Overview
On Site
USD 99,000.00 - 148,000.00 per year
Full Time
Skills
IT management
IT audit
Root cause analysis
Policies and procedures
IT infrastructure
Health care
Operational excellence
Information Technology
Internal control
Cyber security
Knowledge base
Audit management
Internal auditing
Risk assessment
IT security
Financial reporting
Customer relationship management
Regulatory Compliance
Emerging technologies
Vendor relationships
Security audit
Master data management
Process control
PCI DSS
Project management
Information systems
Analytical skill
Business process
SAP ERP
Risk management
Health insurance
Sales
Auditing
Management
Privacy
Sarbanes-Oxley
SAP
Leadership
Coaching
Design
Partnership
Documentation
Policies
Flowchart
Testing
Articulate
Scheduling
Innovation
Business analysis
CISA
ISACA
CISSP
Accounting
ITGC
ISO 9000
SANS
COBIT
ITIL
COSO
Supervision
FOCUS
SAP HANA
SAP GRC
SOD
Finance
Transformation
Presentations
Communication
English
Fluency
SAP BASIS
Job Details
Description
The Johnson & Johnson Global Audit & Assurance (GAA) organization is seeking a Technology Audit Manager! This is a hybrid role based in New Brunswick, NJ.
Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 125 years. We embrace research and science -- bringing innovative ideas, products, and services to advance the health and well-being of people. Employees of the Johnson & Johnson Family of Companies work with partners in health care to touch the lives of over a billion people worldwide.
With $95 billion in 2022 sales, Johnson & Johnson is the world's most comprehensive and broadly-based manufacturer of healthcare products and a provider of related services for the innovative medicine, med-tech, and diagnostics markets. More than 265 Johnson & Johnson operating companies employ approximately 153,500 people, with products touching the lives of over a billion people every day throughout the world. If you have the talent and desire to touch the world, Johnson & Johnson has the career opportunities to help make it happen.
Global Audit & Assurance's primary mission is to provide independent, objective assurance and advisory services to assist management in maintaining compliance with government and industry regulations, mitigating risk, and achieving operational excellence. To this end, the Technology Audit Manager will be responsible for conducting risk-based reviews and compliance audits of end-to-end processes and information technology resources across the Johnson & Johnson Family of Companies globally. Inclusive of evaluating internal controls' adequacy and developing recommendations for improvement across risk areas (e.g., Cyber Security, IT, Infrastructure, Privacy, Third Party.)
Responsibilities:
Manage the current year's risk-based IT Audit plan and Internal Controls Assurance engagements (SOX and non-SOX risk-based operational and integrated with other functional areas), including those requiring technical and in-depth SAP knowledge base
In addition to their audit management responsibilities, Technology Audit Managers work closely with-Information Technology Management, business partners, Internal Audit leadership, and External Audit to assess risk and update requirements
Provide leadership and coaching to a subordinate staff of Technology audit professionals and Global Audit & Assurance team members
Manage & Perform ongoing risks assessment for their assigned portfolio
Advise and perform an ongoing risk assessment of IT security control design based on proactive engagement with all enterprise-wide partnerships with the business and IT
Lead internal control reviews & audits of technology domains & capabilities
Lead development, documentation, and maintenance of information technology audit program consistent with enterprise policies, procedures, and established industry standards & methods
Independently assess the design and operating effectiveness of internal controls over financial reporting
Develop and maintain adequate control and process documentation (i.e., control matrices, flowcharts, testing documentation) in accordance with engagement objectives
Perform root cause analysis and articulate control deficiencies and remediation techniques internally and with senior client management
Support and monitor remediation activities as and when necessary
Maintain ongoing awareness of significant changes related to new regulatory compliance pronouncements that result in emerging technologies
Coordinate and manage interactions with multi-functional and cross-geographical teams both internally and externally, as necessary
Identify weaknesses in internal controls and opportunities to enhance operational efficiencies.
