certifications such as CISA, CISSP, CRISC, or equivalent. Minimum of 3-5 years of experience in IT auditing within the financial services or banking sector. Strong understanding of ITgeneralcontrols, application controls, and risk-based audit methodology. Familiarity with banking regulations and standards (e.g., Basel III, SOX, PSD2). Excellent communication and reporting skills, with the ability to explain More ❯
Coventry, England, United Kingdom Hybrid / WFH Options
Sainsbury's Supermarkets Ltd
co-ordinate the security testing roadmap, and provide key support to the overall Compliance strategy Manage the annual NIST-CSF assessment testing schedule Support and drive the annual ITGeneralControls assurance programme, and test and evaluate the IT Applications Controls within financial processes Deliver key reporting on compliance activities to key stakeholders, and produce packs for the audit committee … other teams and stakeholders, to drive the wider agenda You’ll have demonstrable experience of delivering an assurance testing programme across industry frameworks and regulations, NIST-CSF, and ITGeneralControls desirable Be highly organised and able to coordinate expected outputs from different stakeholders Familiar with key techniques and industry frameworks/regulations such as NIST-CSF, ISO27001, PCI-DSS … GDPR, and ITGeneralControls Pro-active with upcoming industry changes and ability to implement where necessary Be able to proactively identify and own any issues, and follows through to resolve them Ability to prioritise their own workload and deliver quality results in line with the wider compliance strategy Someone with the ability to think methodically and logically, and communicate More ❯
project scope and budget, executing and documenting the work undertaken, and articulating our findings and conclusions to senior client stakeholders. Acquiring proficiency in fundamental IT audit principles, including ITGeneralControls, IT Application Controls, data migration procedures, and testing of data completeness and accuracy. Learning key Technology Risk related regulations, standards, and frameworks. Getting involved with industry research and client More ❯
