1 to 25 of 63 Internal Audit Jobs

Job Title: Internal Audit Manager - Third Parties Assurance and Business Resilience Location: London Hybrid: 4 days in the office, 1 day working from home per week Audit & Risk Recruitment is proud to partner with a global FinTech business with an ambitious growth agenda and a strong commitment to maintaining a robust control environment. As part of … their continued expansion, the company is strengthening its global Internal Audit function and seeking an experienced Internal Audit Manager to speacialise in 3rd party riska and Resiliance. This is a critical and high-impact role for someone who thrives on autonomy, has a strong understanding of third-party and resilience risk, and is passionate … about delivering value-added assurance in a dynamic environment. In this role, you will be a key strategic partner to the Head of Internal Audit, helping shape our assurance strategy and annual audit planning. You will also lead the development of a continuous third-party assurance framework to monitor the ongoing performance and risk of external More ❯

Digital Data & AI Internal Audit Lead Package: £80,000–£120,000 + bonus + LTIP + hybrid working (London) + visa sponsorship available. Our financial services client is seeking a Digital Data & AI Internal Audit Lead to strengthen their AI-driven assurance capability. You will lead the design and delivery of AI automation , data … while also supporting a portfolio of Tier 1 banking clients undergoing major data and cloud transformation programmes. This role combines deep data/AI governance expertise , internal audit delivery , and practical automation engineering , enabling you to shape how AI is safely and effectively embedded into assurance processes. Deliver and lead complex data management, AI assurance, and analytics … audit - including evaluating model risk controls, AI system governance, data pipelines, and cloud-based data platforms. Build and enhance AI-enabled audit methodologies , using automation and continuous monitoring techniques (e.g., anomaly detection, NLP, predictive analytics) to improve audit depth and efficiency. Develop and implement data and AI governance frameworks for clients, including standards for data quality, lineage More ❯

revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast. Job Summary Auditor, Technology – Comcast Global Audit Team Responsible for performing quarterly audit engagements year-round to help identify and manage risks to the business. Job Description Primary Responsibilities: Participate as active members of the … in own discipline. Usually determines own work priorities. Acts as resource for colleagues with less experience. Core Abilities: What You Deliver Executes aspects of the standard internal audit process, which includes the three phases of planning, execution and reporting out to business management. Performs thorough inquiry and data analysis to understand security and technology operations, assess risk … practices, information security frameworks, Control Objectives for Information and Related Technology controls, and governmental and legal requirements. Able to quickly grasp risk areas and identifies remediation tactics. Applies appropriate audit procedures to the areas reviewed to ensure that controls are tested and all significant risks are addressed. Prepares clear and well-organized audit work papers documenting root-cause More ❯

About The Role Team Group Internal Audit Working Pattern - Hybrid 2days per week in either the Vitality London or Bournemouth offices.Full time hours. We are happy to discuss flexible working! Top 3 skills needed for this role: Expertise in delivering data analytics solutions to support audit objectives within a dynamic environment to agreed timescales. Proficiency in … tools). Ability to communicate complex technical concepts to both technical and non-technical stakeholders. What this role is all about: We're looking for a talented and experienced Audit Data Analytics Manager who thrives in a dynamic atmosphere and wants to make a real difference to help shape the deliverables of the Internal Audit team. … Your data analytics and audit expertise will be used to develop solutions to enable more effective and efficient audits, embed data analytics skills and techniques across the Internal Audit team; and identify emerging technologies and approaches to transform the audit services, while ensuring the processes and controls meet professional and regulatory standards. Key Actions Deliver More ❯

About The Role Team – Group Internal Audit Working Pattern - Hybrid –2 days per week in either the Vitality London or Bournemouth offices. Full time hours. We are happy to discuss flexible working! Top 3 skills needed for this role: Expertise in delivering data analytics solutions to support audit objectives within a dynamic environment to agreed timescales. … tools). Ability to communicate complex technical concepts to both technical and non-technical stakeholders. What this role is all about: We're looking for a talented and experienced Audit Data Analytics Manager who thrives in a dynamic atmosphere and wants to make a real difference to help shape the deliverables of the Internal Audit team. … Your data analytics and audit expertise will be used to develop solutions to enable more effective and efficient audits, embed data analytics skills and techniques across the Internal Audit team; and identify emerging technologies and approaches to transform the audit services, while ensuring the processes and controls meet professional and regulatory standards. Key Actions Deliver More ❯

