IT Audit Manager

Location - Edinburgh, Milton Keynes, Manchester or London and Home

In a nutshell

As the IT Audit Manager, you'll be responsible for supporting the Audit Director (AD) and Senior Audit Manager (SAM) in delivering an independent and objective risk-based Internal Audit service designed to systematically evaluate and improve the Sainsbury's Bank risk management, control and governance processes. You'll support the SAM through leading and delivering allocated audit assignments through planning, fieldwork, reporting and follow-up stages with minimal supervision. You'll deliver audit assignments and reporting through appropriate planning, resource management and appropriate quality assurance of your own work and that of any Senior Auditors.

We are open to this role being based from our Edinburgh, Manchester, Milton Keynes or London SBAFS (Sainsburys Bank & Argos Financial Services) locations, however when we return to our normal ways of working occasional travel to Edinburgh will be required.

What you need to do

• To contribute appropriately to the provision of an independent assessment of the SB governance, risk management and control processes.
• To contribute appropriately to the achievement of the IA department objectives including development and implementation of the SB Internal Audit IT function and IA frameworks.
• To support and manage, efficiently and effectively, all relevant aspects of the IA strategy and services, consistent with current professional standards
• To lead and undertake assigned audits to time, plan and quality using the SB audit methodology and quality standards, regularly reporting progress to the SAM.
• To provide coaching, development and performance management, as required to any Senior Auditors within the audit team.

Delivering the audits

• Identify and assess potential risks to the SB business and appropriate audit responses, working in line with current regulatory and statutory requirements.
• Take accountability for the end-to-end audit process and deliverables.
• Undertake their assigned audits on time and to quality standards, using the SB IA methodology meeting the following requirements during the planning, fieldwork and reporting stages:

Planning

• Liaise with the SB business to confirm that planned timescales for the assignment are viable.
• Discuss the business context and audit scope with the SAM, including any issues or concerns and resourcing challenges.
• Set up and carry out any required site visits, conducting 'walk through' interviews with key staff to identify processes, risks and controls.
• Consider technology risks within the scope of business led audits.
• Capture all relevant data within process maps and meeting notes.
• Create and issue an Audit Planning Document, assessing the adequacy of controls, identifying tests to be completed and the associated testing rationale.
• Design the test strategy to be used during fieldwork.
• Create and issue the Terms of Reference to the business.
• Review key audit documents with the SAM and AD, as required by the SB IA methodology.

Fieldwork

• Lead and conduct site visits to test the effectiveness of controls.
• Document testing in the SB audit software.
• Identify, analyse and classify issues arising from the audit fieldwork, involving the SAM and AD as required, suggesting effective and efficient control improvements.
• Work closely with business audit colleagues on integrated audits to understand and test IT controls underlying business processes.
• Demonstrate an awareness of the relevance of issues identified to the wider business.
• Present regular updates to the business during testing.
• Reporting
• Finalise meeting notes and reports on control tests and enter the data into the SB audit software, in line with the SB IA methodology.
• Draft the audit report and review with the SAM.
• Escalate contentious issues or findings to the SAM and AD as required.
• Liaise with key business stakeholders to introduce and discuss the draft and final reports.
• Meet key auditees with the SAM to present the audit findings.
• Conduct and on-going follow up of issues to ensure that they are monitored until closure.

• Demonstrate the capability to challenge the business on risks and controls, as required, and effectively influence and negotiate when making recommendations for improvements.

What you need to know and show

• Strong experience in risk-based IT auditing or risk and control activities, ideally in financial services.
• Experience of working in a largely outsourced environment essential.
• Audit or assurance experience of Cyber risks in a Digital driven business.
• Experience in undertaking change audit assignments e.g. Data related, transitional or Cloud technology programmes.
• Demonstrated experience in managing business relationships.
• Experience of working in an integrated audit function, working closely with business audit colleagues.
• Experience of building, developing and maintaining audit methodologies and frameworks.

• CISA, IIA IT Auditing Certificate, CISSP or equivalent qualification is desirable but not essential.

Our benefits

In addition to the all-important competitive salary, pension & bonus offering, we totally get that life outside work is important to us all. So, we want to shout out some of our other great benefits...

• We offer flexible working to help you achieve a good work/life balance.
• Opportunity to buy extra holidays is on the table.
• Discounts on your weekly shop, buying a laptop or sofa? We've got it covered through your Sainsbury's, Argos and Habitat store discount card.
• Cycle to work scheme and great coffee and cake!

A little about us & our culture

We're proud of our heritage as the UK's first supermarket bank. As digital technology drives the banking landscape we want to be at the cutting edge of this technology, offering award winning innovative digital banking products to our customers. Technology is where we see our growth therefore, we need innovators to join us and drive the next phase of our evolution.

We're a friendly bunch who collectively share a passion to make our customers' financial lives easier. As part of the wider Sainsbury's Group, being one of the UK's most trusted brands, it brings our colleagues a wealth of opportunities to fulfil their potential. Here, you can be part of something bigger and help to create a new approach that puts the customer at the heart of everything we do.

Everyone is welcome at the Sainsbury's Group, and we're proud to be an equal opportunities employer that champions a diverse and inclusive culture that reflects the diversity of the communities we serve.

Work-life balance is important to us, so we offer our colleagues as much flexibility as possible in line with the needs of their role. We trust them to decide how, where and when they work, combining remote and collaborative working with a flexible approach to hours within their working days, giving plenty of time and space for life outside of work whilst delivering against our business goals.

If you're interested in applying and are excited about working with us but are unsure if you have the right skills and experience - we'd still love to hear from you! We'd also be happy to discuss more flexible working options such as job shares and part time working.

As this role involves working within a regulated environment any offer will be subject to satisfactory background checks including criminal record check, credit check, fraud check and employment references.

#LI-LC1