1 to 25 of 363 Internal Audit Jobs in the UK

a leading financial institution committed to excellence in compliance, risk management, and technological advancement. We are currently seeking an experienced IT Banking Auditor to join our Internal Audit team in Birmingham. This is a critical role, offering the opportunity to evaluate and improve the organisation's IT systems and controls in line with regulatory and operational standards. … best practices, and regulatory requirements (e.g., FCA, PRA, GDPR, ISO 27001, PCI-DSS). Collaborate with business and IT stakeholders to understand operational processes and system architecture. Prepare detailed audit reports and present findings to senior management. Support external auditors and regulatory examinations where necessary. Stay current on emerging technologies, threats, and audit techniques. Requirements: Essential: Bachelor's … equivalent. Minimum of 3-5 years of experience in IT auditing within the financial services or banking sector. Strong understanding of IT general controls, application controls, and risk-based audit methodology. Familiarity with banking regulations and standards (e.g., Basel III, SOX, PSD2). Excellent communication and reporting skills, with the ability to explain technical issues to non-technical stakeholders. More ❯

Information Security Officer in developing the budget projections based on objectives What we will be looking for you to demonstrate Senior level experience in Information Security, IT risk, IT Audit or a similar position involving IT and business change Graduate of college or university, preferably with a degree in computer science or information management, or Professional certification in one … or more of the following disciplines - IT governance (e.g., CGEIT), security (e.g., CISSP, CISM), internal audit (CISA). Working (not necessarily technical) knowledge of security technologies (encryption, data protection, network intrusion prevention, host intrusion prevention, firewalls, privilege access, etc.) Working (not necessarily technical) knowledge of information technologies (networking concepts, protocols, servers, workstations, laptops, LAN/WAN, wired … security best practices (physical, technical and organizational controls) Experience with IT and IS Governance frameworks such as COBIT, ITIL, NIST-CSF and ISO 2700x Experience with governance, compliance and audit within IT environments Experience of risk management, including risk analysis, mitigation and monitoring Knowledge of information security regulations and legislation applicable to WSP What Sets You Apart Master's More ❯

in computer science, management information systems, or a relevant field, or equivalent demonstrable experience. 5+ years' of experience in Information Security or Information Technology 3+ years' experience performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO More ❯

Vice President, Senior IT Audit Manager Vice President, Senior IT Audit Manager Apply locations London time type Full time posted on Posted 2 Days Ago job requisition id -WD Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across … our common values, to behave with integrity and responsibility, and to build a culture which is fair, transparent, and honest, underpin everything that we do. EMEA Internal Audit Office (EIAO), as the Bank's third Line of Defence, and in accordance with the Global Institute of Internal Auditors (IIA) International Standards (IIA Standards), provides independent … and mitigate key risks to achieving the Bank's objectives. NUMBER OF DIRECT REPORTS TBC MAIN PURPOSE OF THE ROLE An exciting new opportunity has emerged for a Senior Audit Manager to join our IT audit team within the EMEA Internal Audit function. Senior Audit Managers are responsible for executing and delivering all audit More ❯

Information Security Analyst - Audit, Compliance & Cybersecurity United Kingdom - Southampton At NICE, we don't limit our challenges. We challenge our limits. Always. We're ambitious. We're game changers. And we play to win. We set the highest standards and execute beyond them. And if you're like us, we can offer you the ultimate career opportunity that will … compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response. How will you make an impact? Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes. Audit Preparation: Assist internal control owners in … scoping appropriate evidence and preparing for external audits. Gap Assessments: Facilitate and/or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment. Control Documentation: Develop and maintain control narratives, walkthroughs, and More ❯