Maintain vendor relationships with suppliers and external resources to facilitate and manage SOX testing and ensure internal policies and procedures are being followed
Coordinate, manage and support IT resource scheduling activities.
Identify opportunities to introduce Digital Innovation to improve audit execution and insights
Qualifications
A Bachelor's degree (BA/BS) is required. Professional security, audit, or control-related certification, such as (CISA, CIA, CRISC, or CISSP) is strongly preferred
5+ years of audit, assurance, and advisory experience, preferably with a Big 4 or leading risk advisory/ public accounting firm, is required. Must have knowledge of Master Data, system configuration, and process controls
Strong understanding of IT & Information Technology General Controls (ITGC) Frameworks and standards such as ISO, SANS, COBIT, ITIL, COSO, and regulations such as SOX, PCI Compliance, Privacy, and Cyber Security is required
Demonstrated experience and history of increasing responsibility in project management and supervision in a large, complex information systems environment is required
General knowledge of multiple IT industry best practice frameworks, including but not limited to the Information Technology Infrastructure Library (ITIL), is required
Experience with the design, development, and implementation of internal controls for IT is required.
Analytical skills; specifically, the ability to assess and decompose processes utilizing a risk and control focus, is required
Strong experience (minimum of 4 years) in assessing and/or designing SAP technologies, including HANA, ECC, GRC, and other core components of the business suite from a security and business process configuration perspective preferred
Experience in SAP/ERP pre and post-implementation reviews, SAP Business process control testing, SAP SOD reviews, and other SAP focus assurance engagements preferred
Understand key financial processes and how to assess the risks and controls associated with those processes, specifically as configured within the SAP landscape
Knowledge of current accounting, auditing principles, and internal control concepts is required
Exposure or understanding of control concepts and processes with practical experience in regulatory compliance, internal audits, risk management, accounting/process advisory, and finance transformation/improvement is required
Excellent presentation and written (audit reports) communication skills are required
English fluency (written and verbal) is required; fluency in multiple languages is a plus
Must have the ability to work in a highly collaborative, team-oriented environment
Willingness to travel domestically and internationally is required (25-30%)
Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit .
The anticipated base pay range for this position is $99,000 to $148,000.
The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation's performance over a calendar/ performance year. Bonuses are awarded at the Company's discretion on an individual basis.
Employees may be eligible to participate in Company employee benefit programs such as health insurance, savings plan, pension plan, disability plan, vacation pay, sick time, holiday pay, and work, personal and family time off in accordance with the terms of the applicable plans. Additional information can be found through the link below.
For additional general information on company benefits, please go to: -
#JnJTech
The Johnson & Johnson Global Audit & Assurance (GAA) organization is seeking a Technology Audit Manager! This is a hybrid role based in New Brunswick, NJ.
Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 125 years. We embrace research and science -- bringing innovative ideas, products, and services to advance the health and well-being of people. Employees of the Johnson & Johnson Family of Companies work with partners in health care to touch the lives of over a billion people worldwide.
With $95 billion in 2022 sales, Johnson & Johnson is the world's most comprehensive and broadly-based manufacturer of healthcare products and a provider of related services for the innovative medicine, med-tech, and diagnostics markets. More than 265 Johnson & Johnson operating companies employ approximately 153,500 people, with products touching the lives of over a billion people every day throughout the world. If you have the talent and desire to touch the world, Johnson & Johnson has the career opportunities to help make it happen.
Global Audit & Assurance's primary mission is to provide independent, objective assurance and advisory services to assist management in maintaining compliance with government and industry regulations, mitigating risk, and achieving operational excellence. To this end, the Technology Audit Manager will be responsible for conducting risk-based reviews and compliance audits of end-to-end processes and information technology resources across the Johnson & Johnson Family of Companies globally. Inclusive of evaluating internal controls' adequacy and developing recommendations for improvement across risk areas (e.g., Cyber Security, IT, Infrastructure, Privacy, Third Party.)
