Hi, we’re Gravie. Our mission is to improve the way people purchase and access healthcare through innovative, consumer-centric health benefit solutions that people can actually use. Our industry-changing products and services are developed and delivered by a diverse group of unique people. We encourage you to be your authentic self - we like you that way.
A Little More About the Role:
We are seeking an experienced Audit Manager to lead and oversee the planning, execution, and reporting of internal and external audits, including System and Organization Controls (SOC) audits, develop and execute annual internal audit plans, facilitate the annual enterprise risk assessment, ensure corrective action plans are implemented and effective, and report findings and outcomes to leadership. The Audit Manager will bridge regulatory requirements and industry standard practices with practical health plan operations, ensuring quality and effectiveness through data-driven reviews and strategic improvements.
The ideal candidate brings deep expertise in internal auditing standards and SOC frameworks, particularly as they relate to the healthcare industry.
You will:
Internal and External Audit Support
● Coordinate and lead all internal and external audits, including SOC 1, SOC 2, and critical healthcare regulatory audits (e.g., CMS, HIPAA, state Department of Insurance).
● Facilitate timely and effective fulfillment of complex audit requests, acting as the primary liaison between auditors and internal stakeholders.
● Oversee the development, implementation, and rigorous execution of remediation and corrective action plans to address audit findings.
● Report audit progress, findings, and outcomes to senior leadership and relevant committees.
Health Plan Specific Audit Focus
● Develop and execute a risk-based internal audit plan with a strong focus on core health plan operations such as claims processing, provider data management, member enrollment/eligibility, and payment integrity.
● Ensure adherence to state and federal healthcare regulations (including the Affordable Care Act, CMS requirements, DOL requirements, and specific state mandates) across all audited functions.
● Conduct operational audits to evaluate the design and operating effectiveness of key business processes within the health plan.
Enterprise Risk Assessment
● At the direction of the General Counsel, facilitate the annual enterprise risk assessment and subsequent quarterly updates, focusing on risks unique to the highly-regulated healthcare industry.
● Drive accountability for the development and execution of corrective action plans stemming from risk assessments.
● Maintain detailed, organized documentation on audit outcomes, risk mitigation activities, and follow-up actions.
● Provide regular, insightful progress reports to leadership on risk exposure and audit status.
You bring:
● Bachelor's degree or equivalent work experience
● 7+ years of experience in a highly regulated industry such as healthcare or finance, and demonstrated familiarity with regulatory compliance
● Experience in internal audit and risk management
● Strong analytical skills and ability to interpret complex regulatory requirements
● Proven ability to work independently and prioritize multiple competing demands
● Strong project management and organizational skills
Extra credit:
● In-depth knowledge of SOC 1 and SOC 2 controls
● Experience designing and implementing internal audit and enterprise risk management programs
● Certified Internal Auditor (CIA) certification
● Health plan experience
Gravie:
In order to transform health insurance and build a health plan everyone can love, we need talented people doing amazing work. In exchange, we offer a great overall employee experience with opportunities for career growth, meaningful mission-driven work, and an above average total rewards package.
The salary range for this position is $107,250- $178,750 annually. Numerous factors including, but not limited to, educations, skills, work experience, certifications, etc. will be considered when determining compensation.
Our unique benefits program is the gravy, i.e., the special sauce that sets our compensation package apart. In addition to standard health and wellness benefits, Gravie’s package includes alternative medicine coverage, flexible PTO, up to 16 weeks paid parental leave, paid holidays, a 401k program, cell phone reimbursement, transportation perks, education reimbursement, and 1 week of paid paw-ternity leave.
A Little More About Us:
At Gravie, we're on a mission to reinvent health benefits for small and midsize businesses—making high-quality, affordable healthcare accessible to employers and their employees. We believe better benefits lead to better lives, and we’re building the future of health benefits to reflect just that.
We’re proud to be the only company offering both innovative level-funded health plans and a market-leading ICHRA solution, giving employers more choice and flexibility than ever before.
And guess what? Our customers love us. With member and employer satisfaction rates consistently trending above 80%, we know our health plans are working the way they should. Backed by some of the most sought-after investors in the country, we have the resources and long-term support to build something truly transformative—and we’re just getting started.
At Gravie, we do things differently. We’ll challenge you, and we’ll welcome you challenging us. Good ideas are everyone's job here. You’ll join a team that’s smart, mission-driven, and unafraid to push boundaries if it means making a bigger impact for the people we serve.
If you're energized by a high-performance, high-trust environment where your voice matters, Gravie might be just the place for you.