and provide direction and input for the maturation of the Cloud Security Framework in respect to data classification. Enhance security programs in response to regulatory requirements, internal audit and planned strategic initiatives. Foster relationships with key functional teams such as IT, Compliance, Operations, Finance, HR, Internal Audit, and Enterprise Risk to support current and … develop remediation plans and determine residual risk. Improve security metrics program to report key performance and risk indicators, trend statistical data and publish management reports for Internal Audit, Regulatory Exams, Risk Committee and Board reporting. Perform risk assessments of third-party vendors according to vendor criticality and vendor type to identify control gaps, develop remediation plans and … to effectively communicate complex technical issues to both business and technical staff at all levels. Strong collaboration skills to tackle complex security challenges that may span across multiple internal and external departments and groups. Able to effectively cope with change and comfortably handle risk and ambiguity, not upset when things are up in the air. Tenacious resolve and More ❯

The Group Internal Audit team provides independent and objective assurance and advice to the Group Audit Committee, and to the Boards of Directors of the companies within the Group, over the processes and systems of control and risk management operating in the Group. IA's scope covers all aspects of the Group and its activities and … liaises closely with other monitoring functions across the Group, including Group Compliance and Group Risk. The Group Audit team is based in London, York, Luxembourg, Lisbon and the US. The team is supplemented with additional co-source when required. What you'll be doing As a part of a small but dynamic team, you will conduct mostly Technology and … business; working with and supporting other team members; contributing to IT Audits planning and strategy, and to its continued development; and helping to build and maintain Internal Audit's presence and reputation across the Group. Outside the plan, you may be asked to conduct specific reviews or to take on special projects. You will also be expected More ❯

and prioritize security risks based on enterprise-wide impact, likelihood, and mitigation strategies. Act as a trusted security advisor, working cross-functionally with IT, legal, compliance, Internal Audit, AI Centre of Excellence and other business leadership teams to drive a culture of risk awareness. Ensure that all security risks align with regulatory requirements such as ISO … A&M GRC platform (OnSpring) to provide a structured, scalable risk register and reporting capabilities to support A&M wide requirements, and support ISO 27001:2022 certification requirements. Risk Audit Requirements: Complete annual formal risk assessment including control maturity assessment and asset register revision. Work closely with Internal Audit to ensure audit compliance and delivery … for ISO 27001. Support ownership of minor non-conformities log of internal and external audit findings through to reporting, remediation and closure. Attend ISO 27001 external audits for InfoSec Risk Management related compliance requirements. Risk Governance: Organize and facilitate bi-weekly Global Security Office Risk Management meetings, providing comprehensive tracking and updates on risk triage activities, critical More ❯

enhancements. Compliance and Risk Management Ensure compliance with internal policies, controls, and external regulations. Identify and mitigate risks associated with O2C processes. Work with Internal Audit, SOX office, and external auditors to improve controls. Team Leadership Lead a team across all locations, maintaining a high engagement and improve internal NPS and employee scores. More ❯

remedial action is taken and trends are monitored. Prepare and deliver training, education, and awareness sessions related to information security, assurance, and risk management. Work collaboratively with key internal and external stakeholders-including third-party suppliers-ensuring best practices and compliance with relevant legislation and standards. Stay informed on developments in legislation, practices, and tools related to information … security and data protection, fostering continuous improvement and innovation. Represent the organisation in internal and external meetings, promoting information security standards and contributing to relevant partnerships and working groups. Perform other duties as appropriate to the nature and level of the role. Regular travel across operational areas may be required. PERSON SPECIFICATION Knowledge: A Levels or equivalent. Recognised … Experience: Operational delivery of security assurance in a multi-site environment. Managing compliance with standards like PSN or SyAP. Developing and enforcing information security and assurance policies. Performing internal audits and managing accreditation processes. Facilitating high-level stakeholder engagement. Collaborating with external agencies and partners on security issues. Key Skills: Ability to manage workloads, meet deadlines, and adapt More ❯

