CrawlJobs Logo
General Motors Logo General Motors · IT - Administration

Lead Auditor - Cybersecurity Assurance

United States, Detroit · Job Posted June 03, 2026
Apply Position
Job Link Share

Job Description

General Motors Audit Services (GMAS) is seeking a Lead Auditor, Cybersecurity Assurance to lead risk-based cybersecurity assurance engagements across a complex global environment. This role is responsible for planning, executing, and reporting on reviews that evaluate the design and operating effectiveness of cybersecurity and technology controls. This individual will work across a broad range of domains, including enterprise technology, cloud, identity and access management, application security, incident response, and infrastructure security. The role also partners closely with business and technology leaders to communicate risk, drive practical remediation, and help strengthen GM’s overall cybersecurity posture. This is a strong opportunity for a cybersecurity audit professional who wants exposure to a large-scale, highly connected environment and enjoys combining technical depth, sound judgment, and leadership.

Job Responsibility

  • Lead end-to-end cybersecurity assurance engagements, including scoping, planning, fieldwork, issue development, and reporting
  • Evaluate the effectiveness of cybersecurity controls across key risk areas such as identity and access management, logging and monitoring, vulnerability management, incident response, backup and recovery, and security configuration
  • Apply a risk-based perspective to identify control gaps, emerging threats, and opportunities to improve cybersecurity resilience
  • Review testing workpapers and evidence to ensure conclusions are clear, supportable, and aligned to audit standards and methodology
  • Develop concise, executive-ready reports that clearly articulate risk, root cause, and practical corrective actions
  • Present results and themes to business and technology leaders, including senior management, and align remediation priorities
  • Coach and support team members throughout the audit lifecycle, including testing strategy, issue validation, and stakeholder communication
  • Build strong working relationships with stakeholders across cybersecurity, IT, privacy, compliance, and other relevant functions
  • Contribute to continuous improvement of the cybersecurity assurance program, including risk assessment, planning, and reusable testing approaches
  • Monitor remediation activity and validate that agreed actions appropriately address identified risk
  • Maintain a strong understanding of GM operations and technology landscape to anticipate emerging cyber risks and adapt assurance coverage accordingly

Requirements

  • Bachelor's degree in Information Systems, Computer Science, Cybersecurity, or a related field (or equivalent related experience)
  • 5+ years of experience in IT audit, cybersecurity, risk management, or technology assurance, including leading engagements and guiding teams through planning, testing, and reporting
  • Strong understanding of cybersecurity and technology risk, including evaluating confidentiality, integrity, and availability (CIA) across complex, interconnected systems
  • Strong knowledge of internal controls and risk frameworks such as NIST CSF, NIST 800-53, COBIT, ISO 27001, or similar frameworks
  • Understanding of technology infrastructure and operations (e.g., endpoint/server hardening, monitoring, backup/recovery, and change/release practices)
  • Experience assessing controls across core cybersecurity domains such as Identity & Access Management (IAM), privileged access, logging and monitoring, incident response, backup and recovery, vulnerability management, and security configuration controls
  • Strong written and verbal communication skills
  • Demonstrated ability to work independently, exercise sound judgment, manage multiple priorities, and deliver results in a fast-paced environment
  • Domestic travel: 5%–10%. International travel: possible

Nice to have

  • Graduate degree in Information Technology, Cybersecurity, or a related field
  • Professional certification(s) such as CISA, CISSP, CISM, CRISC, CEH, or other relevant security or technology certifications
  • Big 4 public accounting firm experience and/or a recognized internal audit/assurance program
  • Working knowledge of networking and security technologies (e.g., routing/switching, ACLs, IDS/IPS, firewalls, and secure remote access)
  • Working knowledge of application security concepts, including secure development practices, vulnerability management, and common testing approaches
  • Familiarity with operating system platforms (e.g., UNIX/Linux, Windows) and security best practices for each
  • Hands-on experience with scripting, automation, or data analysis to enable more efficient testing (e.g., PowerShell, Python, SQL)
  • Strong interpersonal skills and demonstrated people leadership
  • Strong analytical, problem-solving, and professional judgment skills
General Motors - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead Auditor - Cybersecurity Assurance

8 matching positions

Senior Software Quality Engineer

We are seeking a highly skilled and experienced Software Quality Engineer to joi...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
aeva.com Logo
Aeva
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Computer Science, Computer Engineering, or a related technical discipline
  • A minimum of 5 years of experience in software quality assurance within the automotive industry
  • Extensive knowledge and practical experience with Automotive SPICE (ASPICE) process assessments and improvements
  • Proven expertise in Cybersecurity standards (ISO 21434) and Functional Safety (ISO 26262) for automotive applications
  • Strong understanding of software development lifecycles, software testing methodologies, and quality assurance best practices
  • Excellent problem-solving skills, with the ability to analyze complex issues and develop effective solutions
  • Strong communication and interpersonal skills, with the ability to work effectively in a team-oriented environment
  • Experience with automated testing tools and frameworks is highly desirable
  • Certified Quality Management Systems auditor (e.g., ISO 9001) or ASPICE assessor
  • Strong project management skills with the ability to manage multiple priorities and deliverables effectively
Job Responsibility
Job Responsibility
  • Lead and manage quality assurance activities throughout the product development lifecycle to ensure compliance with Automotive SPICE (ASPICE) standards
  • Develop, implement, and maintain software quality assurance processes and methodologies to meet Cybersecurity (ISO 21434) and Functional Safety (ISO 26262) requirements
  • Conduct regular audits and assessments of software processes and work products to ensure compliance to industry standards and company policies
  • Collaborate with cross-functional teams including software development, systems engineering, and project management to define and implement quality assurance strategies
  • Perform risk assessments and develop mitigation plans for software-related cybersecurity and functional safety risks
  • Prepare and present detailed reports on software quality metrics, audit findings, and improvement plans to senior management
  • Participate in customer and third-party audits, ensuring successful outcomes and addressing any findings
  • Provide coaching and training to junior quality engineers and cross-functional team members, promoting organizational growth and competence
  • Lead initiatives to instill a culture of quality and continuous improvement throughout the organization
Read More
Arrow Right
New

