84 Best auditor Jobs in Zaragoza (May 2026)

Head of IT & IS

6 days ago

Zaragoza

Head of IT & IS Own our IT foundations and make security a business enabler. At Mimacom (300+ people, global), we build digital products that create measurable impact—for clients who expect reliability, speed, and trust. Desplácese hacia abajo para ver todos los requisitos del puesto y las responsabilidades que pueden esperar los candidatos seleccionados. As IT & Information Security Manager, you lead our IT team and own security governance and certifications (ISO 27001, TISAX). You set direction, remove friction, and keep us audit-ready with controls that are clear, pragmatic, and easy to evidence. Your impact Role overview Two missions define the role: lead IT and run security governance. You bring focus to priorities, roadmap, and decisions so the team delivers reliably—and the business moves fast with confidence. This is a leadership role first. You don’t have to be the most hands-on engineer—your team has strong depth. You do need excellent judgement, crisp communication, and the ability to challenge, decide, and drive outcomes. You report to company management and partner closely with Development, HR, Finance, and Legal. Externally, you represent Mimacom in audits and due diligence—clear answers, consistent evidence, smooth renewals. Key responsibilities IT Team Leadership • Lead and grow the IT team with clear priorities, healthy workload, and fast escalation paths., • Own the IT roadmap and outcomes—make trade-offs explicit across operations, improvements, and security., • Translate business needs into direction, standards, and practical options., • Own budget and vendors: licences, contracts, renewals, and investment cases., • Raise service maturity: onboarding, self-service, runbooks, and continuous improvement. Information Security & Certification • Own ISO 27001 and TISAX end-to-end: scope, controls, evidence, internal audits, and external audits., • Keep the ISMS and TQMi system sharp: policies, risks, assets, and treatment plans., • Drive pragmatic risk management and business continuity—measures that work in real life., • Lead security incident response with IT team, Legal, and the business—fast, calm, documented., • Support Sales and Delivery with security questionnaires and client due diligence., • Assess supplier security and keep third-party risk evidence up to date., • Build a security-first culture through awareness, training, and policies people actually follow. Your first 12 months You’ll join a team with solid technical foundations and a strong appetite for improvement. In your first year, you’ll focus on measurable upgrades to reliability, automation, and audit readiness. • Modernise our cloud foundation. Review our Azure environment, identify optimisation opportunities, and drive a roadmap that improves reliability, cost-efficiency, and security posture., • Scale automation-first operations. Keep raising the bar on scripting, templating, and standardisation—prioritising automation alongside support and platform work., • Introduce AI-enabled IT support. Explore and implement AI-based support models that improve employee experience and shift the team away from repetitive tasks., • Keep us audit-ready. Own the ISO 27001 and TISAX cycle—maintain controls and evidence so renewals run smoothly without disrupting delivery. What you bring • 5+ years in a comparable role, with strengths across IT leadership and information security governance., • ISO 27001 ownership (or strong co-ownership): controls, evidence, internal audits, and external audit coordination. TISAX is a strong plus., • Vendor and budget ownership: contracts, licences, spend, renewals, and stakeholder communication., • Solid working understanding of infrastructure and cloud (Azure, Entra ID, Microsoft 365), plus modern delivery practices (CI/CD, SDLC)—able to evaluate trade-offs and coach decision-making (hands-on implementation not required)., • Strong understanding of security principles, common controls, and enabling technologies., • Experience with client security questionnaires, RFPs, and vendor due diligence. How you work • Excellent English—clear with both engineers and executives. German and/or Spanish is a plus., • Structured and dependable: prioritise, document, deliver., • Proactive and pragmatic: find root causes and fix them sustainably., • Collaborative across cultures and levels: low ego, high ownership., • Balance today and the long game: keep operations stable while building what’s next. What you get • High-impact scope: you own both IT leadership and security governance with direct visibility to management., • Modern stack and real autonomy to improve it (cloud, automation-first mindset, continuous improvement)., • A strong, collaborative engineering culture—high trust, low bureaucracy, pragmatic decision-making., • Remote-first collaboration in European time zones (Spain preferred), with a global team and cross-functional partners., • Room to shape how we operate: service maturity, audit readiness, and security culture. Education & certifications • BA/MSc in Computer Science, Information Systems, Engineering, or a related field (or equivalent experience)., • Helpful certifications (not required): ISO 27001 Lead Implementer/Lead Auditor, TISAX, CISM, CISSP. At Mimacom, we know that creative minds thrive on exciting projects. Join our team and be part of a lively community that’s all about working together, growing together, and coming up with innovative ideas and technologies! Our company is committed to fostering a diverse and inclusive workplace. xcskxlj We encourage candidates from all walks of life to apply, as we believe in providing equal opportunities for everyone.

Auditor jobs in ZaragozaCreate job alerts

Popular jobs searches in Zaragoza

Jobs by neighbourhood

Popular auditor jobs locations