Manager, Internal Audit IT
CareFusion Corporation 15 reviews - San Diego, CA

This job posting is no longer available on CareFusion Corporation. Find similar jobs:Manager jobs - CareFusion Corporation jobs

Life-changers work here

CareFusion Life-changers find innovative ways to improve our customers' ability to provide healthcare to their patients. One way is our search for bold and inspired employees across the globe. Are you ready to change lives? Join our 15,000 employees to help clinicians solve some of healthcare's most critical challenges.

Meet one of our Life-changers.

Job Title: Mgr, Internal Audit IT Manager

Job Family Group (Function): Finance - Center of Expertise

Job Family: Audit & Financial Controls

Track/Level: P4

The Internal Audit IT Manager – reporting to the VP of Internal Audit will be responsible for ensuring that IT internal controls over financial reporting are designed and operating effectively within the Company. They will also be responsible for SSAE 16 audit oversight and management with third party audit team and CFN customer requests for audit related inquires.

This will include but is not limited to the following responsibilities:

  • Assist with the annual SOX scoping exercise for the IT organization and develop the annual IT SOX audit plan.
  • Manage control rationalization workshops with process owners across the IT organization.
  • Oversee maintenance and preparation of clear, detailed and accurate SOX 404 documentation, including narratives, risk and control matrices, test plans, test results, and management responses and remediation.
  • Plan and direct the timely execution of SOX audits over Application and IT General Controls.
  • Validate SOX control testing performed by the various IT teams across the IT organization.
  • Analyze and assess SOX related impact re: third party software SSAE 16 (SOC 1 or 2) audit reports.
  • Utilize sound judgment to identify and assess: risk, materiality, adequacy of audit evidence, compensating controls, and significance of findings.
  • Timely reporting of SOX deficiencies to management, completion of deficiency assessment and development and monitoring of remediation plans in conjunction with management
  • Act as advisor to the IT organization and CISO leadership with regard to policy setting, process improvements, and audit requests. Work with the Quality management team to assist with risk governance and controls.
  • Operates with increased independence in managing complex tasks/projects.
  • Coordinates and supports requests for audits, received from senior executives and other customer/business partner groups.
  • Be the co-ordination point for external audit team for IT control walkthroughs and testing.
  • Prepares SOX reports in good form, clearly communicating risks, key control issues and recommendations.
  • Operates with increased independence in managing complex tasks/projects.
  • Manages SAP GRC tool for finance, assess business needs, coordinates change requests with IT, manages SOD conflicts, manages role design and needs with finance and manufacturing teams, runs reporting and analytics to establish compliance and risk gaps.
  • Works with various business units to coordinate annual SOC 2 and NIST audit with third party audit team. Monitor risk, compliance, policy changes and deployment, quality impacts, remediation activity. Assist with various Data Center controls and required SSAE 16/SOC reports.
  • Assist business and sales team with customer inquiries and requests for SOC 2/NIST-800-66, data security and privacy (ePHI) standards and audit results.
  • Assists Internal Audit team and leadership with financial SOX testing, audits/projects/investigations, annual audit plan, risk assessment, budget, team development.

  • Subject matter expert re: SOX controls and testing (financial as well as IT controls)
  • Applies in-depth knowledge of specialty area and understanding of other disciplines to projects and initiatives.
  • Applies project management skills/techniques.
  • Subject matter expert re: SSAE 16, SOC 1 and 2 audits, NIST-800-66, ePHI
  • Comprehensive understanding of SAP, JD Edwards, Oracle
Problem Solving

  • Solves novel problems that impact product/technologies.
  • Applies sophisticated analytical thought and provides unique thought leadership in evaluating issues.
  • Identifies root causes of problems and discusses solutions with senior management
Relationship Focus

  • Mentors and provides specialized technical guidance to others within own function.
  • Provides technical expertise to peers in other functions.
  • Builds networks involving coordination among multiple functions.
  • Partner with functional leadership to influence priorities and objectives
Minimum Job Qualifications

  • Bachelor’s degree in computer science/Information Technology, accounting and/or other appropriate academic major
  • Experience in applying key audit concepts such as frameworks, control design and assessments of operating effectiveness
  • Strong background in process and controls and understanding of the operating business environment from a controls and compliance perspective
  • Ability to work independently while planning, driving and directing audits from start to finish
  • Ability to demonstrate advanced writing skills and complete IT audit reports
  • Ability to contribute effectively in a dynamic team environment
  • Strong interpersonal skills to successfully develop relationships among various groups, such as IT management, corporate management and external auditors
  • Excellent writing and communication skills
  • Certification is desired (CISA, CIA, CISM or CISSP)
Minimum Experience

  • Minimum 3 years experience within a public accounting firm
  • Experience working within the Medical Device or medical service industry a plus

About this company
15 reviews
CareFusion is a medical-technology company that is currently a wholly owned subsidiary of Cardinal Health. We expect to become a separate...