Responsibilities:
Manage the current year's risk-based IT Audit plan and Internal Controls Assurance engagements (SOX and non-SOX risk-based operational and integrated with other functional areas), including those requiring technical and in-depth SAP knowledge base
In addition to their audit management responsibilities, Technology Audit Managers work closely with-Information Technology Management, business partners, Internal Audit leadership, and External Audit to assess risk and update requirements
Provide leadership and coaching to a subordinate staff of Technology audit professionals and Global Audit & Assurance team members
Manage & Perform ongoing risks assessment for their assigned portfolio
Advise and perform an ongoing risk assessment of IT security control design based on proactive engagement with all enterprise-wide partnerships with the business and IT
Lead internal control reviews & audits of technology domains & capabilities
Lead development, documentation, and maintenance of information technology audit program consistent with enterprise policies, procedures, and established industry standards & methods
Independently assess the design and operating effectiveness of internal controls over financial reporting
Develop and maintain adequate control and process documentation (i.e., control matrices, flowcharts, testing documentation) in accordance with engagement objectives
Perform root cause analysis and articulate control deficiencies and remediation techniques internally and with senior client management
Support and monitor remediation activities as and when necessary
Maintain ongoing awareness of significant changes related to new regulatory compliance pronouncements that result in emerging technologies
Coordinate and manage interactions with multi-functional and cross-geographical teams both internally and externally, as necessary
Identify weaknesses in internal controls and opportunities to enhance operational efficiencies.
Maintain vendor relationships with suppliers and external resources to facilitate and manage SOX testing and ensure internal policies and procedures are being followed
Coordinate, manage and support IT resource scheduling activities.
Identify opportunities to introduce Digital Innovation to improve audit execution and insights
Qualifications
A Bachelor's degree (BA/BS) is required. Professional security, audit, or control-related certification, such as (CISA, CIA, CRISC, or CISSP) is strongly preferred
5+ years of audit, assurance, and advisory experience, preferably with a Big 4 or leading risk advisory/ public accounting firm, is required. Must have knowledge of Master Data, system configuration, and process controls
Strong understanding of IT & Information Technology General Controls (ITGC) Frameworks and standards such as ISO, SANS, COBIT, ITIL, COSO, and regulations such as SOX, PCI Compliance, Privacy, and Cyber Security is required
Demonstrated experience and history of increasing responsibility in project management and supervision in a large, complex information systems environment is required
General knowledge of multiple IT industry best practice frameworks, including but not limited to the Information Technology Infrastructure Library (ITIL), is required
Experience with the design, development, and implementation of internal controls for IT is required.
Analytical skills; specifically, the ability to assess and decompose processes utilizing a risk and control focus, is required
Strong experience (minimum of 4 years) in assessing and/or designing SAP technologies, including HANA, ECC, GRC, and other core components of the business suite from a security and business process configuration perspective preferred
Experience in SAP/ERP pre and post-implementation reviews, SAP Business process control testing, SAP SOD reviews, and other SAP focus assurance engagements preferred
Understand key financial processes and how to assess the risks and controls associated with those processes, specifically as configured within the SAP landscape
Knowledge of current accounting, auditing principles, and internal control concepts is required
Exposure or understanding of control concepts and processes with practical experience in regulatory compliance, internal audits, risk management, accounting/process advisory, and finance transformation/improvement is required
Excellent presentation and written (audit reports) communication skills are required
English fluency (written and verbal) is required; fluency in multiple languages is a plus
Must have the ability to work in a highly collaborative, team-oriented environment
Willingness to travel domestically and internationally is required (25-30%)
Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit .
The anticipated base pay range for this position is $99,000 to $148,000.
The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation's performance over a calendar/ performance year. Bonuses are awarded at the Company's discretion on an individual basis.
Employees may be eligible to participate in Company employee benefit programs such as health insurance, savings plan, pension plan, disability plan, vacation pay, sick time, holiday pay, and work, personal and family time off in accordance with the terms of the applicable plans. Additional information can be found through the link below.
For additional general information on company benefits, please go to: -
#JnJTech