Summary:
The Sr. Director is a key leadership position within the Office of Internal Audit at Rochester Regional Health (RRH). Working under the direction of the SVP, Chief Audit Executive and in partnership with other senior leaders across the RRH system, the Senior Director, Internal Audit oversees the Internal Audit program, serving as an independent and objective function that evaluates internal controls, identifies organizational risks, and ensures compliance with regulatory standards. This strategic leadership role is responsible for safeguarding the integrity of financial reporting, enhancing operational efficiency, and promoting ethical conduct across the health system.
Through comprehensive risk assessment, strategic audit planning, and close collaboration with senior stakeholders, the Senior Director of Internal Audit plays a pivotal role in strengthening Rochester Regional Health’s internal governance framework. This position ensures organizational compliance with applicable laws, regulations, and internal policies, while also supporting the Audit & Compliance Committee of the Board of Directors and executive leadership with transparent reporting and actionable insights that promote continuous improvement
.
The Office of Internal Audit is dedicated to advancing Rochester Regional Health’s strategic and operational goals by employing a disciplined, systematic approach to evaluate and enhance the effectiveness of risk management, internal controls, and governance processes. Operating as an independent and objective resource, the office provides critical assurance and guidance to both leadership and the Board. It also serves as a confidential final channel for individuals to raise concerns when other formal reporting mechanisms have been exhausted, reinforcing the organization’s commitment to ethical conduct, accountability, and transparency.
Responsibilities:
Strategic Leadership, Policy Oversight & Governance
• Lead the development and execution of a comprehensive internal audit strategy aligned with organizational goals.
• Strengthen internal governance by evaluating risk management, control frameworks, and compliance practices.
• Serve as a trusted advisor to executive leadership and the Audit & Compliance Committee of the Board.
• Promote a culture of ethical behavior and compliance with the organization’s Standards of Conduct
• Ensure adherence to System policies, procedures, and regulatory requirements.
• Develops, initiates, maintains, and revises policies and procedures for the Internal Audit Program, ensuring alignment with legal, ethical, and organizational standards.
• Collaborates cross-functionally with departments such as Legal, Risk Management, Finance, and People Resources to direct audit issues to appropriate channels for investigation and resolution.
• Stay current with healthcare regulations, industry trends, and best practices in internal auditing.
Risk Assessment & Audit Plan Execution
• Conduct enterprise-wide risk assessments to identify and prioritize areas of concern and develop a comprehensive audit plan aligned with organizational priorities
• Develop and manage annual audit plans that address high-risk areas and regulatory requirements.
• Ensure audits are executed efficiently, with clear objectives and actionable outcomes.
• Oversee the design, implementation, and execution of the annual Internal Audit Program.
• Monitors the performance of the Internal Audit Plan and takes steps to improve effectiveness.
• Collaborate with external auditors, regulators, and internal stakeholders to support audit activities
• Periodically communicates the status and results of the annual audit plan, including an assessment of departmental resource sufficiency.
Reporting & Communication
• Deliver transparent, timely reports to senior leadership and the Audit & Compliance Committee, highlighting key findings and recommendations.
• Translate complex audit results into strategic insights that support decision-making and continuous improvement.
• Coordinates audit activities across departments to monitor trends and ensure alignment while maintaining open lines of communication with stakeholders across departments to foster collaboration and accountability.
• Provides regular reports to the Audit & Compliance Committee and senior management on the operation and progress of audit recommendations, management’s response and the overall status of findings.
Leadership & Resource Management & Development
• Recruit, mentor, and develop a high-performing team of internal audit professionals, fostering a culture of excellence and continuous learning.
• Foster a culture of integrity, accountability, and transparency
• Promote cross-functional collaboration and knowledge sharing
• Serve as a trusted advisor to executive leadership on matters of risk and governance
• Provide mentorship, training, and professional development opportunities to internal audit staff.
• Works with Learning and Development and other departments to develop and deliver audit training programs for new and existing team members.
• Ensure the team remains current on best practices, emerging risks, and regulatory changes.
Reporting Relationship:
• Reports directly to the Senior Vice President, Chief Audit, Compliance and Privacy Officer of Rochester Regional Health System.
• Directly supervises Internal Audit staff along with the Manager, Internal Audit
• Works collaboratively with the executive leadership at all RRH entities to execute strategic objectives toward achieving national/ regional leader performance.
Required Qualifications:
• Bachelor’s degree in Accounting, Finance, Business Administration or a related field is required.
• 7–10 years of progressive internal audit experience, with at least 3–5 years in a leadership role.
Required Licensure/Certification:
One or more of the following certifications are required:
• Certified Internal Auditor (CIA)
• Certified Public Accountant (CPA)
• Certified Fraud Examiner (CFE)
• Certified Information Systems Auditor (CISA)
Preferred Qualifications:
• Masters is preferred (e.g. MBA, MHA)
• Prior experience in healthcare auditing is highly desirable, including familiarity with hospital operations, revenue cycle, and regulatory compliance.
• Familiarity with healthcare-specific compliance standards (e.g., HIPAA, CMS, Joint Commission).
• Knowledge of frameworks like COSO and IIA’s Professional Practice Framework
• Demonstrated proficiency in internal controls, risk assessment methodologies, and data analytics.
• Visionary thinking to align audit strategy with organizational goals: Ability to anticipate emerging risks and adapt audit plans accordingly.
• Comfortable leading through change in dynamic healthcare environments.
• Strong interpersonal skills to build trust and credibility with executives, board members, and department leaders.
• Ability to work collaboratively with all levels of staff and adapt to changing healthcare environments.
• Ability to communicate complex findings clearly and persuasively, both in writing and presentations.
• Demonstrated skills and experience in process improvement methodologies, project management and team building.
• High level of meeting management, computer, teaching and training, organization and time management,
• High level of leadership/facilitation skills; Skilled at navigating sensitive issues and promoting collaboration across departments.
• Ability to analyze complex data and systems to uncover inefficiencies or risks; Applies critical thinking to develop actionable recommendations that drive improvement.
• Embraces new technologies and methodologies to enhance audit effectiveness, High level of proficiency in audit software tools, plus Microsoft Office Suite.
EDUCATION:
BS: Accounting, BS: Business Administration, BS: Finance, MBA: Business AdministrationLICENSES / CERTIFICATIONS:
CISA - Certified Information Systems Auditor - ISACA, CPA - Certified Public Accountant - American Institute of CPAs (AICPA)PHYSICAL REQUIREMENTS:
S - Sedentary Work - Exerting up to 10 pounds of force occasionally Sedentary work involves sitting most of the time, but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.For disease specific care programs refer to the program specific requirements of the department for further specifications on experience and educational expectations, including continuing education requirements.
Any physical requirements reported by a prospective employee and/or employee’s physician or delegate will be considered for accommodations.
PAY RANGE:
$140,000.00 - $180,000.00CITY:
POSTAL CODE:
The listed base pay range is a good faith representation of current potential base pay for a successful full time applicant. It may be modified in the future and eligible for additional pay components. Pay is determined by factors including experience, relevant qualifications, specialty, internal equity, location, and contracts.
Rochester Regional Health is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity or expression, national origin, age, disability, predisposing genetic characteristics, marital or familial status, military or veteran status, citizenship or immigration status, or any other characteristic protected by federal, state, or local law.