Director, Global Audit & Assurance
The Best Job Board · New Brunswick, NJ · 3 days ago
Accounting$150k–$259k/yrFull-time
About the role
Johnson & Johnson is recruiting for a Director – Digital Risk, Global Audit & Assurance located in New Brunswick, NJ. Global Audit & Assurance is the organization’s Internal Audit function. Global Audit & Assurance’s mission is to become a best-in-class audit organization delivering data-driven, risk-based audit and assurance projects, that develops talent and drives Johnson & Johnson compliance.
Responsibilities
- Direct and supervise a global Technology audit team through the annual audit and advisory plan lifecycle.
- Performing quality reviews over work product and final reports during audit planning, fieldwork and reporting phases.
- Collaborating with VP, Sr. Director and Director audit personnel to manage the overall audit plan execution and deliver on integrated (Finance & Technology) audits.
- Managing the development, documentation, and maintenance of department’s Technology audit program.
- Leading through times of significant enterprise process and technology transformation and promoting adoption of new, digitized practices enabled by company transformation efforts.
- Providing oversight and methodology guidance during assurance and advisory reviews over key and emerging risk topics and technology, including but not limited to, Cybersecurity, Artificial Intelligence, Privacy & Data Governance.
- Identifying systematic issues across audits and partnering with stakeholders to diagnose root causes and recommend scalable control improvements.
- Acting as a control environment thought leader, not just issue validator.
- Rapidly assessing unfamiliar, emerging technologies, proposing right-sized audit plans, balancing risk precision vs. practicality in drawing audit conclusions.
- Serving as a trusted advisor across the Global Technology, Business and Compliance leadership, including VP level stakeholders, that support the Enterprise risks related to Cybersecurity, Artificial Intelligence, Privacy & Data Governance.
- Influencing actionable change, considering audit results, to continuously improve the compliance posture of the organization and help achieve business strategy/results.
- Leading through times of significant enterprise process and technology transformation and promoting adoption of new, digitized practices enabled by company transformation efforts.
- Fostering high levels of trust and transparency with senior leaders throughout the organization.
- Providing people leadership to the Technology Audit organization, in a high performing, positive and engaging working environment, representing the teams in the annual performance review cycle and any applicable talent councils.
- Direct supervision and responsibility over a team of managers and their direct reports (~10 FTE with potential to grow).
- Partnering and overseeing select third party SMEs that may be engaged to support audit activities.
- Taking ownership and collaborating across the department to help uplift current and future technical capabilities of the Internal Audit function and the talent pipeline.
- Serving as an Audit Leadership team member or sponsor for various pillar teams or Audit Risk Management teams related to key risk topics (e.g., Cybersecurity, Disruptive Technology and Privacy).
Qualifications
- A minimum of a bachelor's degree (BA/BS) is required. An advanced degree (MBA or MS) is a plus. Ideal concentrations – Accounting, Finance, Technology related disciplines.
- A minimum of 12 years of process & risk experience with focus on technology audit, assurance or compliance-related experience, including cyber risk, data/AI risk or related disciplines is required.
- Professional Services training and experience from a “Big 4” firm is preferred.
- Prior experience in developing and executing the technology components of an annual audit plan by coordinating various audits of internal controls over financial reporting and operational risks are required.
- Proven experience with auditing Cybersecurity risks, AI governance and emerging risks and privacy frameworks.
- Experience with artificial intelligence tools and technologies is required.
- Proven experience in Advisory or oversight roles (not just execution), supporting complex, cross-functional audits.
- Strong understanding of IT & Information technology General Controls Frameworks and standards such as NIST, ISO, SANS, COBIT, ITIL, COSO and regulations such as SOX, various Global Privacy standards, HIPAA is required.
- Strong understanding of business process fundamentals, including controls and related risks is required.
- Extensive experience financial and operational risk identification and validation.
- Knowledge and audit experience with risks related to cybersecurity, artificial intelligence, and data privacy/governance is required.
- Preferred Professional certification (e.g. CISA, CIA, CPA, CIRSC, CISSP) is strongly preferred.
- Experience with auditing SAP products and associated risks and internal controls is strongly preferred.
- Professional experience in roles supporting a Pharmaceutical / Innovative Medicine or Medical Technology company is strongly preferred.