Internal Controls Consulting, Principal

Your Role The Internal Controls Advisory Services (ICAS) team supports Blue Shield of California in strengthening enterprise-wide internal controls, risk management, and governance practices across business and technology functions. The Principal will report to the Director, ICAS and play a critical role in driving a strong and sustainable control environment. This role goes beyond execution, owning complex initiatives, influencing senior stakeholders, and shaping how controls evolve in a changing risk landscape (including AI-enabled processes). You will operate with high autonomy, bring a point of view, and help translate risk and controls into practical, business-friendly solutions. Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning. Your Knowledge and Experience Requires a Bachelor's degree or equivalent experience Requires a minimum of 10 years of experience in internal audit, internal controls, risk advisory, or related field Strong understanding of internal control frameworks and risk assessment methodologies Experience leading complex, cross-functional engagements Demonstrated ability to work independently and drive outcomes with minimal supervision CPA, CIA, CISA or equivalent certifications

Prefer:

Healthcare experience (e.g., Medi-Cal, Medicare) Your Work In this role, you will: Lead complex internal controls advisory engagements across the organization Drive end-to-end control assessments, including risk identification, scoping, testing strategy, and reporting Identify control gaps, root causes, and sustainable solutions - not just observations Provide clear, actionable recommendations that balance risk mitigation with business practicality Contribute to and help shape the ICAS work plan and risk coverage strategy Evaluate emerging risks (operational, regulatory, financial, privacy etc.) and proactively adjust control focus Support enterprise initiatives (e.g., system implementations, transformations, AI adoption) from a controls perspective Demonstrate strong working familiarity with AI and automation concepts, and how they are transforming business processes and control environments Act as a translator between business, technology, and risk, helping teams understand how their roles, processes, and controls evolve in an AI-enabled environment Partner with stakeholders to embed controls and governance into AI-enabled processes, balancing innovation with appropriate risk management Promote a mindset of experimentation and continuous learning, helping teams evolve as AI capabilities expand across the enterprise Build strong relationships with business leaders and act as a trusted advisor Influence to drive timely remediation and accountability Communicate complex control issues in simple, business-relevant language (written and verbal) Prepare and deliver clear, concise reports for senior leadership on control effectiveness and risks Highlight themes, trends, and systemic risks, not just individual issues Provide forward-looking insights, not just backward-looking assessments