About Us: Global Exchange Group is a Spanish multinational company specializing in currency exchange services for the B2B2C segments.
We are one of the world leaders in this sector, with a network of over 423 offices in 70 international airports across 25 countries on 5 continents.
Job Overview: We are currently seeking an IT Internal Auditor to join our team. The successful candidate will be responsible for planning, executing, and reporting on internal audit reviews.
This role requires experience in IT audit/information security and risk management. The IT Internal Auditor will report to our Corporate Audit Director and be based in our HQ in Madrid, Spain.
Key Responsibilities:
* Plan, organize, conduct, and document audits according to our established audit program and schedule.
* Evaluate the design, implementation, and effectiveness of controls covering existing risks in areas such as logical security, communications, application development, systems operation, business processes, and their applications.
* General IT Controls: IT Governance, application development, maintenance, and change management, operational continuity, IT operations, vendor management.
* Report all findings to the management team and ensure corrective action plans are implemented accordingly by performing a review of the effectiveness of corrective actions.
* Diagnosis of control level, security, and protection of assets according to international standards: COBIT, ISO 27001, ISO 22301...
* Execution of compliance audits for General Data Protection Regulation (GDPR) and Artificial Intelligence Regulation.
Requirements:
* Degree in Computer Engineering or similar, or Business Administration with specific technological training.
* 3+ years of experience in IT audit/information security, with experience in internal audit methodology and IT risk management, security, and governance.
* Professional qualifications: CISA, COBIT, CISSP, CRISC, CISM, CEH, CIA, ISO 27001 lead Auditor, etc. are a plus.
* Technical knowledge and experience in Application Security, Network Security, Cloud Security, IT system architecture, etc.
* Experience with different information security and data privacy standards and frameworks such as ISO2700X/22301, DORA, GDPR, etc.
* Familiarity with business processes and the ability to identify and optimize workflows for better efficiency.
* An IT-oriented mindset, capable of navigating and utilizing technology solutions to drive results.
Competencies:
* Strategic vision.
* Strong leadership.
* Organizational skills.
* Strong analytical skills.
* Proactive mindset.
* Problem-solving capabilities.
* Communication skills.
Equal Employment Opportunity Statement: Global Exchange Group is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status.
All applications will be treated confidentially, and the protection of personal data provided will be guaranteed in accordance with current data protection regulations (General Data Protection Regulation - G.D.P.R. 2016/679).