Johnson & Johnson
At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal.
Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity.
Job Description
Johnson & Johnson Global Audit & Assurance (GAA) organization is seeking a Senior Technology Auditor. The preferred location for this position is New Brunswick, NJ. Global Audit & Assurance’s primary mission is to provide independent, objective assurance and advisory services to assist management in maintaining compliance with government and industry regulations, mitigating risk, and achieving operational excellence. To this end, Technology Audit function conducts Risk Based Reviews of information resources across the Johnson & Johnson Family of Companies to evaluate internal controls' adequacy and develop recommendations for improvement. Responsibilities
Perform audits with limited supervision from IT Audit Managers and Leads Often leads a team of auditors during audit engagements providing guidance, delegation, and feedback Participate and support execution of assigned audit engagements including, but not limited to: Technology Risk Based Reviews, Pre-Implementation Reviews, SOX 404 ITGC testing. Assist with audit planning, completing testing procedures, documentation for assigned review areas relevant to risk, drafting recommendations, and presenting findings to management Independently assesses the design and operating efficiency of internal controls over financial reporting Coordinate and manage interactions with multi-functional and cross-geographical teams, internally and externally, as necessary Coordinates & performs ongoing control testing consistent with the J&J SOX 404 program guidelines Capture and analyze information to identify key risks and corresponding controls. Systematically test and evaluate controls to verify operations efficiency and effectiveness, information reliability, and compliance with applicable laws and regulations Recommend control improvements Communicate findings and recommendations to management Document audit work using automated audit management tools Follow-up on the status of the remediation plan. Identifies internal control standard methodologies and promotes their adoption across the enterprise Leverage digital tools to execute audits and provide insights Required Qualifications
Bachelor’s degree (BA/BS) required At least 2 years of experience in IT, compliance, internal audits, risk management, cybersecurity, or process improvement Prior engagement in SOX compliance projects, including control documentation, testing, and reporting Knowledge of IT systems, networks, databases, and security protocols to assess performance and security Understanding of IT and information security management frameworks Experience identifying, analyzing, and prioritizing risks, and recommending controls Strong verbal and written communication skills, with experience presenting complex technical findings to management and stakeholders clearly Proactive in personal development through training, certifications, or courses on emerging technologies and audit standards Team-oriented and able to collaborate effectively on cross-functional teams Willing to travel domestically and internationally (up to 40%) Preferred Qualifications
Professional security, audit, or control-related certifications such as CISSP, CISA, CRISC, or CIA is highly desired Experience working in an internal audit function within a well-established corporation, a Big 4 Accounting Firm, or leading risk advisory/public accounting firm Experience with pre-Implementation projects, 3rd party reviews and Finance/Operations integrated audits Able to independently evaluate and audit new technologies and complex systems with minimum supervision, asking insightful questions to identify risks in untested environments Basic understanding of business processes in finance and operations, with the ability to assess how IT controls support overall business objectives Strong analytical skills; able to examine datasets, logs, and reports to spot anomalies or patterns using data analytics tools such as Alteryx, Tableau, MS Power BI Experience with Cybersecurity Risk & Controls and SAP HANA is a plus Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law.
#J-18808-Ljbffr
Johnson & Johnson Global Audit & Assurance (GAA) organization is seeking a Senior Technology Auditor. The preferred location for this position is New Brunswick, NJ. Global Audit & Assurance’s primary mission is to provide independent, objective assurance and advisory services to assist management in maintaining compliance with government and industry regulations, mitigating risk, and achieving operational excellence. To this end, Technology Audit function conducts Risk Based Reviews of information resources across the Johnson & Johnson Family of Companies to evaluate internal controls' adequacy and develop recommendations for improvement. Responsibilities
Perform audits with limited supervision from IT Audit Managers and Leads Often leads a team of auditors during audit engagements providing guidance, delegation, and feedback Participate and support execution of assigned audit engagements including, but not limited to: Technology Risk Based Reviews, Pre-Implementation Reviews, SOX 404 ITGC testing. Assist with audit planning, completing testing procedures, documentation for assigned review areas relevant to risk, drafting recommendations, and presenting findings to management Independently assesses the design and operating efficiency of internal controls over financial reporting Coordinate and manage interactions with multi-functional and cross-geographical teams, internally and externally, as necessary Coordinates & performs ongoing control testing consistent with the J&J SOX 404 program guidelines Capture and analyze information to identify key risks and corresponding controls. Systematically test and evaluate controls to verify operations efficiency and effectiveness, information reliability, and compliance with applicable laws and regulations Recommend control improvements Communicate findings and recommendations to management Document audit work using automated audit management tools Follow-up on the status of the remediation plan. Identifies internal control standard methodologies and promotes their adoption across the enterprise Leverage digital tools to execute audits and provide insights Required Qualifications
Bachelor’s degree (BA/BS) required At least 2 years of experience in IT, compliance, internal audits, risk management, cybersecurity, or process improvement Prior engagement in SOX compliance projects, including control documentation, testing, and reporting Knowledge of IT systems, networks, databases, and security protocols to assess performance and security Understanding of IT and information security management frameworks Experience identifying, analyzing, and prioritizing risks, and recommending controls Strong verbal and written communication skills, with experience presenting complex technical findings to management and stakeholders clearly Proactive in personal development through training, certifications, or courses on emerging technologies and audit standards Team-oriented and able to collaborate effectively on cross-functional teams Willing to travel domestically and internationally (up to 40%) Preferred Qualifications
Professional security, audit, or control-related certifications such as CISSP, CISA, CRISC, or CIA is highly desired Experience working in an internal audit function within a well-established corporation, a Big 4 Accounting Firm, or leading risk advisory/public accounting firm Experience with pre-Implementation projects, 3rd party reviews and Finance/Operations integrated audits Able to independently evaluate and audit new technologies and complex systems with minimum supervision, asking insightful questions to identify risks in untested environments Basic understanding of business processes in finance and operations, with the ability to assess how IT controls support overall business objectives Strong analytical skills; able to examine datasets, logs, and reports to spot anomalies or patterns using data analytics tools such as Alteryx, Tableau, MS Power BI Experience with Cybersecurity Risk & Controls and SAP HANA is a plus Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law.
#J-18808-Ljbffr