The Johnson & Johnson Global Audit & Assurance (GAA) organization is seeking a Technology Audit Manager! This is a hybrid role based in New Brunswick, NJ.Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 125 years. We embrace research and science -- bringing innovative ideas, products, and services to advance the health and well-being of people. Employees of the Johnson & Johnson Family of Companies work with partners in health care to touch the lives of over a billion people worldwide.With $95 billion in 2022 sales, Johnson & Johnson is the world's most comprehensive and broadly-based manufacturer of healthcare products and a provider of related services for the innovative medicine, med-tech, and diagnostics markets. More than 265 Johnson & Johnson operating companies employ approximately 153,500 people, with products touching the lives of over a billion people every day throughout the world. If you have the talent and desire to touch the world, Johnson & Johnson has the career opportunities to help make it happen.Global Audit & Assurance's primary mission is to provide independent, objective assurance and advisory services to assist management in maintaining compliance with government and industry regulations, mitigating risk, and achieving operational excellence. To this end, the Technology Audit Manager will be responsible for conducting risk-based reviews and compliance audits of end-to-end processes and information technology resources across the Johnson & Johnson Family of Companies globally. Inclusive of evaluating internal controls' adequacy and developing recommendations for improvement across risk areas (e.g., Cyber Security, ITGC's, Infrastructure, Privacy, Third Party.)Responsibilities:· Manage the current year's risk-based IT Audit plan and Internal Controls Assurance engagements (SOX and non-SOX risk-based operational and integrated with other functional areas), including those requiring technical and in-depth SAP knowledge base· In addition to their audit management responsibilities, Technology Audit Managers work closely with-Information Technology Management, business partners, Internal Audit leadership, and External Audit to assess risk and update requirements· Provide leadership and coaching to a subordinate staff of Technology audit professionals and Global Audit & Assurance team members· Manage & Perform ongoing risks assessment for their assigned portfolio· Advise and perform an ongoing risk assessment of IT security control design based on proactive engagement with all enterprise-wide partnerships with the business and IT· Lead internal control reviews & audits of technology domains & capabilities· Lead development, documentation, and maintenance of information technology audit program consistent with enterprise policies, procedures, and established industry standards & methods· Independently assess the design and operating effectiveness of internal controls over financial reporting· Develop and maintain adequate control and process documentation (i.e., control matrices, flowcharts, testing documentation) in accordance with engagement objectives· Perform root cause analysis and articulate control deficiencies and remediation techniques internally and with senior client management· Support and monitor remediation activities as and when necessary· Maintain ongoing awareness of significant changes related to new regulatory compliance pronouncements that result in emerging technologies· Coordinate and manage interactions with multi-functional and cross-geographical teams both internally and externally, as necessary· Identify weaknesses in internal controls and opportunities to enhance operational efficiencies.· Maintain vendor relationships with suppliers and external resources to facilitate and manage SOX testing and ensure internal policies and procedures are being followed· Coordinate, manage and support IT resource scheduling activities.· Identify opportunities to introduce Digital Innovation to improve audit execution and insightsQualifications· A Bachelor's degree (BA/BS) is required. Professional security, audit, or control-related certification, such as (CISA, CIA, CRISC, or CISSP) is strongly preferred· 5+ years of audit, assurance, and advisory experience, preferably with a Big 4 or leading risk advisory/ public accounting firm, is required. Must have knowledge of Master Data, system configuration, and process controls· Strong understanding of IT & Information Technology General Controls (ITGC) Frameworks and standards such as ISO, SANS, COBIT, ITIL, COSO, and regulations such as SOX, PCI Compliance, Privacy, and Cyber Security is required· Demonstrated experience and history of increasing responsibility in project management and supervision in a large, complex information systems environment is required· General knowledge of multiple IT industry best practice frameworks, including but not limited to the Information Technology Infrastructure Library (ITIL), is required· Experience with the design, development, and implementation of internal controls for IT is required.· Analytical skills; specifically, the ability to assess and decompose processes utilizing a risk and control focus, is required· Strong experience (minimum of 4 years) in assessing and/or designing SAP technologies, including HANA, ECC, GRC, and other core components of the business suite from a security and business process configuration perspective preferred· Experience in SAP/ERP pre and post-implementation reviews, SAP Business process control testing, SAP SOD reviews, and other SAP focus assurance engagements preferred· Understand key financial processes and how to assess the risks and controls associated with those processes, specifically as configured within the SAP landscape· Knowledge of current accounting, auditing principles, and internal control concepts is required· Exposure or understanding of control concepts and processes with practical experience in regulatory compliance, internal audits, risk management, accounting/process advisory, and finance transformation/improvement is required· Excellent presentation and written (audit reports) communication skills are required· English fluency (written and verbal) is required; fluency in multiple languages is a plus· Must have the ability to work in a highly collaborative, team-oriented environment· Willingness to travel domestically and internationally is required (25-30%)Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit .The anticipated base pay range for this position is $99,000 to $148,000.The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation's performance over a calendar/ performance year. Bonuses are awarded at the Company's discretion on an individual basis.Employees may be eligible to participate in Company employee benefit programs such as health insurance, savings plan, pension plan, disability plan, vacation pay, sick time, holiday pay, and work, personal and family time off in accordance with the terms of the applicable plans. Additional information can be found through the link below.For additional general information on company benefits, please go to: - https://www.careers.jnj.com/employee-benefits#JnJTech
