IT Internal Auditor

Ready to lead IT audits, challenge risk and strengthen technology controls.

As an IT Internal Auditor, you’ll partner closely with Technology and Information Security teams to understand how controls work in practice and support the business in managing risk in a pragmatic, constructive way. You’ll play a key role in shaping and delivering the annual audit plan, offering expert insight into IT governance, controls and risk, and providing clear guidance that supports effective decision‑making.

You’ll take ownership of end‑to‑end IT audits, from planning and scoping through to testing, analysis and reporting. You’ll independently assess the design and effectiveness of key IT processes, agree meaningful improvement actions with stakeholders, and help reduce risk while improving efficiency. Your work will cover core IT general controls including change management, user access management, technology resilience and disaster recovery, as well as assurance over transformation programmes and major projects.

You’ll also lead the annual assessment of the Data Security and Protection Toolkit submission, coordinating evidence gathering, engaging stakeholders, and ensuring a robust, well‑supported outcome. Working collaboratively with the audit team, you’ll deliver integrated audits that provide a joined‑up view of risk, identify control weaknesses, and agree proportionate actions with senior management.

Communicating clearly is central to the role. You’ll produce well‑structured audit reports, present findings confidently to senior leaders and Board members, and track actions through to resolution, escalating where necessary. Alongside audit delivery, you’ll build strong relationships across the business, helping to anticipate emerging risks and providing expert advice through investigations and special projects.

You’ll bring solid experience in technology assurance, either within internal audit or equivalent risk function, or through strong hands‑on technical experience in areas such as infrastructure, networks or information security. You’ll be comfortable navigating complex technology environments and challenging controls in a constructive, proportionate way. You’re confident building strong relationships across the business and can adapt your approach when working with a wide range of stakeholders. You combine sound commercial judgement with a pragmatic mindset, knowing when to dig deep and when to focus on what matters most, and you’re equally comfortable leading audits independently or collaborating as part of a wider team.

This role closes on 23rd April 2026: however, we may close the advert sooner if we get inundated with high-quality applications. Apply now – you’ll be pleased that you did #LI-GP1

#LI-GP1