ROLE SUMMARY
This IT audit opportunity provides work/life integration where colleagues are able to integrate personal life and demands of a career while balancing competing priorities at work and home optimally.
The work/life balance is attained through a flexible work arrangement that includes working from auditor’s base office in Mumbai and working from home for up to 2 days a week while the colleague is not on an audit engagement.
Auditors have primary responsibility for conducting financial and IT audits as part of a team at Pfizer locations worldwide, as well as conducting risk oversight activities. Auditors also participate on strategic and operations teams within Corporate Audit.
ROLE RESPONSIBILITIES
Conduct independent evaluations of Pfizer’s Information Systems and compliance control processes worldwide to ensure Pfizer’s risks are properly managed.
Present the results of audits to senior site and division management, including practical recommendations to address identified risks, requiring strong negotiation and influence skills.
Prepare formal written reports setting forth recommendations for local, division and Corporate management to strengthen and improve operations, as well as identify cost or efficiency savings.
Actively participate on departmental and/or cross-functional teams addressing internal and external issues that support the department’s operations and strategy. This may include updating our audit approach for ensuring compliance with the FCPA, Healthcare Compliance and Sarbanes-Oxley rules and regulations.
Domestic and international business travel is required.
QUALIFICATIONS
Education: MA/MS/MBA preferred
Discipline(s): Information Systems Auditing required, SAP Experience preferred
Certification(s): Certified Information Systems Auditor(CISA), Certified Public Accountant(CPA) ,Certified Internal Auditor(CIA) or Chartered Accountant (CA) preferred
Other Training: Foreign language skills preferred
Minimum range of years’ experience: 5-7 years
Type of industry/organizations: Public accounting and/or internal auditing required; multi-national pharmaceutical experience a plus; international experience a plus; large corporation experience preferred but not required
Candidate must be able to work independently with minimal supervision by testing IT controls from Costa Rica while reporting and interacting with Audit Manager in the United States. Also, Candidate must be able to travel internationally when required.
Candidates should have solid technical skills in one or, preferably, several technical areas below:
GxP regulations, guidelines, and industry standards as they apply to computer systems used within the Life Sciences and Pharmaceutical industry, including FDA regulations 21 CFR Part 11 electronic records/electronic signatures and EU Annex 11
Review and evaluate IT and Process controls in compliance with the Sarbanes-Oxley Act of 2002
Strong understanding of SAP, SAP Security and best practices solutions for SAP upgrades and implementations. SAP security knowledge should include but is not limited to SAP Authorization Concepts, Roles, Users Administration, SOD conflict resolution, SAP Access Controls, & SAP GRC Suite.
Knowledge of Quality Assurance and Quality Management principles, including an understanding of computer system validation practices as they apply to the Life Sciences and Pharmaceutical industry.
Information Systems Audit and Control Association (ISACA) IT Standards, Guidelines and Procedures for Auditing and Control and Code of Professional Ethics.
Control Objective for IT (COBIT) standards or equivalent.
IT security and control practices for relevant platforms and systems such as Mainframe, AS/400, Distributed (Unix, Windows) environments, Web-based technology, and LAN/WANs.
Candidates should also have solid audit skills in all areas below:
Planning and project management while meeting multiple deadlines.
Collecting and analyzing complex data, evaluating information, and drawing logical conclusions.
Conducting reviews of all products of audit work performed by staff (work papers, testing and sampling plans, status reports, draft issues, etc.).
Effective verbal and written communications, including active listening and presenting findings and recommendations in a clear and concise manner, and resolving issues that may arise in a professional manner
Establishing and maintaining good working relationships with co-workers, staff and external contacts, and working effectively in a professional team environment in a matrixed organization.
Performing timely and constructive staff reviews.
Pfizer is an equal opportunity employer and complies with all applicable equal employment opportunity legislation in each jurisdiction in which it operates.