Job summary ASW Assurance is an NHS Consortium providing specialist internal audit, assurance, counter fraud and consultancy services to NHS (and other public and third sector) organisations in the South West. This role will have lead responsibility for the development, delivery, management and promotion of ASW's digital and information governance service. This will include delivery of … assurance work to meet statutory requirements, delivered in line with professional standards. The postholder will be suitably qualified in line with the National Cyber Security Centre's Cyber Resilience Audit scheme, to hold a professional registration for the Cyber Audit and Assurance Chartership. They will investigate and advise on complex issues, including detailed cyber security, data protection and … products being delivered. Design a framework for delivery of complex, risk-based digital plans designed to produce assurances to fulfil the requirements of the Head of Internal Audit Opinion or the objectives of consultancy assignments. Lead quality assurance of all digital assurance work within agreed deadlines, budgets, and quality standards. Manage and develop key relationships with clients More ❯

end data warehouse, performing preventative and detective data analysis and monitoring of systems — to ensure model quality, consistency, and regulatory compliance. Partnering closely with model developers, risk management, and audit functions, the leader ensures operational alignment with governance standards and regulatory expectations. They oversee strategic initiatives to enhance efficiency, scalability, and performance monitoring, while also managing business risk. As … to ensure timely and compliant support for model build, refresh, implementation, and ongoing performance evaluation, including data testing, evaluation. Collaborate closely with Model Risk Management and Internal Audit to ensure all model operations align with regulatory and governance expectations. Define and lead execution of strategic initiatives to enhance operational efficiency, reduce model development cycle time, and improve … leading teams of data engineers, analysts, and process experts in high compliance, regulated environments. Strong business acumen and familiarity with model governance frameworks, regulatory expectations, and internal audit processes (e.g., SR 11-7 compliance, MRM policies). Exceptional verbal and written communication skills demonstrated through executive and cross-functional stakeholder engagement, detailed-oriented documentation, and visual storytelling. More ❯

audiences. Drive governance, change management, and benefits realisation across projects. Translate complex technical issues into simple, actionable insights for business leaders. Knowledge & Experience Strong knowledge of internal audit processes , with a focus on technology and cyber audits . Excellent understanding of risk management frameworks . Proven track record of delivering large and complex audits on time. Extensive … governance, change management, and process improvement. Qualifications Degree in a technology-related discipline (e.g. BSc Computer Science ). Professional certifications such as CISA, CISM or equivalent (preferred). Additional audit certifications (e.g. ISO Lead Auditor ) desirable. Skills & Competencies Mandatory: GRC Process expertise . Excellent verbal and written communication skills. Ability to simplify complex technical concepts for diverse audiences. Experience … Required 8–10 years of relevant experience in internal audit, technology, and cyber risk. What’s on Offer Opportunity to work with a global leader in a dynamic, fast-paced environment. Exposure to cutting-edge cyber and risk management projects . Competitive salary and benefits package. Career progression within a forward-thinking organization. More ❯

IT Audit Senior - Insurance Within this leading International Insurance group, you will be working closely with your US Audit counterparts and taking the lead on the UK/European IT audit portfolio. You will be able to demonstrate competency across the following activities: To plan, manage, execute and lead value added IT internal audits. Perform … IT SOX/internal control framework testing, including walkthroughs and flowcharting on an annual basis across the in scope European branch network. Perform IT controls and process testing across all departments and areas including but not limited to, underwriting, claims, reinsurance, finance, human resources, IT, risk management, Solvency II, governance, compliance and actuarial. Example responsibilities will include: To … education. Certified Information Systems (CISA) designation preferred. A number of years of relevant and progressive professional experience with a minimum of three years of relevant IT internal audit experience. Insurance or financial services experience preferred, but not essential. Hybrid working patterns available More ❯

