Staff Information Security Auditor

Role overview

Tesla’s Internal Audit group exists to uncover risk early and prompt corrective action that protects the business. The team works closely with IT, Engineering, and Information Security/Privacy partners to identify control gaps and recommend stronger, more consistent processes across the organization.

Tesla is looking for a seasoned information security auditor who can plan, conduct, lead, and document audits covering operations, information security, and technical transformation. The role also includes leading complex internal audit work and handling short-term initiatives that help standardize controls across corporate, product, and manufacturing IT environments.

What you will do

• Develop productive working relationships with teams across IT, Information Security, GRC, Legal, and Engineering.
• Own and execute risk-focused IT audit plans that evaluate systems, processes, and controls against internal requirements and applicable regulations.
• Work hands-on with cross-functional stakeholders on topics such as product security, data protection, vulnerability management, and endpoint security.
• Carry out detailed risk assessments across IT systems, especially around identity and access management, data safeguarding, and incident response.
• Prepare audit results for senior leaders, turning technical issues into clear business recommendations and practical remediation steps.
• Apply relevant laws and regulatory expectations to assess information security and privacy control requirements.
• Use data analysis methods and audit tools to review and track IT and operational risk.

What you need

• At least 7 years of experience in IT audit or a closely related area such as Big 4, information security, or GRC.
• Strong knowledge of how to test the design and operating effectiveness of internal controls supporting technology processes, including change management, access controls, and computer operations.
• Proven project management, organization, and communication skills, with the ability to balance multiple varied initiatives at once.
• Working familiarity with major audit and cybersecurity standards and regulations such as NIST, IES 62443, ISO 27001, ITIL, COBIT, and PCI-DSS.
• A bachelor’s degree in Computer Science, a related discipline, or equivalent practical experience.
• At least one recognized professional certification, such as CISA, CISSP, CISM, or an equivalent credential.

Benefits and compensation

This is a full-time position with competitive pay. As a Tesla employee, benefits are available from day one of employment.

• Medical plan options with $0 payroll deduction
• Family-building, fertility, adoption, and surrogacy support
• Dental coverage, including orthodontia, plus vision plans, both with $0 paycheck contribution options
• Company-funded HSA contribution when enrolled in the high-deductible medical plan with HSA
• Healthcare and dependent care flexible spending accounts
• 401(k) with employer match, employee stock purchase plans, and other financial benefits
• Company-paid basic life and AD&D coverage
• Short-term and long-term disability insurance with a 90-day waiting period
• Employee assistance program
• Sick time, vacation time, and paid holidays
• Back-up childcare and parenting support resources
• Optional benefits including critical illness, hospital indemnity, accident insurance, theft and legal services, and pet insurance
• Weight loss and tobacco cessation programs
• Tesla Babies program
• Commuter benefits
• Employee discounts and perks program

Compensation

Expected annual pay for this role is $120,000 to $252,000, plus cash awards, stock awards, and benefits. Final compensation may vary based on market location, skills, experience, and other role-related factors.