remedial action is taken and trends are monitored. Prepare and deliver training, education, and awareness sessions related to information security, assurance, and risk management. Work collaboratively with key internal and external stakeholders-including third-party suppliers-ensuring best practices and compliance with relevant legislation and standards. Stay informed on developments in legislation, practices, and tools related to information … security and data protection, fostering continuous improvement and innovation. Represent the organisation in internal and external meetings, promoting information security standards and contributing to relevant partnerships and working groups. Perform other duties as appropriate to the nature and level of the role. Regular travel across operational areas may be required. PERSON SPECIFICATION Knowledge: A Levels or equivalent. Recognised … Experience: Operational delivery of security assurance in a multi-site environment. Managing compliance with standards like PSN or SyAP. Developing and enforcing information security and assurance policies. Performing internal audits and managing accreditation processes. Facilitating high-level stakeholder engagement. Collaborating with external agencies and partners on security issues. Key Skills: Ability to manage workloads, meet deadlines, and adapt More ❯

ll lead a team of specialists, manage security operations, and support various projects and initiatives. Your role involves ensuring compliance with security standards, managing incidents, and collaborating with internal and external stakeholders. Key Responsibilities : Lead and manage the Cyber Security Operations team. Ensure compliance with security standards (ISO27001, NCSC CAF). Manage security incidents and vulnerabilities. Collaborate with … third-party suppliers and internal teams. Provide expert advice on security technologies and processes. Requirements : Proven team leadership experience.Strong knowledge of security technologies (firewalls, IDS/IPS, SIEM).Relevant qualifications (CISSP, CISM, etc.). Apply now to make a significant impact on NHS BSA's cyber security strategy! What do we offer ?o 27 days leave (increasing with … efficient resolution. Conduct forensically sound acquisitions of computer systems and media for evidence collection. Provide advice and guidance in penetration testing and improving service offerings. Carry out reviews, internal audits, and spot-checks to ensure effective operation of security measures. Provide expertise in the design and implementation of specialist security technologies and cloud systems. About us Here at More ❯

an integral part of our Technology Risk team, part of Assurance Advisory within EY UK. The opportunity We are a market leader across the Big-4 with significant new audit engagements across financial services clients and substantial projected revenue growth in the coming years. Our ongoing advancements in innovation and automation continue to place us ahead of our competitors. … will be an influential member of our Technology Risk team, and you will have the opportunity to work on a range of IT Assurance projects. There include IT External Audit Support (known in EY as FAIT or Financial Audit IT), IT Internal Audit, IT components of Regulatory Reviews and other assurance activities (e.g. client money … affecting the financial audit. Getting involved with industry research and client thought leadership. To qualify for the role you must have Demonstrable professional IT External or Internal Audit experience. Experience in delivering high quality integrated audits across IT/operations/finance including IT general controls (ITGC), IT automated controls audit. Knowledge of payments, front-to-back More ❯

the company is redefining its industry and setting new standards for the future. Operating in a dynamic and complex global environment, it is now focused on elevating its internal controls function—leveraging innovation, data, and automation to strengthen governance and enable smarter, faster decision-making across the enterprise. As part of this transformation, the business is seeking a … recommend improvements. Applying automation and analytics to test controls, perform root cause analyses, and support SOx assurance activities. Collaborating with cross-functional stakeholders—including Data & Analytics, IT, Finance, and Audit—to drive a culture of risk awareness and control excellence. Translating technical risks and data findings into clear, actionable business narratives for senior leaders and stakeholders. Partnering with external … tools. The Ideal Candidate A qualified professional (ACA, ACCA, CISA or equivalent), ideally with certifications in data analytics or automation. Significant post-qualification experience, ideally within internal audit, business controls, or risk & assurance—preferably in a Big 4, global FMCG, or complex matrix organisation. Proven experience using data analytics and automation tools to enhance internal More ❯