high quality health, care and service outcomes then this could be the career move for you. Main duties of the job To perform a broad range of IM &T audit and advisory assignments of a complex/ad-hoc nature in addition to a broad range of routine IM&T audit assignments. To apply risk management and assurance … principles to the planning and delivery of audit assignments at both an operational and strategic client level. To supervise and coach junior staff and contractors as appropriate. To respond to a broad range of sensitive and complex queries from clients and staff. To keep abreast of, and take account of, the latest technology risks and mitigating controls. About us … of over 60 and expansion of our solutions offer we are continuing to grow at pace. MIAA offer clients a number of services in addition to internal audit including Solutions, Anti-Fraud, Technical Risk Assurance, Clinical Coding and Healthcare Quality. MIAA's budgeted turnover is 12 million, which is demonstrative of the organisation's ambitious and strategic More ❯

Assurance Programme. This role requires strong cybersecurity expertise combined with hands-on experience in control testing, particularly in evaluating the effectiveness of security controls and ensuring alignment with internal policies, standards, and industry frameworks. This role will report directly to the Control Testing & Assurance Manager, with whom you will work to deliver the goals of the company to … be great to have/bring: Experience working in a regulated environment. Experience within the water utility industry or large, complex critical national infrastructure. Experience in internal audit, external audit, or assurance functions related to IT or cybersecurity. Professional certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor are advantageous. GCS is acting as More ❯

the continual improvement of the IMS to ensure its ongoing suitability, adequacy, and effectiveness in line with ISO 9001, ISO 27001, ISO 42001, TISAX, ASPICE, and IEC 62304 requirements. Audit Management Plan, schedule, and lead the internal audit programme to verify that the management system conforms to internal requirements and the requirements of the … and document control. Ability to promote and facilitate the process approach and risk-based thinking throughout the organisation. Knowledge & Experience Must-Haves: Proven experience in a compliance, quality, or audit role within a software development or technology-focused company. In-depth knowledge and hands-on experience implementing and maintaining management systems based on ISO 9001:2015 and ISO … 2022. Demonstrable experience leading and successfully passing external certification audits. Nice-to-Haves: Certified as an internal or lead auditor for ISO 9001 and/or ISO 27001. Direct experience with the TISAX assessment process (ENX portal/VDA ISA). Familiarity with software development lifecycle standards such as ASPICE or IEC 62304. Knowledge of AI-specific standards More ❯

Payroll, and IT to ensure aligned and efficient workflows and handoffs. Process Excellence & Automation Identify opportunities for digitization, automation, and workflow optimization across the employee lifecycle. Partner with internal and external teams to deploy tools (e.g., process automation, document management, self-service portals) that reduce manual work and increase accuracy and speed. Work as part of the new … stakeholders, and drive action planning based on data. Compliance & Risk Management Ensure global HR processes comply with local labor laws, data privacy regulations (e.g., GDPR), and internal audit requirements. Mitigate operational risks by implementing robust controls and escalation processes. Ensure SOX controls are thoughtfully designed, effectively implemented, and are consistently reviewed and executed in alignment with our … of themselves: Finance: Competitive salary package, share plan, company performance bonuses, value-based recognition awards, referral bonus; Career Development: Career coaching, global career opportunities, non-linear career paths, internal development programmes for management and technical leadership; Learning Opportunities: Complex projects, rotations, internal tech communities, training, certifications, coaching, online learning platforms subscriptions, pass-it-on sessions, workshops More ❯

regulations, FCA, PRA etc. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, procedures, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations. The ideal More ❯

services regulations, FCA, PRA etc.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, procedures, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate More ❯

