IT Compliance Manager

About us:

Ferrovial is one of the world’s leading infrastructure operators, committed to developing sustainable solutions.

Our company operates in more than 15 countries and has a workforce of over 24,000 professionals worldwide. Ferrovial is listed simultaneously on 3 stock markets: USA (Nasdaq), the Netherlands (Euronext Amsterdam), and Spain (IBEX 35), and is a member of the Dow Jones Sustainability Index and FTSE4Good.

The aim of Ferrovial Corporation is to design the Company's strategy, establishing global policies, guidelines and action guides related to the different functional areas of the Organization (Internal Audit, Finance, Human Resources, Legal, IT, Innovation, etc.), which subsequently are developed and adapted to the specificities of each Business Unit.

Job Description:

Mission:

In Ferrovial, we are always looking for high-skilled professionals. At this stage, we are looking for Program Managers with multidisciplinary skills, technical background and strong experience in leading and managing IT Transformation/Innovation Programs.

The Manager will assist in the supervision of the audit staff and be responsible for managing planning and completion of assurance and advisory engagements, including SOX program implementation.

Responsibilities:

SOX Tasks

• Manage and follow-up the overall SOX IT implementation and operation plan in Ferrovial at a global level.
• Define and lead an e2e governance model to coordinate the key stakeholders.
• Oversee the definition and maintenance of Risks & Controls Matrix, Flowcharts and Narratives for all the applications in the scope.
• Oversee definition, implementation and follow up of remediation plans for all elements in scope.
• Manage the process to keep the GRC tool up to date.
• Define and deploy criteria to determine whether an application is in-scope.
• Perform risks assessments in applications to identify key and non-key controls.
• Report to SOX Governing Bodies.
• Contribute to internal digitalization and the automation of SOX related processes.
• Identify opportunities to increase efficiency and/or reduce costs related to SOX compliance.
• Provide ongoing education to process owners on evolving SOX regulations.

General IT Compliance Tasks

• Lead and govern a global Compliance and IT Audit program.
• Identification, review and evaluation of the IT risk map.
• Ensure compliance with internal audit recommendations on IT processes.
• Ensure alignment between data protection rules with DPO and legal teams.
• Consolidation of reports and establishment of a consistent approach for evidence collection.

Requirements:

• More than 5 years of experience in SOX IT compliance/ assessment projects.
• Bachelor's degree in Computer Science, Telecommunication or Business Administration.
• Experience in the implementation of a SOX IT Program.
• Knowledge of a wide range of technology.
• Knowledge of cybersecurity frameworks.
• A solid understanding of SOX compliance requirements.
• Detail oriented, self-motivated work style.
• Strong project management, people management, and communication skills.
• Professional qualification such as CISA, CISM, ISO 27001 Lead Auditor is an asset.
• Fluent in English and Spanish.

Why Ferrovial?

• Join a leading company in its sector.
• A solid and innovative company project.
• Work with talented professionals in a collaborative environment.
• Professional growth opportunities.
• Compelling benefits & rewards.

Seize the challenge. Move the world together!

#WeAreFerrovial

Ferrovial is an equal opportunity employer.