the company is redefining its industry and setting new standards for the future. Operating in a dynamic and complex global environment, it is now focused on elevating its internal controls function—leveraging innovation, data, and automation to strengthen governance and enable smarter, faster decision-making across the enterprise. As part of this transformation, the business is seeking a … recommend improvements. Applying automation and analytics to test controls, perform root cause analyses, and support SOx assurance activities. Collaborating with cross-functional stakeholders—including Data & Analytics, IT, Finance, and Audit—to drive a culture of risk awareness and control excellence. Translating technical risks and data findings into clear, actionable business narratives for senior leaders and stakeholders. Partnering with external … tools. The Ideal Candidate A qualified professional (ACA, ACCA, CISA or equivalent), ideally with certifications in data analytics or automation. Significant post-qualification experience, ideally within internal audit, business controls, or risk & assurance—preferably in a Big 4, global FMCG, or complex matrix organisation. Proven experience using data analytics and automation tools to enhance internal More ❯

methods and practices around assurance and risk, shaping activities, processes and systems. In this role you will work across team and department boundaries, engaging with IT, Internal Audit and Information Security to ensure that controls are built and implemented, monitored and tested, and that these are auditable and documented within the process models. This role will be … quality standards, procedures and systems ensuring effective working and continuous improvement Act as a first point of contact for any internal assurance stakeholders (e.g., Internal Audit team) for their enquiries relating to assurance, audit and risk issues Provide professional guidance to stakeholders on audit, assurance, risk and control Work closely with key IT … governance and compliance within best practice frameworks In-depth knowledge of ISO27001 controls and requirements Strong knowledge of IT processes and working within an IT team Understanding of the audit process, having worked with Audit (internal & external) in the past Working knowledge of risk and compliance assurance and monitoring practices, and a good understanding of risk More ❯

methods and practices around assurance and risk, shaping activities, processes and systems. In this role you will work across team and department boundaries, engaging with IT, Internal Audit and Information Security to ensure that controls are built and implemented, monitored and tested, and that these are auditable and documented within the process models. This role will be … quality standards, procedures and systems ensuring effective working and continuous improvement Act as a first point of contact for any internal assurance stakeholders (e.g., Internal Audit team) for their enquiries relating to assurance, audit and risk issues Provide professional guidance to stakeholders on audit, assurance, risk and control Work closely with key IT … governance and compliance within best practice frameworks In-depth knowledge of ISO27001 controls and requirements Strong knowledge of IT processes and working within an IT team Understanding of the audit process, having worked with Audit (internal & external) in the past Working knowledge of risk and compliance assurance and monitoring practices, and a good understanding of risk More ❯

analysing and recommending changes to processes/systems within BUs, across multiple departments and the division as a whole. Responsibilities Contributing to the development, implementation and maintenance of internal governance frameworks, including policies, standards and procedures Maintaining compliance with relevant laws, regulations and industry standards (e.g. GDPR), through collaboration with risk owners in Legal, HR and other relevant … and reporting on the ongoing performance and effectiveness of the divisional ISMS, including the development and tracking of appropriate KPIs Coordinating the response to internal and external audit activities, including the collection and cataloguing of required evidence to the necessary standard Collaborating with Internal Audit team on the development, implementation and operation of ITGCs More ❯

analysing and recommending changes to processes/systems within BUs, across multiple departments and the division as a whole. Responsibilities Contributing to the development, implementation and maintenance of internal governance frameworks, including policies, standards and procedures Maintaining compliance with relevant laws, regulations and industry standards (e.g. GDPR), through collaboration with risk owners in Legal, HR and other relevant … and reporting on the ongoing performance and effectiveness of the divisional ISMS, including the development and tracking of appropriate KPIs Coordinating the response to internal and external audit activities, including the collection and cataloguing of required evidence to the necessary standard Collaborating with Internal Audit team on the development, implementation and operation of ITGCs More ❯

