10876 - Technology Audit Manager - Integrated Risk Management "IRM"

Hyundai Autoever America•Irvine, CA

4d•Onsite

About The Position

Integrated Risk Management, Technology Audit Manager Location – Irvine, CA Company Overview Hyundai AutoEver America (HAEA) , the dynamic IT powerhouse behind Hyundai Motor Corporation, a Fortune 500 global leader in the automotive industry. As a key affiliate, we provide cutting-edge IT services and support to top brands including Kia, Genesis, Hyundai Translead, Hyundai Mobis, Hyundai Capital, and Glovis. HAEA offers a truly global and collaborative environment. Here, you’ll drive innovation, boost operational efficiency, and help shape the future of mobility for the Hyundai Motor Group. At HAEA, we understand that IT is the cornerstone of today’s fast-evolving digital world. By uniting all IT resources under one roof, we deliver consistent, top-quality solutions while serving as the crucial information link between Hyundai’s Global Headquarters and North American operations. If you’re passionate about technology and eager to make a real impact at a world-class company, Hyundai AutoEver America is the place to grow your career. Join us and be part of the transformation that’s driving the future of automotive innovation. What You Will Be Doing The Technology Audit Manager is responsible for end-to-end coordination and execution support of all internal and external security related audits. This role acts as the central point of accountability for audit facilitation—ensuring audits are properly scoped, resourced, executed, and closed, while integrating audit outcomes seamlessly into established risk operations processes. This role requires exceptional organizational discipline, stakeholder engagement, and a strong understanding of technology risk, audit lifecycles, and governance expectations. The Technology Audit Manager ensures transparency, consistency, and efficiency across the audit journey, while minimizing disruption to delivery teams and maximizing audit quality. The key responsibilities of this role are as described below: Audit Planning & Intake Serve as the single point of coordination for all internal and external security related audits. Facilitate audit intake, ensuring audits are: Clearly scoped Appropriately prioritized Aligned with business, regulatory, and risk objectives Identify and confirm audit stakeholders, control owners, and subject matter experts across the environment. Partner with relevant stakeholders to ensure agreement and understanding of audit scope, objectives, timelines, and dependencies. Audit Execution & Coordination Coordinate audit activities across all phases, including: Planning Fieldwork Evidence collection Issue validation Reporting Ensure audits are properly staffed, with clear accountability for evidence production and responses. Track audit requests, evidence submissions, and auditor inquiries to ensure timely and complete responses. Proactively manage risks, bottlenecks, and dependencies that may impact audit timelines or quality. Stakeholder Engagement & Communication Drive continuous stakeholder engagement throughout the audit lifecycle. Ensure all stakeholders: Understand audit scope and expectations Are informed of progress, risks, and upcoming milestones Receive timely communication on changes or escalations Facilitate status updates, checkpoints, and working sessions with auditors and internal teams. Act as a trusted liaison between auditors and the Security organization, balancing transparency with control. Findings Management & Risk Integration Coordinate the intake, review, and validation of audit findings. Ensure audit findings are: Clearly understood and accurately documented Mapped to relevant controls, policies, and standards Integrated into Risk Issue Management processes Partner with Risk Operations to ensure: Findings are appropriately risk-rated Remediation plans are defined, owned, and tracked Closure evidence meets audit and risk standards Governance, Reporting & Continuous Improvement Maintain centralized audit tracking and documentation, ensuring audit readiness and traceability. Produce audit status reporting for the Senior Leadership, Customers, and relevant governance forums. Identify trends, recurring issues, and systemic control gaps across audits. Recommend process improvements to reduce audit friction and improve audit outcomes over time.

Requirements

10+ years of experience in technology audit coordination, Technology Risk, GRC, IT Audit, or Compliance.
Hands-on experience supporting internal and/or external audits in a technology or security environment.
Proven ability to manage complex, cross-functional stakeholder environments.
Familiarity with GRC platforms.
Bachelor’s degree in Cybersecurity, Information Technology, Computer science or a related field.
Strong understanding of audit lifecycles, control testing, and issue management with strong knowledge of technology control frameworks (e.g., NIST CSF/800-53, ISO 27001, CIS).
Exceptional organizational, tracking, and communication skills.
Excellent stakeholder management and communication skills.
Proficient in English for effective communication and coordination.

Nice To Haves

Audit or assessment leadership experience working within a CISO organization or large enterprise technology environment.
7+yrs experience in a top tier professional services firm, leading and delivering technology audit and/or risk management engagements.
Masters degree in Cybersecurity, Information Technology, Computer Science or a related discipline is preferred.
Industry-recognized credentials such as CISSP, CISM, CRISC, or CIA are highly desirable.
Bi-lingual in English and Korean language proficiency is preferred to support global coordination and communication.

Responsibilities

Serve as the single point of coordination for all internal and external security related audits.
Facilitate audit intake, ensuring audits are: Clearly scoped Appropriately prioritized Aligned with business, regulatory, and risk objectives
Identify and confirm audit stakeholders, control owners, and subject matter experts across the environment.
Partner with relevant stakeholders to ensure agreement and understanding of audit scope, objectives, timelines, and dependencies.
Coordinate audit activities across all phases, including: Planning Fieldwork Evidence collection Issue validation Reporting
Ensure audits are properly staffed, with clear accountability for evidence production and responses.
Track audit requests, evidence submissions, and auditor inquiries to ensure timely and complete responses.
Proactively manage risks, bottlenecks, and dependencies that may impact audit timelines or quality.
Drive continuous stakeholder engagement throughout the audit lifecycle.
Ensure all stakeholders: Understand audit scope and expectations Are informed of progress, risks, and upcoming milestones Receive timely communication on changes or escalations
Facilitate status updates, checkpoints, and working sessions with auditors and internal teams.
Act as a trusted liaison between auditors and the Security organization, balancing transparency with control.
Coordinate the intake, review, and validation of audit findings.
Ensure audit findings are: Clearly understood and accurately documented Mapped to relevant controls, policies, and standards Integrated into Risk Issue Management processes
Partner with Risk Operations to ensure: Findings are appropriately risk-rated Remediation plans are defined, owned, and tracked Closure evidence meets audit and risk standards
Maintain centralized audit tracking and documentation, ensuring audit readiness and traceability.
Produce audit status reporting for the Senior Leadership, Customers, and relevant governance forums.
Identify trends, recurring issues, and systemic control gaps across audits.
Recommend process improvements to reduce audit friction and improve audit outcomes over time.