sarbanes-Oxley (SOX), HIPAA and PCI compliance


  • Bachelor’s degree from an accredited college or university with a minimum of four (4) years of progressive IT experience to include at least two (2) years of handling compliance issues around Sarbanes-Oxley, PCI, and/or HIPAA privacy issues for IT –OR-a high school diploma with a minimum of eight (8) years progressive IT experience to include at least two (2) years of handling compliance issues around Sarbanes-Oxley, PCI, and/or HIPAA privacy issues for IT is required.
  • Proficiency in performing audits, responding to audits, and facilitating IT's compliance activities with internal and external auditors
  • In-depth knowledge of and experience in managing full life-cycle of control remediation projects directed at bringing previously non-compliant business units or subsidiaries into full compliance
  • Strong and actionable understanding of control overlap between multi-regulatory requirements and governance frameworks and the ability to tie and streamline these controls to a single policy, standard, procedure, or guideline
  • Strong planning, communication, negotiation, leadership, and relationship-building skills
  • Health-care or other government regulated industry experience desired
  • Experience in developing an ISO 27000 ISMS desired
  • ISACA certification is beneficial
  • CISSP and/or technical security certification beneficial



Hanger, Inc. is committed to providing equal employment opportunity in all aspects of the employer-employee relationship. All conditions and privileges of employment are administered to all employees without discrimination or harassment because of race, religious creed, color, age, sex, sexual orientation, gender identity, national origin, religion, marital status, medical condition, physical or mental disability, military service, pregnancy, childbirth and related medical conditions, special disabled veteran status, or any other classification protected by federal, state, and local laws and ordinances. The Company will comply fully with all applicable state or local fair employment laws that forbid discrimination or harassment on the basis of other protected characteristics. Retaliation against any employee for filing or supporting a complaint of discrimination or harassment is prohibited.​​


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed