Create Alert
Apply now »
Requisition ID:  118778

Senior Information Technology Auditor

We are seeking a Senior Information Technology Auditor who will serve as the lead in the development, implementation, and evaluation of information technology audits for assigned organizational areas and functional activities throughout Johns Hopkins University and Johns Hopkins Health System in accordance with the Annual Audit Plan. Audits include technical IT infrastructures, automated application controls, IT general controls, system pre-implementations, Advisory Reviews and teaming with operational auditors on projects. The Sr. Information Technology Auditor will set clear expectations for the audit team, coordinate assignments, monitor productivity, and ensure high quality output. Serve as technical resource to other team members. Apply knowledge of information technology principles and standards, proper administrative control procedures and good business practices, and an ability to assess risk relative to the proper application of controls.


    Performs assigned duties in accordance with the accepted professional standards requiring

    • Independence and objectivity.
    • Knowledge of information technology principles and standards, proper administrative control procedures and good business practices.
    • Ability to assess risk, relative to the proper application of controls.
    • Serve as a leader and a role model.


    Promote department image through quality work, sharing knowledge and professional dealings and maintain confidentiality of information.


    Reports to Associate Director of Information Technology Audits


    Specific Duties & Responsibilities

    • Document current information technology practices through interviews, observation, investigation and testing.
    • Test systems utilizing automated and/or traditional auditing methods and analyze results of testing.
    • Identify underlying causes and contributing factors to noted problems through investigation and analysis.
    • Identify and assess risks.
    • Identify appropriate solutions and formulate sound reasonable recommendations for management's corrective action, using appropriate criteria and cost-benefit considerations.
    • Prepare formal written reports, expressing conclusions on the adequacy and effectiveness of the system and the efficiency with which activities are carried out.
    • Plan internal audits by gathering specific relevant background information, e.g. IT documentation, policies and procedures, etc. from the institution’s information systems, web-based and other information sources.
    • Utilize organizational and regulatory knowledge to identify audit constraints and shape priorities.
    • Negotiate audit parameters with Director. When leading an audit, ensure all members understand their individual roles and responsibilities.
    • Design appropriate risk and control matrix and time budgets based upon interviews and evaluation of underlying financial and business risks.
    • Utilize advanced knowledge of Microsoft Office Suite applications and other business and audit-related software to conduct internal audit work and extraction of relevant business data and its analysis using analytical software.
    • Thoroughly address objectives and risks identified in audit planning and conclude nonoperational effectiveness and efficiency considering industry best practices.
    • Prepare clear and concise working papers and other documentation supporting discussions, operational facts and results of testing to justify conclusions. When serving in a project lead role, review all working papers related to the project.
    • Communicate recommendations to management through logical, clear and concise written and oral means to gain understanding and agreement on audit issues and commitment to implement corrective action.
    • Review internal controls on major systems development projects.
    • Serve as liaison between technical and non- technical personnel and participate on new system implementation and other committees providing suggestions and feedback; reviewing and analyzing draft designed internal controls and operating processes prior to system implementation; testing the completeness of the transfer of data from the old to the new system; post-implementation testing of controls, security, and transactions for adequacy and accuracy.
    • Perform follow-up internal audits to evaluate management’s implementation of action plans.
    • Monitor project status and issues on a timely basis and report progress and issues to the project lead or Director timely and regularly.
    • Evaluate feedback from customers and lessons learned from meetings and identify areas for improvement. Implement changes in future audits as needed.
    • Oversee the activities of Information Technology Auditors to ensure effective utilization in completing assigned projects.
    • Provide day-to-day support of Internal Auditors as needed, e.g. create open lines of communication, provide regulatory updates, advise on difficult situations, etc.
    • Participate in personnel development training and performance evaluation programs.
    • Provide feedback to assigned staff or to the director for inclusion in staff performance or project evaluation.
    • Interact appropriately with all levels of personnel, building good working relationships and establishing a network of organizational contacts.
    • Work independently and with varying levels of management.
    • Manage multiple projects or single projects in complex environments and manage competing priorities.
    • Assist other Auditors as appropriate and necessary to execute assigned projects.
    • Consider multiple approaches and develop solutions to problems.
    • Apply project management and time management skills.
    • Address difficult and sensitive issues in a timely and effective manner.
    • May be responsible for more complex and a greater volume of audits than those handled by Internal Auditors.
    • At the senior level may act as lead on a multi-entity audit requiring coordination of several other auditors; implement a new audit with no available history or background; be assigned high visibility/high priority audits.
    • Provide occasional IT support to operational auditors and support staff.
    • Promote department image through quality work, sharing knowledge and professional dealings and maintaining confidentiality of information.
    • Demonstrate a thorough understanding of healthcare and/or higher education industry.
    • Monitor changes in the industry and be able to understand the impact on your own work.
    • Perform other related duties as requested.


    Minimum Qualifications
    • Bachelor's Degree in Management Information Systems, Computer Science, Accounting or related field.
    • Five years of IT audit experience.
    • Additional education may substitute for required experience, and additional related experience may substitute for required education beyond a high school diploma/graduation equivalent, to the extent permitted by the JHU equivalency formula.


