Negotiable
Our client an international bank is seeking for a Senior IT & Cyber Risk Controls and Audit Specialist to join their team on a permanent basis.
The purpose of this role is to provide senior specialist leadership across IT Risk, Cyber Risk, Controls Assurance, SOX IT Controls, and Audit, ensuring technology risks are effectively identified, assessed, controlled, and evidenced in line with regulatory, SOX, and internal control requirements
Responsibilities include but are not limited to:
? Leads the identification, assessment, and ongoing management of technology and operational risks across infrastructure, applications, data, and platforms.
? Applies recognised risk frameworks to assess inherent risk, control effectiveness, and residual risk exposure.
? Designs, reviews, and challenges IT and cyber controls to ensure they are effective, efficient, and proportionate.
? Oversees control testing activities, issue identification, remediation planning, and closure validation.
? Acts as a senior specialist for SOX IT General Controls (ITGCs) and relevant application controls.
? Supports annual SOX scoping, risk assessment, and control rationalisation activities.
? Coordinates audit requests, walkthroughs, testing evidence, and management responses.
? Ensures consistent, high-quality audit engagement and timely closure of audit findings.
? Maintains strong working relationships with Internal Audit and External Audit to improve outcomes and reduce repeat findings.
? Produces clear, accurate risk and control reporting for governance forums, senior management, and auditors.
? Contributes to KRIs, dashboards, and control performance metrics.
? Supports assessment and assurance of IT and cyber controls operated by third parties and service providers.
? Reviews SOC reports, assurance evidence, and remediation plans.
? Promotes a strong culture of risk awareness, SOX discipline, and control ownership across Technology & Operations.
? Provides guidance and challenge to first-line teams on control design, evidence standards, and audit readiness.
Skills and knowledge
? Strong expertise in IT risk, cyber risk, IT controls, and SOX ITGCs.
? Proven experience engaging with External Audit and Internal Audit.
? Experience in regulated financial services, ideally Tier 1 banking.
? Practical knowledge of cloud and on-premise environments.
? Strong understanding of audit methodologies, evidence standards, and remediation practices.
? Ability to balance control effectiveness with operational efficiency.
? Excellent analytical, documentation, and stakeholder management skills.
? Excellent analytical and problem-solving skills, able to turn analysis into relevant output for the Bank.
? Excellent communication skills to effectively communicate risks, recommendations, and strategies.
? Commitment to staying updated on the latest trends, technologies, and best practices.
? Bachelors degree in IT, Computer Science, Cyber Security, or related discipline, or equivalent experience.
? Professional certifications such as CISA, CISSP, CRMP, CIA, or equivalent are desirable.
? SOX, audit, or control-focused certifications or experience strongly advantageous.
Please send a copy of your CV to Sonia@bhal.co.uk
|
apply now
new search
<return to list
email to a friend
more jobs like this
alert on jobs like this
|