As one of the world's largest networks of audit, tax and consulting firms, RSM delivers big ideas and premium service to help middle-market businesses thrive. We are a fast-growing firm with big ambitions we have a clear goal to become the premium adviser to the middle market, globally. This vision touches everything we do, motivating and … central government). Our team thrives as their responsibilities are diverse, challenging, and purposeful. We regularly work alongside other RSM teams (UK and International) including, Tax, Internal Audit, Corporate Finance, Consulting, and External Audit to help our clients address their most complex business challenges. Overall job purpose No career pathway in your current role? You won … an interest in your team. Shaping our future by leading innovation streams that build future products, services, and solutions. Representing RSM in external meetings, including attendance at client workshops, audit committees, and regional networking events. Leading our efforts on local Corporate Social Responsible (CSR) initiatives. Building trusted relationships with senior client stakeholders, and identifying opportunities where we could assist More ❯

Healthcare. In this role, you will assist in managing external auditors, stakeholders, and third parties in line with the ISO 27001 ISMS Management System. Supporting the internal audit team, handling complaints and incidents, and responding to queries will also be part of your responsibilities. Main duties of the job To provide support and advice in the development … Support the development and cascade of Information Governance guidance To be a point of contact within DHU for supervisory authorities and for individuals whose data is processed (employees, internal & external stakeholder etc.) Support DHU Healthcare with Data Privacy Impact Assessments across new projects. Coordinate and support the development of IG Action Plans with the IG lead and applicable … Healthcare. In this role, you will assist in managing external auditors, stakeholders, and third parties in line with the ISO 27001 ISMS Management System. Supporting the internal audit team, handling complaints and incidents, and responding to queries will also be part of your responsibilities. Location: Derby What DHU can offer you: Working Patterns:We recognise that More ❯

management and be able to communicate effectively at all levels. Main Duties & Responsibilities: Support the maintenance, development and continual improvement of ISBC Management System Coordinate and assist in internal audits to maintain ISO 27001 and ISO 22301 compliance Track and follow up on corrective and preventive actions resulting from audits or incidents Maintain documentation, records, and registers in … with compliance obligations Knowledge, Skills, Experience and Qualifications: Understanding of ISO 27001 and ISO 22301 frameworks, including risk management Strong organisational and documentation skills Experience with internal audit, compliance review, or policy implementation Effective written and verbal communication skills, especially for reporting, training and stakeholder coordination Analytical and problem-solving skills to assist with incident response, risk … management, corrective actions and continual improvements Relevant experience in compliance, information security, risk, or operational support roles ISO Internal Auditor training certification a benefit Ability to communicate well at all levels up to and including board level Happy with occasional UK travel and hold a full UK driving licence In return for your hard work, we offer excellent More ❯

information security controls into our technology stack. This is a full-time position. Occasional after-hours work may be required to support incident response, high-priority vulnerability fixes, or audit activities. Develop and implement data protection governance: Design, implement, and enforce data protection and information security policies and procedures aligned with business objectives and regulatory requirements Support the development … of strategies to mitigate and monitor data protection risks and incidents Coordinate internal audits, assessments, and recommend improvements to enhance data protection posture Work collaboratively with the wider Information Security team to identify and develop a strategy to mitigate, manage, and monitor data protection risks and incidents Work collaboratively with other departments to ensure the alignment of security … mitigation, containment, and recovery processes Legal and regulatory conformance: Ensure conformance with relevant regulations (CCPA, GDPR, etc.) Manage ITG group data protection process, including all relevant external audits, internal assessments, and planning Ensure the accurate review of system configurations takes place to ensure alignment with data protection and information security best practices Ensure the documenting of configuration settings More ❯

Working with team members and Subject Matter Experts or SMEs on identifying, designing, building, and performing analytics to provide risks and controls insights to business partners & Internal Audit · Document business MI Solutions to ensure this knowledge is retained within the organisation, interact with operational and technology management regarding access, processing, reporting, and integrity of source systems and More ❯

improvements Business Partnering: Building strong relationships with key stakeholders across various departments, providing financial expertise to support business objectives, budget management, and financial planning Auditing and Compliance: Conducting internal audits to ensure adherence to financial policies, internal controls, and regulatory requirements Continuous Improvement: Identifying and implementing process improvements across the Finance function, keeping abreast of industry More ❯