Staff It Auditor

This is where your work makes a difference. At Baxter, we believe every person—r...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity
  • Strong analytical, problem-solving, and critical-thinking skills
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner)
  • Ability and willingness to travel up to 20–35%, including international travel
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on-premise and cloud-based environments
  • Support audits of key technology domains, including data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management
What we offer
What we offer
  • Paid Time Off
  • Employee Health & Well-Being Benefits
  • Continuing Education/Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right
New

Staff IT Auditor

This is where we value your strategic mindset, technical expertise and passion f...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity
  • Strong analytical, problem-solving, and critical-thinking skills
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner)
  • Ability and willingness to travel up to 20–35%, including international travel
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on‑premise and cloud-based environments
  • Support audits of key technology domains, including Data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management
What we offer
What we offer
  • Paid Time Off
  • Employee Heath & Well-Being Benefits
  • Continuing Education/ Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right
New

Staff IT Auditor

This is where we value your strategic mindset, technical expertise and passion f...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field.
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment.
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity.
  • Strong analytical, problem-solving, and critical-thinking skills.
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner).
  • Ability and willingness to travel up to 20–35%, including international travel.
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach.
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on‑premise and cloud-based environments.
  • Support audits of key technology domains, including: Data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls.
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools.
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management.
What we offer
What we offer
  • Paid Time Off
  • Employee Heath & Well-Being Benefits
  • Continuing Education/ Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right

Staff IT Auditor

This is where we value your strategic mindset, technical expertise and passion f...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity
  • Strong analytical, problem-solving, and critical-thinking skills
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner)
  • Ability and willingness to travel up to 20–35%, including international travel
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on‑premise and cloud-based environments
  • Support audits of key technology domains, including: Data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management
What we offer
What we offer
  • Paid Time Off
  • Employee Heath & Well-Being Benefits
  • Continuing Education/ Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right
New

IT Analyst, Audit

This is where we value your strategic mindset, technical expertise and passion f...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity
  • Strong analytical, problem-solving, and critical-thinking skills
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner)
  • Ability and willingness to travel up to 20–35%, including international travel
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on‑premise and cloud-based environments
  • Support audits of key technology domains, including: Data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management
What we offer
What we offer
  • Paid Time Off
  • Employee Heath & Well-Being Benefits
  • Continuing Education/ Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right
New

It analyst, audit

This is where we value your strategic mindset, technical expertise and passion f...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity
  • Strong analytical, problem-solving, and critical-thinking skills
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner)
  • Ability and willingness to travel up to 20–35%, including international travel
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on‑premise and cloud-based environments
  • Support audits of key technology domains, including: Data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management
What we offer
What we offer
  • Paid Time Off
  • Employee Heath & Well-Being Benefits
  • Continuing Education/ Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right
New

IT Analyst, Audit

This is where your work makes a difference. At Baxter, we believe every person—r...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent experience in Computer Science, Information Systems, Information Technology, or a related field
  • 2+ years of IT or technology-related experience
  • Experience supporting internal audit, risk management, compliance, or control assurance activities in a regulated or publicly traded environment
  • Foundational understanding of internal controls, audit concepts, and core IT processes, including applications, infrastructure, data, and cybersecurity
  • Strong analytical, problem-solving, and critical-thinking skills
  • Effective written and verbal communication skills, including the ability to detail audit results clearly and professionally
  • Willingness to pursue relevant professional certifications (e.g., CISA, CRISC, CIA, CISSP, CIPM, CIPP, AWS Practitioner)
  • Ability and willingness to travel up to 20–35%, including international travel
Job Responsibility
Job Responsibility
  • Implement IT, cybersecurity, privacy, and coordinated audits in a regulated healthcare environment, following a risk-based audit approach
  • Perform testing of IT General Controls (ITGCs), application controls, automated controls, and information security controls across on‑premise and cloud-based environments
  • Support audits of key technology domains, including: Data interfaces, integrations, and automated processes
  • Assist in identifying control gaps, technology risks, and opportunities for process improvement related to IT governance, risk management, and internal controls
  • Contribute to the development of practical, achievable remediation recommendations that address root causes and support management decision-making
  • Prepare clear, well-documented audit workpapers that fully support audit conclusions in accordance with Internal Audit standards and departmental tools
  • Assist senior and lead auditors with audit reporting, issue validation, and presentations to management
What we offer
What we offer
  • Paid Time Off
  • Employee Heath & Well-Being Benefits
  • Continuing Education/ Professional Development
  • Support for Parents
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right