[Only 24h Left] Technology Internal Audit Director

Job Description Specific Role Responsibilities: Strategic Leadership: - Develop and implement a risk-based audit plan aligned with business objectives and regulatory requirements. - Oversee the end-to-end execution of complex technology audits, including cybersecurity, software development, IT infrastructure, data privacy, and ITGC. - Perform continuous risk assessments to identify emerging technology risks and adapt the audit plan accordingly. Stakeholder Engagement: - Build and maintain strong relationships with senior management and the audit committee. - Communicate audit findings, risks, and recommended actions effectively to stakeholders. Team Management: - Lead, mentor, and coach a high-performing team of technology auditors. - Foster a culture of continuous learning, professional development, and alignment with UK working hours. Quality Assurance: - Ensure consistent application of internal audit methodology and adherence to ISACA, IIA, and other professional standards. - Prepare and present comprehensive, high-impact audit reports articulating findings, root causes, and actionable recommendations. Innovation and Continuous Improvement: - Drive continuous improvement within the internal audit function by leveraging technology, including AI and advanced analytics. - Ensure IT audit activities align with regulatory requirements and frameworks (e.g., NIST, ISO 27001, DORA). Functional Area Responsibilities: Technology Governance and Strategy: - Develop a comprehensive, risk-based audit plan aligned to IT strategy. - Assess IT governance, risk management, and internal control frameworks. - Provide strategic advisory to executive management and audit committee on technology risks. - Oversee audits of emerging technologies, including AI, ML, and RPA. Cybersecurity and Information Security: - Integrate cybersecurity into the audit plan, focusing on vulnerability management, access controls, and data protection. - Evaluate the design and effectiveness of technical and administrative security controls. - Assess incident response and crisis management readiness. - Ensure compliance with data privacy regulations (e.g., GDPR, CCPA). IT Operations and Infrastructure: - Audit cloud governance, security, and controls. - Review business continuity and disaster recovery plans. Data Governance and Analytics: - Assess data accuracy, integrity, and privacy across systems. - Lead adoption of audit analytics for comprehensive data review. - Evaluate risks associated with IT vendors and third-party providers. Team Leadership and Management: - Oversee audit execution and quality assurance activities. - Attract, hire, and mentor skilled IT auditors to address complex technology risks. Stakeholder Engagement and Influence: - Build trusted relationships with senior leadership (CTO, CISO) and audit committees. - Present findings and risk insights to influence executive decision-making. - Foster a culture of risk awareness and strong internal control practices. Experience Required: - Minimum 15 years progressive IT audit experience, including senior leadership experience. - At least 3 years in a first-line technology role (developer, infrastructure engineer, cybersecurity specialist, etc.). - Bachelor's degree in Cyber/Information Technology, Computer Science, or related field; master's/MBA advantageous. - Certifications: CISA, CISM, CISSP highly desirable; CIA advantageous. - Deep technical expertise in cybersecurity, cloud platforms, network infrastructure, SDLC, data governance, and IT risk management frameworks. - Strong analytical, problem-solving, and critical-thinking skills. - Proven leadership, project management, and organisational skills. - Exceptional written and verbal communication skills for technical and non-technical audiences. - High integrity, professionalism, and professional scepticism.