Sr. IT Risk Compliance Analyst

What to Expect

As an IT Risk Compliance Analyst, you will play a critical part in ensuring the integrity and security of our IT systems and processes by supporting key compliance programs. In this role, you will focus on continuous controls monitoring, performing tests of IT controls effectiveness, and contributing to initiatives such as ISO 27001 certification, third-party vendor risk management, and adherence to various compliance frameworks and standards.

What You'll Do

• Support the design and implementation of continuous controls monitoring programs to proactively identify and mitigate IT risks
• Perform tests of IT controls effectiveness to ensure compliance with internal policies and external regulatory requirements
• Contribute to the maintenance and enhancement of Tesla's ISO 27001 certification by conducting assessments, audits, and gap analyses
• Assist in third-party vendor risk management by evaluating vendor security practices and ensuring alignment with Tesla's risk and compliance standards
• Demonstrate a strong understanding of various compliance frameworks and standards (e.g., NIST, SOC, GDPR, etc.) to guide Tesla's IT compliance strategy
• Collaborate with cross-functional teams to identify, assess, and remediate IT risks and compliance gaps
• Prepare detailed reports and documentation for internal stakeholders and external auditors to demonstrate compliance with applicable standards
• Stay updated on emerging IT risk trends, regulatory changes, and best practices to continuously improve Tesla's compliance posture

What You'll Bring

• Degree in Information Technology, Computer Science, Cybersecurity, Business Administration, or a related field, or equivalent experience
• Minimum of 6 years of relevant experience in IT risk management, compliance, or audit roles, preferably in a technology-driven or automotive industry
• Proven experience with continuous controls monitoring and testing of IT controls effectiveness
• Hands-on experience with ISO 27001 implementation, audits, or certification processes
• Familiarity with third-party vendor risk management practices and assessments
• Strong understanding of compliance frameworks and standards such as NIST, SOC, GDPR, and others
• Excellent analytical and problem-solving skills with a keen attention to detail
• Ability to communicate complex technical and compliance concepts to non-technical stakeholders
• Proficiency in risk assessment tools, GRC (Governance, Risk, and Compliance) platforms, or related software is a plus
• Big 4 experience and certifications such as CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), CISSP (Certified Information Systems Security Professional), or equivalent preferred

Compensation and Benefits

Benefits

Along with competitive pay, as a full-time Tesla employee, you are eligible for the following benefits at day 1 of hire:

• Aetna PPO and HSA plans > 2 medical plan options with $0 payroll deduction
• Family-building, fertility, adoption and surrogacy benefits
• Dental (including orthodontic coverage) and vision plans, both have options with a $0 paycheck contribution
• Company Paid (Health Savings