Senior Internal Auditor - IT and Operational Audit

Senior Internal Auditor \- IT and Operational Audit

Location: Flexible (Hybrid – 3 days from office)

Department: Risk, Audit \& Assurance

Job type: Permanent

Join us and make a difference when it matters most!

We are committed to strengthening risk management, safeguarding data, and enhancing operational resilience. This role offers the opportunity to shape audit strategies and partner with the business to ensure robust controls across IT, data, and operational risk landscapes.

The Team

This role sits within the Risk \& Audit function and works closely with IT, Finance, Operations, and senior leadership teams. The position plays a key role in strengthening governance, ensuring regulatory compliance, and supporting enterprise risk resilience.

Role and Responsibilities

IT Audits

• Support the development and delivery of the annual IT and data risk audit plan.


• Plan and execute IT audits across key areas including:

+ IT system implementations
+ Cybersecurity and IT resilience
+ Artificial Intelligence
+ IT General Controls (ITGCs)
+ IT governance frameworks
+ Critical third\-party/vendor risk assessments

• Assess compliance with relevant regulations and standards, including EU AI Act, NIS2, and GDPR.


• Identify system vulnerabilities and control gaps, providing actionable recommendations to mitigate risks.


• Ensure timely and robust follow\-up of audit findings and remediation actions.

Operational Audits

• Plan, lead, and deliver operational audits across areas such as:

+ Manufacturing and production processes
+ Security and access controls
+ Data privacy
+ Back\-office and support functions

• Provide insights to improve efficiency, strengthen controls, and reduce operational risks.


• Monitor and track implementation of agreed audit actions.

Risk Resilience

• Support implementation of arisk preparedness and resilience framework across the organisation.


• Assist in identifying, documenting, and assessing functional risks, ensuring appropriate mitigating controls are defined and embedded.


• Partner proactively with IT and business stakeholders to enhance governance over key risk areas, including:

+ Cybersecurity
+ IT disaster recovery and business continuity
+ Artificial Intelligence risk management

• Promote a risk\-aware culture and continuous improvement in risk management practices

What you’ll bring

• Experience in IT audit, risk management, or internal audit within a complex organisation.


• Strong understanding of IT risk domains, including cybersecurity, data governance, and IT controls.


• Knowledge of relevant regulatory frameworks (e.g., GDPR, NIS2, EU AI Act) is preferred.


• Proven ability to plan and execute audits independently and deliver high\-quality insights.


• Strong analytical, problem\-solving, and stakeholder management skills.


• Ability to influence and collaborate with cross\-functional teams.


• Professional certifications (e.g., CISA, CRISC, CIA, or equivalent) are advantageous.


• Fluent in English, both written and spoken.

What we offer in return

• Flexible benefits package


• Opportunities for learning and professional development


• Collaborative and inclusive working environment


• Full ownership of the project

Diversity and inclusion

We are committed to creating an inclusive workplace where everyone feels valued, respected, and empowered to reach their full potential.

About Us

We are a forward\-looking organisation focused on strong governance, innovation, and resilience. Our goal is to ensure sustainable growth while maintaining the highest standards of risk management and compliance.

Additional Job Description:

Primary Location:

GB LondonJob Posting Date:

2026\-06\-02Job Type:

Permanent

This listing is from indeed. View original listing ↗