Global Senior IT Internal Auditor

The Company

Dexcom Corporation (NASDAQ DXCM) is a pioneer and global leader in continuous glucose monitoring (CGM). Dexcom began as a small company with a big dream: To forever change how diabetes is managed. To unlock information and insights that drive better health outcomes. Here we are 25 years later, having pioneered an industry. And we're just getting started. We are broadening our vision beyond diabetes to empower people to take control of health. That means personalized, actionable insights aimed at solving important health challenges. To continue what we've started: Improving human health.

We are driven by thousands of ambitious, passionate people worldwide who are willing to fight like warriors to earn the trust of our customers by listening, serving with integrity, thinking big, and being dependable. We've already changed millions of lives and we're ready to change millions more. Our future ambition is to become a leading consumer health technology company while continuing to develop solutions for serious health conditions. We'll get there by constantly reinventing unique biosensing-technology experiences. Though we've come a long way from our small company days, our dreams are bigger than ever. The opportunity to improve health on a global scale stands before us.

Meet the team:
Are you passionate about understanding the “why” in managing risk and continuous professional development? At Dexcom, our people are passionate about what we do, enjoy teamwork, and the ability to make a difference in this inclusive workplace. Together we look to create an organization that empowers our customers to take control of their health.  We hope to see you join us on this journey.

As the Senior IT Internal Auditor, you will play a key role supporting the Dexcom Global internal audit function.  In this position, you will be responsible for executing audits for Sarbanes-Oxley (SOX), IT operational audits, and have an opportunity to work on advanced audit techniques. 

This role will operate out of the Dexcom San Diego office to perform various audits and to support Internal Audit’s consultative approach to drive the “compliance-by-design” mindset throughout our organization.  This role will interact with all levels across the organization and build relationships with external and internal auditors. There’s room for professional growth and the opportunity to drive solutions for greater efficiency and value. 

Where you come in: 

• You work closely with internal audit teams on integrated risk assessments, scoping, and testing programs in accordance with COSO and COBIT frameworks.

• You examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk, and provide value adding recommendations. You apply risk and control objective concepts to assess control design and develop a test approach for the key controls.

• You ensure the completion of high-quality integrated walkthrough design documentation, which demonstrates your understanding of IT processes, key reports reliance, identified risks, and design of controls (including Management Review Control requirements).

• You execute quality SOX 404 control testing to evaluate control effectiveness with complete and accurate deliverables and conclude results in a timely manner with minimal review notes to ensure compliance with US GAAP and best practices. Liaise with both process/control owners and external auditors for Dexcom integrated financial statement audits. 

• You communicate and control report design deficiencies and controls not operating as designed and provide suggestions to management on ways to mitigate risk or enhance the effectiveness of processes. Validate with management the resolution and implementation of corrective action plans.

• You leverage data-driven approaches to analyze business processes, including business reliance on technologies, to assess controls/risks and design audit procedures. Experience with data analytics audit a plus. 

• Communicate technical issues in simplified terms to the relevant IT And non-IT Business System owners.

• You perform other duties, special projects, and/or various internal audits, over a board range of IT controls, to adequately meet the audit/project objectives, changing business conditions and/or requirements, identify opportunities for process improvements, and effectively.

• Prepare internal audit reports and presentations that clearly and succinctly describe IT audit/advisory results. Provide regular controls compliance metrics reporting and tracking.

• You keep abreast of regulatory and IT compliance developments within or outside of the company as well as evolving best practices in compliance control.  Actively improve technical and project management skills through on-the-job feedback, performance evaluations, mentoring, including maintaining your CPE, and develop as a subject matter professional in audit domains or areas.

What makes you successful: 

• You have a Bachelor’s degree in Computer Information Systems, IT, or related. Programming knowledge a plus.

• You demonstrate proven organizational, time-management, analytical, and communication skills and an ability to work both in teams and independently to effectively execute projects.

• You are in possession of or working towards a professional certification as a Certified Information Systems Auditor (CISA), CISM, CIA, and/or CISSP certification. Training in security/cloud audit a plus. You continue to develop new skills and stay abreast of applicable laws and the latest regulatory/SEC/audit requirements.  

• You have proven experience in testing over IT General Controls (ITGC), IT Application controls, key reports, may have some experience with analysis and data analytics, and project leadership from a large manufacturing company and at least 3-4 years from public accounting firm (Big4 a plus).  

• You have a strong and current understanding of auditing standards and practical hands-on experience evaluating risk and executing internal audit programs. You have a strong understanding of control frameworks (COSO, COBIT, ISO, PCAOB, NIST), IT auditing standards. Working knowledge of the NIST Cybersecurity Framework and cloud infrastructure risk management a plus.

• You bring 5-8 years minimum hands-on IT audit experience, including IT SOX compliance, IT application and operating system audit experience. You have hands-on knowledge and experience in testing ERP systems, Oracle EBS preferred, Oracle Fusion, Warehouse Management System, and FCCS. Healthcare manufacturing experience a plus.

• You have experience in auditing new system implementations (SDLC) for SOX control requirements a plus; and can provide guidance and recommendations for improvements to meet trending compliance requirements. 

• Must be capable of maintaining the confidentiality of sensitive information while working with a variety of technologies, security problems, and troubleshooting of the network.

• You have a flexible schedule to work with our global audit team and international Finance, Functional, and IT teams.  Willing and able to travel up to 15% of the time.

What you’ll get: (this section should not be modified)

• A front row seat to life changing CGM technology. Learn about our brave #dexcomwarriors community.

• A full and comprehensive benefits program.

• Growth opportunities on a global scale.

• Access to career development through in-house learning programs and/or qualified tuition reimbursement.

• An exciting and innovative, industry-leading organization committed to our employees, customers, and the communities we serve.

Travel Required:

• 5-15%

Experience and Education Requirements:

•  Typically requires a Bachelor’s degree and a minimum of 5 – 8 years of related experience

Remote Workplace: Your location will be a home office; you are not required to live within commuting distance of your assigned Dexcom site (typically 75 miles/120km). If you reside within commuting distance of a Dexcom site (typically 75 miles/120km) a hybrid working environment may be available. Ask about our Flex workplace option.

Please note: The information contained herein is not intended to be an all-inclusive list of the duties and responsibilities of the job, nor are they intended to be an all-inclusive list of the skills and abilities required to do the job. Management may, at its discretion, assign or reassign duties and responsibilities to this job at any time. The duties and responsibilities in this job description may be subject to change at any time due to reasonable accommodation or other reasons. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions. 

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability. Dexcom’s AAP may be viewed upon request by contacting Talent Acquisition at talentacquisition@dexcom.com. 

If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact Dexcom Talent Acquisition at talentacquisition@dexcom.com. 

View the OFCCP's Pay Transparency Non Discrimination Provision at this link. 

Meritain, an Aetna Company, creates and publishes the Machine-Readable Files on behalf of Dexcom. To link to the Machine-Readable Files, please click on the URL provided:  https://health1.meritain.com/app/public/#/one/insurerCode=MERITAIN_I&brandCode=MERITAINOVER/machine-readable-transparency-in-coverage?reportingEntityType=TPA_19874&lock=true

To all Staffing and Recruiting Agencies: Our Careers Site is only for individuals seeking a job at Dexcom. Only authorized staffing and recruiting agencies may use this site or to submit profiles, applications or resumes on specific requisitions. Dexcom does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to the Talent Acquisition team, Dexcom employees or any other company location. Dexcom is not responsible for any fees related to unsolicited resumes/applications.
 

Salary: