We are seeking an experienced Information Security Auditor to join our team. The ideal candidate will have a strong understanding of information security principles and practices, as well as experience conducting comprehensive audits of information systems and IT infrastructure. The Information Security Auditor will work to ensure that our organization's data and assets are secured against cyber threats and that we are in compliance with relevant regulations and standards.

• Develop a comprehensive understanding of the organization’s business processes, goals, and strategy in order to provide sound analysis and interpretation of IT risks and technology challenges

• Be responsible for the examination and analysis of technology and business risks by performing IT audit work, developing audit plans, scope, procedures, and preparing audit reports

• Research industry trends applicable to the environment including automotive, financial, mobility, technology, cyber, and audits

• Assist in developing a risk-based IT audit plan; assist in assessing areas of risk requiring IT audit procedures; and execute IT audit procedures based on risk and impact to the business, across different applications, technologies and business processes, and in collaboration with internal and external partners and monitor completion of planned actions

• Support departmental transformation initiatives with pilots of new processes and audit responses

• Proactively identify areas of business initiatives and changes in the business environment and assess their impact on the business and the control environment

• Partner with global business audit on joint business and IT audits

• Interact regularly with Cyber Security, Internal Controls, and Legal teams

• Travels may be required as part of this role

Education Qualification:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field

Must have:

• Atleast 5 years of IT experience, including software engineering and application development

• One year of IT Security or IT audit experience

• A strong understanding of ISO 27001/2 standards

• Comfortable working in a dynamic environment with minimal direction

• Excellent verbal and written communication skills with the ability to communicate effectively with all levels of leadership

• Possesses excellent interpersonal skills, demonstrating professionalism in all actions

Nice to have:

• Audit certification desirable (CISA or similar technical certification)

• Extensive knowledge of industry security frameworks (NIST, ISO, etc.) and understanding of inherent risks and/or control risks

• Well versed in auditing digital risk, with the ability to address the effects of robotics process automation (RPA) and cognitive intelligence (CI) on processes, management, and the organization

• A variety of IT job experiences preferred including application programming, systems analysis, technical support, database administration, security administration and office automation

• Proven project management skills and effective at leading multiple initiatives simultaneously with minimal direction

Requisition ID : 25653