We are seeking a Senior Information Technology Auditor who will serve as the lead in the development, implementation, and evaluation of information technology audits for assigned organizational areas and functional activities throughout Johns Hopkins University and Johns Hopkins Health System in accordance with the Annual Audit Plan. Audits include technical IT infrastructures, automated application controls, IT general controls, system pre-implementations, Advisory Reviews and teaming with operational auditors on projects. The Sr. Information Technology Auditor will set clear expectations for the audit team, coordinate assignments, monitor productivity, and ensure high quality output. Serve as technical resource to other team members. Apply knowledge of information technology principles and standards, proper administrative control procedures and good business practices, and an ability to assess risk relative to the proper application of controls.

Performs assigned duties in accordance with the accepted professional standards requiring

• Independence and objectivity.
• Knowledge of information technology principles and standards, proper administrative control procedures and good business practices.
• Ability to assess risk, relative to the proper application of controls.
• Serve as a leader and a role model.

Promote department image through quality work, sharing knowledge and professional dealings and maintain confidentiality of information.

Reports to Associate Director of Information Technology Audits

Specific Duties & Responsibilities

• Document current information technology practices through interviews, observation, investigation and testing.
• Test systems utilizing automated and/or traditional auditing methods and analyze results of testing.
• Identify underlying causes and contributing factors to noted problems through investigation and analysis.
• Identify and assess risks.
• Identify appropriate solutions and formulate sound reasonable recommendations for management's corrective action, using appropriate criteria and cost-benefit considerations.
• Prepare formal written reports, expressing conclusions on the adequacy and effectiveness of the system and the efficiency with which activities are carried out.
• Plan internal audits by gathering specific relevant background information, e.g. IT documentation, policies and procedures, etc. from the institution?s information systems, web-based and other information sources.
• Utilize organizational and regulatory knowledge to identify audit constraints and shape priorities.
• Negotiate audit parameters with Director. When leading an audit, ensure all members understand their individual roles and responsibilities.
• Design appropriate risk and control matrix and time budgets based upon interviews and evaluation of underlying financial and business risks.
• Utilize advanced knowledge of Microsoft Office Suite applications and other business and audit-related software to conduct internal audit work and extraction of relevant business data and its analysis using analytical software.
• Thoroughly address objectives and risks identified in audit planning and conclude nonoperational effectiveness and efficiency considering industry best practices.
• Prepare clear and concise working papers and other documentation supporting discussions, operational facts and results of testing to justify conclusions. When serving in a project lead role, review all working papers related to the project.
• Communicate recommendations to management through logical, clear and concise written and oral means to gain understanding and agreement on audit issues and commitment to implement corrective action.
• Review internal controls on major systems development projects.
• Serve as liaison between technical and non- technical personnel and participate on new system implementation and other committees providing suggestions and feedback; reviewing and analyzing draft designed internal controls and operating processes prior to system implementation; testing the completeness of the transfer of data from the old to the new system; post-implementation testing of controls, security, and transactions for adequacy and accuracy.
• Perform follow-up internal audits to evaluate management?s implementation of action plans.
• Monitor project status and issues on a timely basis and report progress and issues to the project lead or Director timely and regularly.
• Evaluate feedback from customers and lessons learned from meetings and identify areas for improvement. Implement changes in future audits as needed.
• Oversee the activities of Information Technology Auditors to ensure effective utilization in completing assigned projects.
• Provide day-to-day support of Internal Auditors as needed, e.g. create open lines of communication, provide regulatory updates, advise on difficult situations, etc.
• Participate in personnel development training and performance evaluation programs.
• Provide feedback to assigned staff or to the director for inclusion in staff performance or project evaluation.
• Interact appropriately with all levels of personnel, building good working relationships and establishing a network of organizational contacts.
• Work independently and with varying levels of management.
• Manage multiple projects or single projects in complex environments and manage competing priorities.
• Assist other Auditors as appropriate and necessary to execute assigned projects.
• Consider multiple approaches and develop solutions to problems.
• Apply project management and time management skills.
• Address difficult and sensitive issues in a timely and effective manner.
• May be responsible for more complex and a greater volume of audits than those handled by Internal Auditors.
• At the senior level may act as lead on a multi-entity audit requiring coordination of several other auditors; implement a new audit with no available history or background; be assigned high visibility/high priority audits.
• Provide occasional IT support to operational auditors and support staff.
• Promote department image through quality work, sharing knowledge and professional dealings and maintaining confidentiality of information.
• Demonstrate a thorough understanding of healthcare and/or higher education industry.
• Monitor changes in the industry and be able to understand the impact on your own work.
• Perform other related duties as requested.

• Bachelor's Degree in Management Information Systems, Computer Science, Accounting or related field.
• Five years of IT audit experience.
• Additional education may substitute for required experience, and additional related experience may substitute for required education beyond a high school diploma/graduation equivalent, to the extent permitted by the JHU equivalency formula.

• Supervisory experience.
• Experience in non-profit, higher education or healthcare industry.

Technical Qualifications and Specialized Certifications

Technical Skills and Expected Level of Proficiency

• Audit Documentation and Reporting - Intermediate
• IT Auditing Standards - Intermediate
• IT General Controls - Intermediate
• Oral and Written Communications - Intermediate
• Project Management Intermediate
• Risk Control - Intermediate
• Software Licensing Auditing - Intermediate
• Technical Analysis and Testing - Intermediate

The core technical skills listed are most essential; additional technical skills may be required based on specific division or department needs.

Classified Title: Sr. Information Technology Auditor 
Job Posting Title (Working Title): Senior Information Technology Auditor   
Role/Level/Range: ATP/04/PE  
Starting Salary Range: $73,300 - $128,300 Annually (Commensurate w/exp.) 
Employee group: Full Time 
Schedule: Monday - Friday 8:30am - 5:00pm 
FLSA Status: Exempt 
Location: Hybrid/Eastern High Campus  
Department name: Information Systems Auditing   
Personnel area: University Administration 

About Johns Hopkins University

Johns Hopkins University remains committed to its founding principle, that education for all students should be grounded in exploration and discovery. Hopkins students are challenged not just to learn but also to advance learning itself. Critical thinking, problem solving, creativity, and entrepreneurship are all encouraged and nourished in this unique educational environment. After more than 130 years, Johns Hopkins remains a world leader in both teaching and research. Faculty members and their research colleagues at the university's Applied Physics Laboratory have each year since 1979 won Johns Hopkins more federal research and development funding than any other university. The university has nine academic divisions and campuses throughout the Baltimore-Washington area. The Krieger School of Arts and Sciences, the Whiting School of Engineering, the School of Education and the Carey Business School are based at the Homewood campus in northern Baltimore. The schools of Medicine, Public Health, and Nursing share a campus in east Baltimore with The Johns Hopkins Hospital. The Peabody Institute, a leading professional school of music, is located on Mount Vernon Place in downtown Bal...timore. The Paul H. Nitze School of Advanced International Studies is located in Washington's Dupont Circle area.

Show more

Show less

Connections working at Johns Hopkins University