| Job Code | Pay Scale Group | Pay Scale Type | Bargaining Unit | Civil Service or Non-Civil Service | Last Executive Board Change | Executive Board Change History |
|---|---|---|---|---|---|---|
| 03450 | 09 | ST | A3 | C | 694-15 | 03/30/2012 |
Click on “Job Code” for current expanded job information.
03/30/2012 03450
INSURANCE COMPANY INFORMATION SYSTEMS EXAMINATION
ADMINISTRATOR
DEFINITION: This is professional and administrative work directing the
examination of insurance companies’ information technology operations
and systems.
An employee in this job develops policies, strategies, and procedures for
the information systems (IS) portion of insurance company examinations
and directs the examination of complex, difficult or sensitive insurance
company examinations to determine the adequacy and effectiveness of
IS controls, standards and procedures. Work involves planning the IS
examinations; coordinating and directing a technical staff engaged in the
on-site review and evaluation of IS environment controls, flows, and
processes; ensuring compliance with the National Association of
Insurance Commissioners’ (NAIC) standards and state regulations;
acquiring, validating, and reconciling company data files; planning
targeted evaluations of specific areas of a company’s IS control
environment; preparing correspondence and conducting meetings with
insurance company information technology administrators to interpret
laws and regulations and to instruct companies on changes in IS
operations required to comply with standards and regulations; and
training staff in examination methods, procedures and practices and
evaluating their work products. Work assignments are primarily
generated by the examination schedule for insurance companies and by
priorities established by higher level management. Employees are
expected to carry out IS examinations to conclusion, alerting an
administrative supervisor as issues arise. Work is reviewed by an
administrative supervisor for adherence to Departmental policies,
completeness, and soundness of conclusions through reports,
correspondence and discussions.
EXAMPLES OF WORK: Directs the evaluation of current and long-term
insurance company IS strategic plans.
Plans, organizes, assigns, and reviews the work of lower-level examiners
on a project basis.
Develops IS examination policies and directs their implementation.
Develops and revises IS examination processes, procedures and
guidelines and monitors their application.
Prepares written and graphical overviews of companies’ IS
environments, including IS organizational structures and financially
significant software applications and platforms.
Assigns priority and risk levels for each identified problem area.
Provides expert IS examination technical advice and assistance to field
examination staff and contractual employees.
Prepares detailed written reports and recommendations on results of
examinations.
Recommends corrective measures, negotiates the resolution of problems
or issues, and reviews corrective action taken by the company.
Testifies in court when the Insurance Department institutes action
against an insurance company.
Analyzes IS audit reports prepared by insurance companies’ outside
consultants.
Oversees the work of contracted vendors hired for specialized IS
examinations.
Evaluates all electronic data interfaces to determine data validity.
Ensures validation tests are conducted on extracted data samples used
for statistical analysis.
Summarizes organizational security measures and evaluates security
policies.
Assesses business continuity and disaster recovery plans.
Travels to insurance company sites inside and outside Pennsylvania.
Advises companies of proposed Insurance Department action to obtain
compliance with laws and regulations.
Develops and presents in-service training programs on examination
techniques, procedures and standards applicable to IS operations.
Performs the full range of supervisory duties.
An employee in this job may participate in the performance of
subordinates’ work consistent with operational or organizational
requirements.
Performs related work as required.
REQUIRED KNOWLEDGES, SKILLS AND ABILITIES: Knowledge of
insurance company information systems examination objectives,
procedures and practices.
Knowledge of insurance principles and practices related to financial
conditions, operations and practices of insurance companies.
Knowledge of records maintained by insurance companies.
Knowledge of NAIC principles, standards, and requirements.
Knowledge of the capabilities, limitations and requirements of electronic
data processing equipment, including micro, mini and large-scale
computer operations.
Knowledge of risk assessment concepts, tools and techniques in an
audit context.
Knowledge of evidence collection techniques used to gather, protect and
preserve audit evidence.
Knowledge of enterprise risk management concepts.
Knowledge of information security practices related to information
technology.
Knowledge of generally accepted Systems Development Life Cycle
Standards.
Knowledge of database concepts.
Knowledge of the principles and practices of information technology
project design and implementation.
Knowledge of laws, policies, rules and regulations governing the
operation of insurance companies.
Knowledge of auditing and generally accepted and statutory accounting
principles and practices, as related to the examination of insurance
company reports and records.
Knowledge of manual and computer-assisted information systems
examination concepts and techniques.
Ability to analyze and interpret data.
Ability to communicate effectively in writing.
Ability to communicate effectively orally.
Ability to establish and maintain effective working relationships.
MINIMUM EXPERIENCE AND TRAINING: Two years as an Insurance
Company Information Systems Examiner;
or
Four years of professional experience examining insurance company
financial records and information technology and related information
systems operations.
