About us:Ferrovial is one of the world's leading infrastructure operators, committed to developing sustainable solutions.Our company operates in more than 15 countries and has a workforce of over 24,000 professionals worldwide.
Ferrovial is listed simultaneously on 3 stock markets: USA (Nasdaq), the Netherlands (Euronext Amsterdam), and Spain (IBEX 35), and is a member of the Dow Jones Sustainability Index and FTSE4Good.The aim of Ferrovial Corporation is to design the Company's strategy, establishing global policies, guidelines and action guides related to the different functional areas of the Organization (Internal Audit, Finance, Human Resources, Legal, IT, Innovation, etc.
), which subsequently are developed and adapted to the specificities of each Business Unit.Job Description:Mission:In Ferrovial we are always looking for high-skilled professionals.
At this stage, we are looking for Program Managers with multidisciplinary skills, technical background and strong experience in leading and managing IT Transformation/Innovation Programs orchestrating multiple dimensions and stakeholders and requiring strong alignment with the technical teams.Additionally, Ferrovial is enhancing its internal control system for SOX compliance, covering all the supervision of all IT Compliance activities in coordination with the Corporate Compliance and Audit area.The Manager will assist in supervision of the audit staff and be responsible for managing planning and completion of assurance and advisory engagements.
They will assist in supervision of the SOX program implementation and be responsible for oversight of the outsourced assurance providers' progress to ensure timely completion of agreed upon deliverables.Responsibilities:SOX TasksManage and follow-up the overall SOX IT implementation and operation plan in Ferrovial at a global level including the different companies and business units in scope.Define and lead an e2e governance model to coordinate the key stakeholders (IT areas, Business, Audit and Compliance).Oversee the definition and maintenance of Risks Controls Matrix, Flowcharts and Narratives for all the applications in the scope.Oversee definition, implementation and follow up of remediation plans for all the elements in scope resulting from the different audit processes.Manage the process to keep the GRC tool up to date in terms of ITGCs, ITACs, IPEs, applications and other SOX key assets.Define and deploy criteria to determine whether an application is in-scope and application onboarding/offboarding processes.Perform risks assessments in applications to identify key and non-key controls.Report to SOX Governing Bodies.
Define and elaborate KGIs and KPIs in coordination with financial department, internal audit and IT.Contribute to internal digitalization and the automation of SOX related processes.Identify opportunities to increase efficiency and/or reduce costs related to the SOX compliance effort.Provide ongoing education to process owners on evolving SOX regulations and company finance and information systems policies.Accountable for the rationalization and friction progressive reduction of the SOX Compliance campaigns.General IT Compliance TasksLead, orchestrate and govern a global Compliance and IT Audit program.Identification, review and evaluation of the IT risk map and promote a plan to mitigate data risks.Ensure compliance with internal audit recommendations on IT processes and departments.Ensure how regulatory changes on data impact our business.Ensure alignment between data protection rules with DPO and legal teams.Ensure alignment of AI strategy with new EU AI ACT.Consolidation of reports and establishment of a consistent and unified approach for the collection and presentation of evidence documentation.Requirements:More than 5 years of experience in SOX IT compliance/assessment projects.Advisable Bachelor's degree in Computer Science, Telecommunication or Business Administration.Experience in the implementation of a SOX IT Program in the company side will be considered a plus.Knowledge of a wide range of technology (applications, infrastructure, networking, IT management controls).Knowledge of cybersecurity frameworks (e.g., NIST, ISO27001, NIST CSF, etc.
).A solid understanding of SOX compliance requirements.Understands business processes and audit and internal control testing techniques.Detail oriented, self-motivated work style and flexible with good prioritization skills.Strong project management, people management, and communication skills.Professional qualification such as CISA, CISM, ISO 27001 Lead Auditor or equivalent is an asset.Ability and willingness to travel.Fluent in English and Spanish.Why Ferrovial?Being part of a leading company in its sector.A solid and innovative company project.Challenging roles and projects.Work with the best professionals in a collaborative environment.Attractive benefits.Feedback processes implemented to ensure professional growth.Diversity and inclusions initiatives.Global and cross Business Units Mobility.What can we offer you?Employment stability with a permanent contract since the beginning.Individual development plan with technical and soft skills training.Restaurant card: 11€ for each full-time day.Work-life balance: flexible hours and special days-off.Flexible Remuneration Plan.Gympass Enrollment.Free access to the Stimulus Program.Assignment of a buddy for your professional and personal development.Employee's Club: discounts on item purchases, shows ticket reservations, trips, etc.Healthy snacks.If you are passionate about challenges, and you think you fit in the described profile, do not hesitate to sign up for the offer.
Take the jump!
We are waiting for you!
#J-18808-Ljbffr