It Security And Compliance Senior Analyst

What To Expect
Tesla is looking for an IT Security and Compliance Senior Analyst to join our Global Risk and Compliance team (GRC). You will help run the risk and compliance efforts for designing, evaluating, implementing, and improving Tesla’s IT Security Controls, with a focus/emphasis on vehicle software cybersecurity. You will join the IT Compliance team as part of the CIO's organization and manage activities across the global organization as well as the Vehicle hardware, firmware, software cybersecurity. The role will act as a liaison between the audit function, IT Security Teams across Tesla, Vehicle Software/Firmware team, and external auditors/regulators – you will work with SMEs across the organization to mature/design security controls & mitigate risk and become a deep technical resource.
What You’ll Do

• Continue Tesla’s vehicle cybersecurity compliance with several frameworks such as external regulations (UNCE 155/156), ISO 21434, data security policies and other relevant legal and regulatory requirements
• Continuously evaluate and provide suggestions to improve existing programs, practices and technologies to align with the organization's risk appetite and ensure regulatory compliance.
• Collaborate with engineers, business process owners, InfoSec, Internal Audit, external audit, and systems owners in the testing of new software capabilities, programs and applications, and risk assessments.
• Develop and analyze reports and alerts to identify gaps and propose changes to improve the organization's security, risk and compliance posture.
• Continuously identify areas of improvement, create action plans, and execute to implement changes in a timely manner.
• Ensure changes and improvement actions are identified and implemented.
• Ensure proper technical audit methodology and scope is applied when dealing with external auditors/regulators
• Interfacing with external Cybersecurity Auditors & Regulators and
• Partner and coordinate with security teams, external auditors, management, and other testing groups to best address relevant risks to Tesla.

What You’ll Bring

• Fundamental understanding of vehicle software, OTA updates, fleet management.
• You have relevant knowledge and experience testing design and operation of IT General Controls for user access, change management, system integrations, and system development activities.
• Experience in technical audit methodology (to be able to handle external auditors and regulators) is a must.
• You have experience leading and mitigating risk in projects throughout an organization.
• Understanding IT General Controls, Security Incident Handling, Data Classification and Handling, Data Privacy.
• Fundamental understanding of networking, including TCP/IP protocols and network topology
• 5-8 years of professional Cybersecurity, IT Risk and Compliance, and audit experience
• Experience implementing security frameworks, such as SOC 2, ISO 27001, UNCE R155/R156, ISO 21434.
• Strong technical knowledge in SDLC and software/firmware change management
• Fundamental understanding of operating systems, including Windows and Linux

Benefits
Along with competitive pay, as a full-time Tesla employee, you are eligible for the following benefits at day 1 of hire:

Aetna PPO and HSA plans > 2 medical plan options with $0 payroll deduction

Family-building, fertility, adoption and surrogacy benefits

Dental (including orthodontic coverage) and vision plans, both have options with a $0 paycheck contribution

Company Paid (Health Savings Account) HSA Contribution when enrolled in the High Deductible Aetna medical plan with HSA

Healthcare and Dependent Care Flexible Spending Accounts (FSA)

LGBTQ+ care concierge services

401(k) with employer match, Employee Stock Purchase Plans, and other financial benefits

Company paid Basic Life, AD&D, short-term and long-term disability insurance

Employee Assistance Program

Sick and Vacation time (Flex time for salary positions), and Paid Holidays

Back-up childcare and parenting support resources

Voluntary benefits to include: critical illness, hospital indemnity, accident insurance, theft & legal services, and pet insurance

Weight Loss and Tobacco Cessation Programs

Tesla Babies program

Commuter benefits

Employee discounts and perks program

Expected Compensation
$88,000 - $294,000/annual salary + cash and stock awards + benefits
Pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. The total compensation package for this position may also include other elements dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.
#EngIT