efficiency and delivery speed. * Align with business objectives, regulatory requirements, and technology roadmaps. * Establish governance frameworks, policies, and standards for release planning, environment lifecycle, and compliance. * Define and maintain audit-ready controls for release management. * Partner with other technology teams to drive DevOps adoption, automation, and continuous delivery practices. Release Management * Own the release calendar, governance framework, and readiness … MTTR) and monitor performance. * Serve as the primary point of contact for internal and external auditors regarding the release management process, providing evidence of control adherence, automated audit trails, and policy enforcement. Environment Management * Define and enforce environment lifecycle policies (provisioning, refresh, decommissioning). * Ensure non-production environments are available, stable, and compliant with security and data … requirements. * Prevent configuration drift and maintain parity with production where required. * Governance & Compliance * Ensure compliance with Digital Operational Resilience Act ICT change management, ISO 27001, and internal audit requirements. * Maintain documentation and evidence for regulatory inspections and audits. * Conduct risk assessments for releases and environment changes; implement mitigation plans. Stakeholder Engagement * Act as the primary escalation point More ❯

security of IT service provider. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations. The ideal More ❯

chain security of IT service provider.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate More ❯

information as required under the contract and take responsibility for the resolution/escalation of issues. Work with internal/external stakeholders, External/Internal Audit, and Service Providers regarding specific audit actions related to Problem Management and other ITSM processes. Act as the primary interface for day-to-day liaison with Service Providers …/support functions, and operational IT. Strong analytical skills with experience in analysing complex information and management information to drive decisions. Proven ability to build strong relationships with internal stakeholders and third-party suppliers/partners. Experience using Problem Management Software/Tooling, e.g., ServiceNow. Desirable: ITIL V3 certification or similar experience within a service management framework. Benefits More ❯

within financial services. Preferred Background Experience working with top-tier banks, asset managers, or technology consulting firms delivering transformation engagements. Prior experience engaging with financial regulators , internal audit, and risk teams during transformation governance. Strong commercial and business acumen; able to translate business priorities into feasible technical strategies. Education Bachelor’s or Master’s degree in Computer More ❯

measures to protect sensitive customer and financial data. Ensure systems comply with relevant regulations and standards (e.g., GDPR, PCI-DSS) working with Breedon General Counsel and Internal Audit teams to assure this. Conduct regular security audits and risk assessments. Manage stakeholder expectations and ensure their needs and requirements are met. Supplier Management: Manage relationships with suppliers and … fully documented. Prepare regular reports on system performance, project status, and security incidents as required. Project/Programme Support: Support Steering Groups, Project Boards, and other meetings with internal teams. Coordinate with external third-party vendors and internal teams. Regularly review project phases to ensure timely completion, highlighting and mitigating key risks. Qualifications/Experience/ More ❯

CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with the Assurance parties such as Internal Audit (LOD3) and the major IT and SOC managed service providers to close control gaps, and feed lessons learnt into standards and patterns. Role Dimensions Organisation-wide information security remit … plans, acting as a trusted advisor. Mix of advisory, oversight and hands-on walkthroughs; pragmatic, proportionate risk approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the … clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP OT/ICS: SANS GICSP, ISA/IEC 62443 Our role in supporting diversity and inclusion As an international workforce More ❯

CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with the Assurance parties such as Internal Audit (LOD3) and the major IT and SOC managed service providers to close control gaps, and feed lessons learnt into standards and patterns. Role Dimensions Organisation-wide information security remit … plans, acting as a trusted advisor. Mix of advisory, oversight and hands-on walkthroughs; pragmatic, proportionate risk approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the … clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP OT/ICS: SANS GICSP, ISA/IEC 62443 Our role in supporting diversity and inclusion As an international workforce More ❯

Collaborate with Oracle Support and internal teams for essential patch management and environment maintenance. Conduct release readiness reviews, ensuring compliance with ITIL, SOX , and internal audit requirements. 3. Quality Leadership Establish and monitor KPIs for testing and release quality, driving continuous improvement in test automation and deployment processes. Lead and mentor internal and More ❯

Culture: Develop and deliver comprehensive data protection training programmes to employees at all levels, fostering a culture of data privacy and security awareness throughout the organisation. Internal Audit: Conduct regular audits and monitoring of data processing activities to identify and mitigate risks, ensuring corrective actions are implemented. Point of Contact: Act as the primary contact for data More ❯