Senior Technology Auditor, GA&A

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at jnj.com

As guided by Our Credo, Johnson & Johnson is responsible to our employees who work with us throughout the world.  We provide an inclusive work environment where each person is considered as an individual.  At Johnson & Johnson, we respect the diversity and dignity of our employees and recognize their merit.

Job Function:

Finance

Job Sub Function:

Internal Audit

Job Category:

Professional

All Job Posting Locations:

New Brunswick, New Jersey, United States of America

Job Description:

Johnson & Johnson Global Audit & Assurance (GAA) organization is seeking a Senior Technology Auditor! The preferred location for this position is New Brunswick, NJ.   

 

Global Audit & Assurance’s primary mission is to provide independent, objective assurance and advisory services to assist management in maintaining compliance with government and industry regulations, mitigating risk, and achieving operational excellence. To this end, Technology Audit function conducts Risk Based Reviews of information resources across the Johnson & Johnson Family of Companies to evaluate internal controls' adequacy and develop recommendations for improvement. Information resources include business-critical applications such as SAP, JD Edwards, and Business Planning and Control Systems, as well as the related technology infrastructure, data, facilities, organizations, privacy, cybersecurity, and business processes. 

 

The Senior Technology Auditor will be responsible for conducting risk-based reviews and compliance audits of end-to-end processes and information technology resources across the Johnson & Johnson Family of Companies globally. Inclusive of evaluating internal controls' adequacy and developing recommendations for improvement across risk areas (e.g., Cyber Security, ITGC’s, Infrastructure, Privacy, Third Party.) 

 

Responsibilities: 

• Perform audits with limited supervision from IT Audit Managers and Leads 

• Often leads a team of auditors during audit engagements providing guidance, delegation, and feedback 

• Participate and support execution of assigned audit engagements including, but not limited to: Technology Risk Based Reviews (i.e. cybersecurity, third party risk management, etc.), Pre-Implementation Reviews, SOX 404 ITGC testing. 

• Assist with audit planning, completing testing procedures, documentation for assigned review areas relevant to risk, drafting recommendations, and presenting findings to management 

• Independently assesses the design and operating efficiency of internal controls over financial reporting 

• Coordinate and manage interactions with multi-functional and cross-geographical teams, internally and externally, as necessary 

• Coordinates & performs ongoing control testing consistent with the J&J SOX 404 program guidelines 

• Capture and analyze information to identify key risks and corresponding controls. 

• Systematically test and evaluate controls to verify operations efficiency and effectiveness, information reliability, and compliance with applicable laws and regulations 

• Recommend control improvements 

• Communicate findings and recommendations to management 

• Document audit work using automated audit management tools 

• Follow-up on the status of the remediation plan. 

• Identifies internal control standard methodologies and promotes their adoption across the enterprise 

• Leverage digital tools to execute audits and provide insights 
   

Qualifications: 

• A Bachelor's degree (BA/BS) is required 

• A minimum of 2 years of information technology, audit, or assurance and advisory experience is required, preferably with a Big 4 or leading risk advisory/ public accounting firm 

• A good understanding of IT & Information Security Management Frameworks is required 

• Experience in Cyber Security risk and control is preferred  

• Experience with SAP HANA is preferred 

• Analytical skills; specifically, the ability to assess and decompose processes utilizing a risk and control focus 

• Exposure or understanding of internal control concepts and processes with practical experience in regulatory compliance, internal audits, risk management, process improvement preferred 

• High level of self-confidence, strong people and client management skills and proven leadership ability, strong influencing skills 

• Experience interacting with all levels of management is required 

• Professional security, audit, or control-related certification, such as CISSP, CISA, CRISC, or CIA, is strongly preferred 

• Excellent presentation and written communication skills 

• Must have the ability to work in a highly collaborative, team-oriented environment. 

• Willingness to travel domestically and internationally is required (up to 40%) 

  

Required Skills:

Preferred Skills:

Analytical Reasoning, Audit and Compliance Trends, Audit Reporting, Business Behavior, Compliance Policies, Data Analysis, Execution Focus, Financial Analysis, Financial Risk Management (FRM), Internal Auditing, Internal Controls, Issue Escalation, Leverages Information, Problem Solving, Process Oriented, Professional Ethics, Risk Assessments

The anticipated base pay range for this position is :

$79,000.00 - $127,650.00

Additional Description for Pay Transparency:

Subject to the terms of their respective plans, employees are eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)).
This position is eligible to participate in the Company’s long-term incentive program.
Subject to the terms of their respective policies and date of hire, employees are eligible for the following time off benefits:
Vacation –120 hours per calendar year
Sick time - 40 hours per calendar year; for employees who reside in the State of Colorado –48 hours per calendar year; for employees who reside in the State of Washington –56 hours per calendar year
Holiday pay, including Floating Holidays –13 days per calendar year
Work, Personal and Family Time - up to 40 hours per calendar year
Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
Bereavement Leave – 240 hours for an immediate family member: 40 hours for an extended family member per calendar year
Caregiver Leave – 80 hours in a 52-week rolling period10 days
Volunteer Leave – 32 hours per calendar year
Military Spouse Time-Off – 80 hours per calendar year
For additional general information on Company benefits, please go to: - https://www.careers.jnj.com/employee-benefits