Internal IT Auditor
Seville
Solera
Explore Solera's leading automotive software solutions designed to optimize every aspect of vehicle management and maintenance.Senior Internal Auditor /Spain
Who We Are
Solera is a global leader in data and software services that strives to transform every touchpoint of the vehicle lifecycle into a connected digital experience. In addition, we provide products and services to protect life’s other most important assets: our homes and digital identities. Today, Solera processes over 300 million digital transactions annually for approximately 235,000 partners and customers in more than 90 countries. Our 6,500 team members foster an uncommon, innovative culture and are dedicated to successfully bringing the future to bear today through cognitive answers, insights, algorithms and automation. For more information, please visit solera.com.
The Role
Global Audit and Risk Services is currently looking for a technically skilled Internal Auditor to assist in ensuring that the Information Security Management System complies with ISO 2700X / 22301 standards, to Solera’s IT controls requirements, and other standards. The IT Internal Auditor will be responsible for ensuring that Solera’s entities remain compliant with applicable security standards ISO 2700X / 22301 providing confidence to management, external stakeholders, and other internal functions.
What You’ll Do
Provide a deep understanding of information security (ISO 2700X) and business continuity (ISO 22301) standards for logical and physical security implementations.
• Provide independent, objective assessments to evaluate whether information security/business continuity management systems comply with ISO 2700X / 22301 Standards.
• Provide detailed assessment reports following each audit using the formal Internal Audit procedure and process.
• Plan, organize, conduct, and document audits, according to our established audit program and audit schedule.
Establish Internal audit plan based on business needs and associated risks.
• While on audits, assess IT controls, identify control weaknesses for process improvements. Perform follow-up of implementation of communicated and agreed upon remediation actions and timely escalations.
• Report all findings to the management team and ensure that corrective action plans are implemented accordingly by performing review of effectiveness of corrective actions.
• Providing regular Internal Audit status report to Local and Global management.
• The successful candidate will also be required to provide support to the Solera information security and business functions as required by the Global Audit and Risk Services Management.
What You’ll Bring
• Bachelor’s/Master’s degree in Technology or related field.
• 3+ years of experience in IT audit / Information security; experience with internal audit methodology.
• Strong technical knowledge and experience of SDLC, Application Security, Network Security, Cloud Security, IT system architecture, etc.
• Experience with different information security and data privacy standards and frameworks such as ISO2700X / 22301, NIST, SOX, SOC, GDPR etc.
• Strong data analytical and data automation skills.
• Practical experience in risks and compliance assessments (ITGC / ALC etc.) over digital solutions, technology, and systems.
• Team player with a focus on the big picture and overall success of our customers, the team, and Solera.
• Build strong relationships with relevant business partners to understand their business and identify appropriate risk mitigations and opportunities to add value.
• Must be self-driven and work independently in a multinational environment.
• Passion and commitment to quality and continual improvement.
• Ability to work in a fast-paced team-oriented environment where change is constant and needs to be managed.
• Professional qualifications: CISA, CISSP, CRISC, CISM, CEH, CIA, ISO 27001 lead Auditor, etc are a plus.
• Must be performance driven, detailed, and results oriented.
• Excellent communication and presentation skills with all management levels.
• Good command of English, both written and spoken.
• Willing to work flexible hours and travel, if needed.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits Automation CEH CIA CISA CISM CISSP Cloud Compliance CRISC GDPR ISO 22301 ISO 27000 ISO 27001 Network security NIST Privacy SDLC SOC SOX
Perks/benefits: Flex hours
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.