IT Audit Manager

Be essential at Cars Commerce

At Cars Commerce, we’re fanatical about simplifying everything about car buying and selling. We do right by our customers and consumers to better connect the industry with simplified and tierless technology to enhance, measure and drive local automotive retail. Whether through our No.1 most recognized marketplace, Cars.com, our industry-leading digital experience, Dealer Inspire, our trade and appraisal technology, AccuTrade, or our new Cars Commerce Media Network, Cars Commerce is essential for success in the automotive industry.  

No one ever travels alone here: at its core, Cars Commerce is collaboration. In fact, it’s built into the very fabric of our shared values. We like to say we Rise Together – putting people at the center of what we do, from consumer to customer to community. Life at Cars Commerce makes it easy when we share the ethos to be Open to All, encouraging open-minded communication because we know diverse thinking yields better outcomes. But critical to our success is Caring to Challenge and Taking Ownership, fueling a competitive spirit in a respectful environment where we think about tomorrow but act today. At our foundation, we have integrity, Doing the Right Thing, even when it’s hard. It’s our shared commitment to these values that makes Cars Commerce a place where growth becomes not only possible, but downright unavoidable.

But don’t take our word for it. As a U.S. News & World Report Best Company to Work For in 2024, we're obsessive about the employee experience. We are among the top 20% being declared “Best” of our industry based on six critical factors that are important to employee wellbeing, like quality of pay, benefits, work life balance and more.

Responsibilities:

• Develop and execute comprehensive IT audit plans, ensuring alignment with regulatory requirements and organizational objectives.
   

• Lead audits related to IT security, infrastructure, applications, data governance, and compliance frameworks such as SOX, NIST, and ISO 27001.
   

• Identify and assess IT risks, recommending mitigation strategies and improvements.
   

• Collaborate with IT, Finance, HR, Compliance, and other stakeholders to address findings and implement corrective actions.
   

• Provide expertise in IT control design, assessments, process improvements, and security best practices.
   

• Oversee and mentor a team of IT auditors as the function grows, fostering professional growth and adherence to audit methodologies.
   

• Stay up to date with evolving technology risks, regulatory changes, and industry best practices.
   

• Communicate audit results and recommendations to senior leadership in a clear, executive-friendly manner.
   

• Support external auditors and regulatory agencies by providing documentation and insights into IT controls.
   

Competency Dimensions:

• Guidance & Leadership Interaction: Works under general direction while determining strategies for IT audit functions. Provides strategic oversight and guidance to audit teams and key stakeholders.
   

• Magnitude of Impact: Influences organization-wide IT risk posture and compliance efforts; audit findings and recommendations impact the entire IT department and can drive policy and process changes across business units.
   

• Collaboration & Communication: Influences decisions through expert recommendations and clear reporting. Regularly interacts with senior leadership, functional heads, and cross-departmental teams.
   

• Knowledge: Recognized as an authority in IT audit and risk management. Applies deep expertise across a range of technologies, regulations, and business operations.
   

• Complexity: Oversees audits supporting an enterprise IT environment with multi-million dollar budgets and services affecting hundreds to thousands of employees across multiple business functions.

Required Skills & Experience:

• 8+ years of IT audit, risk management, or cybersecurity experience, with at least 3 years in a leadership role.
   

• Strong understanding of IT control frameworks such as COBIT, NIST, ISO 27001, and SOX.
   

• Experience conducting IT audits, security assessments, and risk evaluations.
   

• Ability to lead and execute complex audit projects in a fast-paced environment.
   

• Exceptional communication skills, with the ability to present technical findings to non-technical stakeholders.
   

• Proven track record of collaborating cross-functionally and influencing key decision-makers.
   

• Strong analytical, problem-solving, and project management skills.
   

• Experience with IT governance, cloud security, data protection, and emerging technology risks.
   

Preferred Skills & Certifications:

• CISA, CISSP, CISM, or other relevant IT audit certifications.
   

• Knowledge of cloud platforms (AWS, Azure, GCP) and emerging technologies.
   

• Experience with ERP systems, ITGCs, and cybersecurity audits.
   

• Bachelor’s degree in Information Systems, Computer Science, Accounting, or a related field.
   

#LI-HD1 #LI-Remote

Our Comprehensive Benefits Package includes:

• Medical, Dental & Vision Healthcare Plans
• New Hire Stipend for Home Office Set-Up
• Generous PTO
• Refuel - a service based recognition program where employees receive additional paid time away to learn grow and reset
• Paid Holidays, Floating Holiday, Volunteer Day, Recharge Day

Learn more about our Benefits, Perks, & Culture on our LinkedIn Life Pages!

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. California Applicants: Click here to review our California Privacy Policy for Applicants. For current employees, please click here to review our California Privacy Policy for Employees.