NECESSARY SPECIAL REQUIREMENT: Designation as an Automated
Examination Specialist (AES) by the National Association of
Insurance Commissioners and the Society of Financial Examiners.
INSURANCE COMPANY INFORMATION SYSTEMS EXAMINATION
ADMINISTRATOR
DEFINITION: This is professional and administrative work directing the
examination of insurance companies’ information technology operations
and systems.
An employee in this job develops policies, strategies, and procedures for
the information systems (IS) portion of insurance company examinations
and directs the examination of complex, difficult or sensitive insurance
company examinations to determine the adequacy and effectiveness of
IS controls, standards and procedures. Work involves planning the IS
examinations; coordinating and directing a technical staff engaged in the
on-site review and evaluation of IS environment controls, flows, and
processes; ensuring compliance with the National Association of
Insurance Commissioners’ (NAIC) standards and state regulations;
acquiring, validating, and reconciling company data files; planning
targeted evaluations of specific areas of a company’s IS control
environment; preparing correspondence and conducting meetings with
insurance company information technology administrators to interpret
laws and regulations and to instruct companies on changes in IS
operations required to comply with standards and regulations; and
training staff in examination methods, procedures and practices and
evaluating their work products. Work assignments are primarily
generated by the examination schedule for insurance companies and by
priorities established by higher level management. Employees are
expected to carry out IS examinations to conclusion, alerting an
administrative supervisor as issues arise. Work is reviewed by an
administrative supervisor for adherence to Departmental policies,
completeness, and soundness of conclusions through reports,
correspondence and discussions.
EXAMPLES OF WORK: Directs the evaluation of current and long-term
insurance company IS strategic plans.
Plans, organizes, assigns, and reviews the work of lower-level examiners
on a project basis.
Develops IS examination policies and directs their implementation.
Develops and revises IS examination processes, procedures and
guidelines and monitors their application.
Prepares written and graphical overviews of companies’ IS
environments, including IS organizational structures and financially
significant software applications and platforms.
Assigns priority and risk levels for each identified problem area.
Provides expert IS examination technical advice and assistance to field
examination staff and contractual employees.
Prepares detailed written reports and recommendations on results of
examinations.
Recommends corrective measures, negotiates the resolution of problems
or issues, and reviews corrective action taken by the company.
Testifies in court when the Insurance Department institutes action
against an insurance company.
Analyzes IS audit reports prepared by insurance companies’ outside
consultants.
Oversees the work of contracted vendors hired for specialized IS
examinations.
Evaluates all electronic data interfaces to determine data validity.
Ensures validation tests are conducted on extracted data samples used
for statistical analysis.
Summarizes organizational security measures and evaluates security
policies.
Assesses business continuity and disaster recovery plans.
Travels to insurance company sites inside and outside Pennsylvania.
Advises companies of proposed Insurance Department action to obtain
compliance with laws and regulations.
Develops and presents in-service training programs on examination
techniques, procedures and standards applicable to IS operations.
Performs the full range of supervisory duties.
An employee in this job may participate in the performance of
subordinates’ work consistent with operational or organizational
requirements.
Performs related work as required.
REQUIRED KNOWLEDGES, SKILLS AND ABILITIES: Knowledge of
insurance company information systems examination objectives,
procedures and practices.
Knowledge of insurance principles and practices related to financial
conditions, operations and practices of insurance companies.
Knowledge of records maintained by insurance companies.
Knowledge of NAIC principles, standards, and requirements.
Knowledge of the capabilities, limitations and requirements of electronic
data processing equipment, including micro, mini and large-scale
computer operations.
Knowledge of risk assessment concepts, tools and techniques in an
audit context.
Knowledge of evidence collection techniques used to gather, protect and
preserve audit evidence.
Knowledge of enterprise risk management concepts.
Knowledge of information security practices related to information
technology.
Knowledge of generally accepted Systems Development Life Cycle
Standards.
Knowledge of database concepts.
Knowledge of the principles and practices of information technology
project design and implementation.
Knowledge of laws, policies, rules and regulations governing the
operation of insurance companies.
Knowledge of auditing and generally accepted and statutory accounting
principles and practices, as related to the examination of insurance
company reports and records.
Knowledge of manual and computer-assisted information systems
examination concepts and techniques.
Ability to analyze and interpret data.
Ability to communicate effectively in writing.
Ability to communicate effectively orally.
Ability to establish and maintain effective working relationships.
MINIMUM EXPERIENCE AND TRAINING: Two years as an Insurance
Company Information Systems Examiner;
or
Four years of professional experience examining insurance company
financial records and information technology and related information
systems operations.
NECESSARY SPECIAL REQUIREMENT: Designation as an Automated
Examination Specialist (AES) by the National Association of
Insurance Commissioners and the Society of Financial Examiners.