Technology Auditor

Technology Auditor

Location – Irvine, CA

Hyundai Auto Ever America (HAEA), the dynamic IT powerhouse behind Hyundai Motor Corporation, a Fortune 500 global leader in the automotive industry. As a key affiliate, we provide cutting‑edge IT services and support to top brands including Kia, Genesis, Hyundai Translead, Hyundai Mobis, Hyundai Capital, and Glovis.

HAEA offers a truly global and collaborative environment. Here, you’ll drive innovation, boost operational efficiency, and help shape the future of mobility for the Hyundai Motor Group.

At HAEA, we understand that IT is the cornerstone of today’s fast‑evolving digital world. By uniting all IT resources under one roof, we deliver consistent, top‑quality solutions while serving as the crucial information link between Hyundai’s Global Headquarters and North American operations.

If you’re passionate about technology and eager to make a real impact at a world‑class company, Hyundai Auto Ever America is the place to grow your career. Join us and be part of the transformation that’s driving the future of automotive innovation.

We are hiring a Technology Auditor to strengthen our control testing and validation capability across the enterprise technology environment. In this role, reporting to the Technology Audit Manager, you will design and execute a risk‑based control testing program across the technology stack—including cloud, applications, infrastructure, networks, identity, and security tooling—and provide clear, actionable results to technology and risk stakeholders.

You’ll partner closely with control owners, engineers, and risk leaders to validate that controls are designed effectively and operating as intended, and to drive sustainable remediation where gaps are identified.

• Develop and maintain a control testing & validation plan aligned to the organization’s technology risk landscape, including scope, frequency, methodology, and sampling approaches.
• Execute control design and operating effectiveness testing across technology domains (e.g., cloud, infrastructure, network, application, SDLC, IAM, logging/monitoring, vulnerability management, backup/DR).
• Create testing procedures and work papers that are repeatable, audit‑ready, and defensible; ensure evidence is complete, accurate, and traceable.
• Perform walkthroughs and interviews with technology stakeholders to confirm control intent, ownership, and implementation details.
• Validate control implementation technically (where applicable) by inspecting configurations, system settings, logs, tickets, and pipeline artifacts (e.g., CI/CD).
• Identify control gaps and root causes, assess risk impact, and provide clear recommendations and remediation guidance.
• Track and validate remediation activities and re‑test controls to confirm closure.
• Produce concise reporting (test results, summaries, themes, and metrics) for IRM leadership and customers.
• Support internal/external audits and regulatory inquiries by providing documentation, testing artifacts, and control narratives.
• Continuously improve the control testing program through standardization, automation opportunities, and alignment to evolving technology.

• Cloud governance and security (e.g., AWS/Azure/GCP controls, configuration baselines)
• Identity & access management (SSO, MFA, privileged access, joiner/mover/leaver)
• Network security (segmentation, firewall rule governance, secure remote access)
• Infrastructure and endpoint controls (hardening, patching, EDR)
• Application controls (secure configuration, change management, access controls)
• SDLC / Dev Sec Ops  controls (code scanning, approvals, pipeline controls, secrets management)
• Logging, monitoring, incident response integration
• Vulnerability management (scanning, remediation SLAs, exception handling)

• Experience: 5+ years of experience in technology audit, technology risk, or control testing/assurance. Proven experience performing control testing and validation (design and operating effectiveness), including sampling and evidence standards, across a broad spectrum of technology domains.
• Education: Bachelor’s…