Information Technology Audit Manager

IT Audit Manager London/Hybrid Contract to 31/03/2027 Day rate from £700 DOE via Umbrella Company Our commitment is to provide equal opportunity regardless of, for example, your gender, age, ethnicity, disability, sexual orientation or beliefs. We also engage with employers to develop programmes and pathways that embrace diverse talent and promote more inclusive employment worldwide through partnerships and other initiatives. We recognise and celebrate the value of difference and how it makes us faster, smarter and more innovative than our competition.

My client is one of the largest financial institutions headquartered in Japan, with an established presence across all consumer and corporate banking businesses. Through its subsidiaries and affiliates, they offer a diverse range of financial services, including commercial banking, leasing, securities, credit card, consumer finance and other services. They are looking for an IT Audit Manager to join their team on a contract to the end of March 2027. You will be working Monday to Friday, standard office hours with the occasional out of hours requirement in line with business needs. The role is hybrid working being in the office 2-3 days a week with the remainder of time working from home.

Role Summary This role exists to deliver an independent view and assurance over the IT control environment in operation in EMEA business entities. It undertakes and manages audits across a range of IT Infrastructure and applications and supports teams of auditors to deliver in depth testing and review to support audit opinions. It contributes part of the Audit opinion provided the EMEA Region Management and Group Audit Committee in Tokyo.

Business Area Internal Audit are asked for an independent opinion on the changes and controls implemented by the organisations within EMEA Region, this role aims to provide insight and opinion on the key controls in operation in the business areas under review and therefore must have the expertise to provide advice and consultancy services as required.

Position Description This role is responsible for managing the delivery of the planning, fieldwork and reporting for audit assignments as Auditor in Charge (AIC), under direction from the IT Audit Partners. This will include highlighting key areas of risk, assessing established and new controls in operation over a range of activities in any business in EMEA Region, and IT functions outsourced to JRIA New York.

Responsibilities Preparation of planning material to ensure that the internal controls covering the key risks are appropriately tested in order to provide reasonable assurance to the Board, Group Management, Entity Management and other stakeholders, including regulators, that an effective internal control environment exists. Overseeing the work performed for the audit assignment by other team members. Providing guidance and support to team members as necessary. Directing testing to cover key areas of risk and determine the scope and focus in agreement with the Audit Partner of the review, and share expertise in their area with other team members. Preparing draft Audit Findings for review by AD Management. The Audit Findings must be factually accurate and clearly communicate the findings and recommendations. The Audit Manager must clearly communicate the issues to AD Management and then to business Management including senior stakeholders. In doing so, the Audit Manager may experience some significant challenge and must therefore be resilient and articulate in their presentation of the issues. Preparing the final internal audit report. The report must clearly communicate areas of positive assurance as well as areas where improvement in the internal control environment is required. Undertaking follow-up and closure of internal audit recommendations. This process requires the validation of action taken by line Management for the closure of all High and Moderate Priority Findings and the provision of assistant and guidance to Management. The Audit Manager may be also asked to assist the Audit Partner with maintaining relationships with Senior Management (D, ED and MD level) in a nominated area of responsibility, have insight into business activities and be able to comment on key areas of risk for those business areas.

Requirements Professional Experience: Extensive experience internal audit, with a focus on IT audits within financial services or a regulated environment. Technical Knowledge: Strong understanding of IT governance frameworks (e.g., COBIT), cybersecurity principles, IT general controls, and regulatory requirements such as DORA or GDPR. Risk & Control Expertise: Ability to assess technology-related risks across infrastructure, applications, and third-party services, and design effective audit procedures. Analytical Skills: Proficiency in interpreting complex technical environments, identifying control gaps, and leveraging data analytics for audit testing. Communication Skills: Excellent written and verbal communication skills to articulate technical findings clearly for both technical and non-technical stakeholders. Leadership & Team Management: Proven experience in leading IT audit engagements, mentoring team members, and managing competing priorities. Stakeholder Management: Ability to engage with senior IT and business leaders, influence decision-making, and maintain strong professional relationships. Resilience & Professionalism: Capacity to handle challenging discussions and present issues confidently to senior stakeholders.

Preferred Experience Industry Knowledge: Familiarity with banking technology environments, including core banking systems, cloud platforms, and cybersecurity practices. Regulatory & Compliance Expertise: Understanding of financial sector regulations impacting IT (e.g., DORA, PRA, ECB guidelines). Audit Tools & Technology: Experience with audit management systems, data analytics tools, and automated testing solutions. Project Management: Exposure to managing IT audit projects end-to-end, including planning, execution, and reporting. Professional Certifications: CISA, CISSP, CRISC, or equivalent qualifications are highly desirable. Candidates must show evidence of the above in their CV to be considered.

Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.