Job descriptions may display in multiple languagesbased on your language selection.

What we offer:

Group Summary:

1) QMS & ISMS Setup and Governance

• Develop, publish, and maintain Quality Policy, Information Security Policy, and IMS Manual (QMS + ISMS; optionally integrate IATF/TISAX).
• Define SOPs/Procedures/Work Instructions for key processes: Document Control, Risk & Opportunity Management, Change Management, Nonconformance & CAPA, Internal Audits, Records Management, Competence & Training, and Supplier Management.
• Establish Quality & ISMS Objectives, metrics, and annual improvement plan aligned with business strategy.
• Implement Risk Assessment methodology (e.g., ISO 27005, Annex A controls mapping for ISO 27001; FMEA-based risk for QMS; TISAX security levels for automotive data exchanges).
• Own ISMS Scope definition, SoA (Statement of Applicability), and asset inventory with classification and handling guidelines.
• Ensure compliance with legal, customer-specific, and regulatory requirements (e.g., customer CSRs for IATF, TISAX assessment requirements).

2) Implementation & Certification Maintenance

• Plan and drive ISO 9001 & ISO/IEC 27001 certification and surveillance audits; coordinate pre-assessments and readiness reviews.
• If applicable, plan and support IATF 16949 transition/surveillance & TISAX assessment (AL2/AL3 as required).
• Coordinate ISMS technical controls with IT/Infra (access control, backup, logging, endpoint security, vulnerability management, incident response).
• Maintain corrective/preventive action system and monitor closure effectiveness.

3) Audits & MRMs

• Develop and execute a risk-based internal audit program covering process, product, and system audits; include supplier audits.
• Maintain auditor competency matrix; train internal auditors (QMS/ISMS; IATF core tools awareness).
• Conduct MRMs (quarterly/bi-annual): prepare inputs (KPI trends, CAPA status, audits, risks/opportunities, customer feedback, resource needs), issue minutes and track actions to closure with owners and due dates.

4) Nonconformity, CAPA & Continual Improvement

• Lead root cause analysis (5-Why, Fishbone, 8D for IATF where applicable).
• Track audit observations, NCs, vulnerabilities, and customer complaints to effective closure; validate effectiveness.
• Drive improvement projects (e.g., DPMO, FPY, lead time reduction, defect leakage, ISMS control maturity).

5) Supplier Quality & Information Security

• Define supplier evaluation/qualification criteria, audit plan, and performance monitoring (PPM, OTD, CARs).
• Implement security requirements in supplier contracts; ensure NDA/MSA/SOW embed security and quality obligations.
• Monitor third-party risks (due diligence, assessment, data processing agreements where needed).

6) Project Documentation Governance

• Standardize, review, and control NDA, MSA, SOW templates and versioning.
• Ensure scope clarity, deliverables, acceptance criteria, milestones, IP/Confidentiality, data protection clauses, and compliance references in SOWs.
• Maintain centralized contract & records repository with retention policy.

7) Training & Culture

• Run awareness & competency programs for QMS/ISMS (induction + role-based).
• Conduct phishing drills/security hygiene with IT; quality mindset programs (First Time Right, Poka-Yoke, standard work).

8) Compliance

• NDA (Customer/ Supplier)
• Customer/ Supplier MSA, SOW - Preparation and updating
• DPDPA - Ensure compliance with India's Digital Personal Data Protection Act; enable lawful processing, consent, rights, and breach response.
• HSE

Qualification, Experience & Skills and Competencies:

(Min & Max, industry): 10-15 years in QMS/ISMS/IMS; automotive and/or tech services background preferred.

Lead Auditor/Implementer certification(s) preferred:

• ISO 9001:2015 Lead Auditor, ISO/IEC 27001:2022 Lead Implementer/Lead Auditor
• IATF 16949 (core tools: APQP, PPAP, FMEA, MSA, SPC) exposure
• TISAX experience (assessment, labeling, VDA ISA)

Bachelor's/master's in Engineering (Mechanical/Industrial/Production/IT) or related.

Awareness, Unity, Empowerment:

At Magna, we believe that a diverse workforce is critical to our success. That's why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email or traditional mail to comply with GDPR requirements and your local Data Privacy Law.

AI-Assisted Screening Disclosure

As part of our commitment to a fair, consistent, and efficient recruitment process, we may use artificial intelligence (AI) tools to assist in the initial screening of applications submitted through our Workday system. These tools help identify qualifications and experience that align with the role requirements. Please note that AI is used solely to support our recruiters. Final decisions are always made by the hiring manager and the hiring team. Importantly, no applicant data is shared externally through these AI tools. All information remains securely within our systems and is handled in accordance with our privacy and data protection policies.

Under conditions defined by applicable law, you may have the right to request an explanation of how AI is used to support decision-making.

If you have any questions or concerns about this process, feel free to contact our Talent Attraction team.