Senior Audit Manager – Cyber Security and Operational Resilience
New Today
OverviewJOB TITLE: Senior Audit Manager – Cyber Security and Operational ResilienceSALARY: £90,440 - £131,540 (dependent on location)LOCATION(S): Edinburgh, Bristol, LondonHOURS: Full-timeWORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.About this opportunityAn exciting opportunity has become available to join the Group Audit and Conduct Investigations (GA&CI) function and the Technology Risk audit team as a Senior Audit Manager (Portfolio Lead) in Cyber Security and Operational Resilience. This role provides the opportunity to shape as well as lead audits, harnessing a deep understanding of operational resilience, cyber security and technology risks to provide high quality independent assurance on the effectiveness of controls.ResponsibilitiesAudit Planning: planning for a portfolio of audits, requesting/selecting resources and liaising with stakeholders to discuss and propose scope and timelines.Audit Execution: managing delivery of a portfolio of audits, delivering audits on time and within budget, ensuring quality of audit file and coverage of agreed scope, ensuring compliance with audit methodology, and providing progress updates to the Head of Audit and Audit Directors.Audit report preparation and agreement with stakeholders.Oversee the follow-up and subsequent remediation of audit issues identified.Coaching and supporting colleagues.Providing SME insights and support.Driving personal growth and continuous improvement.What you’ll needIndustry best-practices - Strong understanding and experience of both UK Operational Resilience regulations and business continuity best practices. Strong technical knowledge of Cyber Security best practices, risks, frameworks and standards, including, plus practical application and understanding of NIST, MITRE and ISO27001. Related resilience and cyber/ information qualifications valued e.g. Certified Information Systems Security Professional (CISSP).Audit and/ or risk and controls experience – Practical experience of assessing operational resilience, cyber and technology risks and key controls, documenting appropriate test plans to deliver on audit objectives. Applicants should be able to identify control gaps and clearly articulate these to senior stakeholders.Stakeholder management - The ability, skill, and experience to effectively manage senior stakeholder relationships, building credibility and trust.Project management - Strong project management skills and a focus on delivery of the audit plan are critical and applicants should be self-starting and proactive.Team leadership – Leadership and collaboration skills are key to achieving the Group and function’s objectives. Applicants should be comfortable both leading and participating in teams, supporting team members and management to deliver on team and personal goals.And any experience of these would be really useful:Technically proficient, with hands-on technology experience (e.g. security testing, ethical hacking). Ability to use and/ or develop technical skills.Solid understanding of technology infrastructure, networks, cloud technologies and related architecture and security frameworks.Knowledge of software development and software engineering methods, practices, and tools across the software development lifecycle.Experience and ability to develop innovative tools to support audit testing and continuous auditing.About working for usOur focus is to ensure we are inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it is why we especially welcome applications from under-represented groups. We are disability confident. So, if you would like reasonable adjustments to be made to your recruitment processes, just let us know.We also offer a wide-ranging benefits package, which includes:A generous pension contribution of up to 15%An annual performance-related bonusShare schemes including free sharesBenefits you can adapt to your lifestyle, such as discounted shopping30 days’ holiday, with bank holidays on topA range of wellbeing initiatives and generous parental leave policiesWant to do amazing work, that is interesting and makes a difference to millions of people? Join our journey.
#J-18808-Ljbffr
- Location:
- United Kingdom
- Job Type:
- FullTime