    Preferred Qualifications

    • Supervisory experience.
    • Experience in non-profit, higher education or healthcare industry.


    Technical Qualifications and Specialized Certifications


    Technical Skills and Expected Level of Proficiency

    • Audit Documentation and Reporting - Intermediate
    • IT Auditing Standards - Intermediate
    • IT General Controls - Intermediate
    • Oral and Written Communications - Intermediate
    • Project Management Intermediate
    • Risk Control - Intermediate
    • Software Licensing Auditing - Intermediate
    • Technical Analysis and Testing - Intermediate


    The core technical skills listed are most essential; additional technical skills may be required based on specific division or department needs.

     

     

    Classified Title: Sr. Information Technology Auditor 
    Job Posting Title (Working Title): Senior Information Technology Auditor   
    Role/Level/Range: ATP/04/PE  
    Starting Salary Range: $73,300 - $128,300 Annually (Commensurate w/exp.) 
    Employee group: Full Time 
    Schedule: Monday - Friday 8:30am - 5:00pm 
    FLSA Status: Exempt 
    Location: Hybrid/Eastern High Campus  
    Department name: Information Systems Auditing   
    Personnel area: University Administration 

     

     

    Total Rewards
    The referenced base salary range represents the low and high end of Johns Hopkins University’s salary range for this position. Not all candidates will be eligible for the upper end of the salary range. Exact salary will ultimately depend on multiple factors, which may include the successful candidate's geographic location, skills, work experience, market conditions, education/training and other qualifications. Johns Hopkins offers a total rewards package that supports our employees' health, life, career and retirement. More information can be found here: https://hr.jhu.edu/benefits-worklife/.

    Education and Experience Equivalency
    Please refer to the job description above to see which forms of equivalency are permitted for this position. If permitted, equivalencies will follow these guidelines: JHU Equivalency Formula: 30 undergraduate degree credits (semester hours) or 18 graduate degree credits may substitute for one year of experience. Additional related experience may substitute for required education on the same basis. For jobs where equivalency is permitted, up to two years of non-related college course work may be applied towards the total minimum education/experience required for the respective job.

    Applicants Completing Studies
    Applicants who do not meet the posted requirements but are completing their final academic semester/quarter will be considered eligible for employment and may be asked to provide additional information confirming their academic completion date.

    Background Checks
    The successful candidate(s) for this position will be subject to a pre-employment background check. Johns Hopkins is committed to hiring individuals with a justice-involved background, consistent with applicable policies and current practice. A prior criminal history does not automatically preclude candidates from employment at Johns Hopkins University. In accordance with applicable law, the university will review, on an individual basis, the date of a candidate's conviction, the nature of the conviction and how the conviction relates to an essential job-related qualification or function.

    Diversity and Inclusion
    The Johns Hopkins University values diversity, equity and inclusion and advances these through our key strategic framework, the JHU Roadmap on Diversity and Inclusion.

    Equal Opportunity Employer
    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

    EEO is the Law
    https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf

    Accommodation Information
    If you are interested in applying for employment with The Johns Hopkins University and require special assistance or accommodation during any part of the pre-employment process, please contact the Talent Acquisition Office at jhurecruitment@jhu.edu. For TTY users, call via Maryland Relay or dial 711. For more information about workplace accommodations or accessibility at Johns Hopkins University, please visit https://accessibility.jhu.edu/.

    Vaccine Requirements
    Johns Hopkins University strongly encourages, but no longer requires, at least one dose of the COVID-19 vaccine. The COVID-19 vaccine does not apply to positions located in the State of Florida. We still require all faculty, staff, and students to receive the seasonal flu vaccine. Exceptions to the COVID and flu vaccine requirements may be provided to individuals for religious beliefs or medical reasons. Requests for an exception must be submitted to the JHU vaccination registry. This change does not apply to the School of Medicine (SOM). SOM hires must be fully vaccinated with an FDA COVID-19 vaccination and provide proof of vaccination status. For additional information, applicants for SOM positions should visit https://www.hopkinsmedicine.org/coronavirus/covid-19-vaccine/ and all other JHU applicants should visit https://covidinfo.jhu.edu/health-safety/covid-vaccination-information/.

    The following additional provisions may apply, depending upon campus. Your recruiter will advise accordingly.
    The pre-employment physical for positions in clinical areas, laboratories, working with research subjects, or involving community contact requires documentation of immune status against Rubella (German measles), Rubeola (Measles), Mumps, Varicella (chickenpox), Hepatitis B and documentation of having received the Tdap (Tetanus, diphtheria, pertussis) vaccination. This may include documentation of having two (2) MMR vaccines; two (2) Varicella vaccines; or antibody status to these diseases from laboratory testing. Blood tests for immunities to these diseases are ordinarily included in the pre-employment physical exam except for those employees who provide results of blood tests or immunization documentation from their own health care providers. Any vaccinations required for these diseases will be given at no cost in our Occupational Health office.
    Hybrid: On-site 1-2 days a week

    Apply now »