Senior Technology Audit Manager

Johnson & Johnson•New Brunswick, NJ

About The Position

Johnson & Johnson is recruiting for a Senior Audit Manager, Technology - Global Audit & Assurance located in New Brunswick, NJ. Global Audit & Assurance is an organization within Johnson & Johnson Global Finance, a global team with an Enterprise focus including Risk-Based Reviews, SOX, Information Technology, Cyber Security, Compliance reviews, Sensitive Investigations, and Digital Innovation and Analytics. Global Audit & Assurance’s mission is to become a best-in-class audit organization delivering data driven, risk-based audit and assurance projects, that develops talent and drives Johnson & Johnson compliance. The Senior Audit Manager will play a pivotal role in leading high-impact audit engagements with a specific focus on process and technology system transformation efforts across the enterprise. The individual will support risk-based, pre-implementation, and SOX Technology audits, providing strategic insights, and collaborating with cross-functional teams to ensure effective risk management across the organization. This role combines deep technical audit expertise with strong people leadership, stakeholder management, and strategic risk insight. The individual will be responsible for overseeing teams of skilled auditors during the audit process, conducting risk assessments, and providing strategic recommendations to enhance organizational efficiency and effectiveness. This role requires a keen eye for detail, talent development, excellent communication skills, and the ability to provide strategic insights to senior management based on audit findings.

Requirements

8-12+ years of experience in information technology, technology audit, information security, finance, process excellence, or related business experience is required.
5+ years of people management experience is required.
Bachelor’s degree is required, preferably with a major in Computer Science, Software Engineering, Information Technology, Cybersecurity, Data Science/Analytics, Accounting, Finance, or related fields.
Demonstrated experience with SOX ITGC testing and IT compliance frameworks.
Demonstrated experience with System Development Lifecycle frameworks and auditing complex cross-functional multi-region deployments is required.
Proven track record auditing cloud platforms, modern application architectures, identity/access management, change management and infrastructure.
Strong technical understanding of risk in systems, networks, databases, integrations, and common enterprise applications (ERP, HRIS, CRM).
Exceptional written and verbal communication; able to synthesize complex technical findings into clear business-focused recommendations
This position requires up to 20-30% of domestic or international travel.

Nice To Haves

Master of Science, Master of Business Administration, or other advanced degrees is a plus.
CISA, CISSP, CIA, CPA, CMA, CRISC and/or equivalent professional certifications are preferred.
Experience with SAP S4/HANA, & SAP Business Technology Platform (BTP) (PaaS), SAP ECC is preferred.
Experience using data analytics and automation tools (e.g., SQL, Python, Power BI/Tableau, audit analytics tools) to support audit programs is preferred.
Experience with third-party/vendor risk assessments and cloud service provider controls.
Track record of communicating effectively with senior stakeholders and influencing remediation and risk acceptance decisions.
Innovative mindset with the ability to translate business needs into technology solutions.
Ability to influence cross-functional teams and developing partnerships.
Flexible and adaptable; able to work in ambiguous situations.
Proven experience in partnering with leaders (business/finance and technology associates) in developing business strategies & influencing at various levels of the organization.
Demonstrated strong performance providing strategic thinking and technology leadership.
Promotes a continuous improvement and learning mindset for self and the team
Ability to lead teams in a complex, virtual environment.

Responsibilities

Lead planning, scoping and execution of complex integrated (Finance/Operations) and Technology audit engagements (ITGC, application controls, cybersecurity, cloud, infrastructure, identity & access, change management, disaster recovery, and third-party/vendor risks).
Manage a team of technology auditors: assign work, coach and develop skills, perform performance reviews, and promote a high-performing culture.
Develop risk-based annual and multi-year technology audit plans aligned with enterprise risk priorities and regulatory requirements (e.g., SOX).
Provide assurance and advisory support on new technology initiatives and transformational programs throughout the enterprise (cloud migrations, SaaS/ERP implementations, DevOps pipelines, identity solutions), translating control implications into pragmatic mitigation actions.
Advise on SOX impact for new initiatives, system implementations, and policy changes; recommend corrective actions.
Provide hands-on Manager oversight of audit engagement activities, including actively participating in and coaching the team in walkthroughs and testing execution, reviewing workpapers and issue write ups, root-cause analyses, reporting and remediation tracking for audit quality assurance.
Oversee impact analysis and audit-response execution to enable timely remediation of exceptions that address primary risks.
Build and maintain strong relationships with IT leadership, security, compliance, business process owners, and external auditors; present audit results to senior management and be involved in the preparation of Audit Committee materials, as required.
Drive use of data analytics, automation, and continuous auditing techniques to increase audit effectiveness and efficiency.
Ensure audit methodology, documentation and working papers meet quality standards and regulatory expectations.
Monitor and report on audit metrics and key performance indicators and drive improvements in audit processes and tools.
Maintain awareness of emerging technology risks and recommend updates to audit focus and approaches.
Contribute to the annual Audit Plan by identifying enterprise risks and helping prioritize audit coverage and resourcing.
Manage, mentor, and develop audit staff; foster an inclusive culture of accountability, knowledge sharing, and professional growth.
Attract and retain top talent to help evolve a best-in-class audit organization.

Benefits

Subject to the terms of their respective plans, employees are eligible to participate in the Company’s consolidated retirement plan (pension) and savings plan (401(k)).
This position is eligible to participate in the Company’s long-term incentive program.
Subject to the terms of their respective policies and date of hire, employees are eligible for the following time off benefits:
Vacation –120 hours per calendar year
Sick time - 40 hours per calendar year; for employees who reside in the State of Colorado –48 hours per calendar year; for employees who reside in the State of Washington –56 hours per calendar year
Holiday pay, including Floating Holidays –13 days per calendar year
Work, Personal and Family Time - up to 40 hours per calendar year
Parental Leave – 480 hours within one year of the birth/adoption/foster care of a child
Bereavement Leave – 240 hours for an immediate family member: 40 hours for an extended family member per calendar year
Caregiver Leave – 80 hours in a 52-week rolling period10 days
Volunteer Leave – 32 hours per calendar year
Military Spouse Time-Off – 80 hours per calendar year
For additional general information on Company benefits, please go to: - https://www.careers.jnj.com/employee-benefits