Sainsbury's
,
Edinburgh, City of Edinburgh
IT Audit Manager
Overview
Job Description
Internal IT Audit Manager Sainsbury's Bank & Argos Financial Services (AFS), Lochside, Edinburgh In a nutshell The Sainsbury's Bank Internal Audit function adds value to SB by providing assurance on the SB risk management and control processes as they relate to customer, financial or reputational risk. The successful person in the IT Audit Manager role will be responsible for supporting the Audit Director and Senior Audit Manager in delivering an independent and objective risk-based IA service designed to systematically evaluate and improve the Sainsbury's Bank risk management, control and governance processes. The IT AM will support their Senior Audit Manager through leading and delivering their allocated audit assignments through the planning, fieldwork, reporting and follow-up stages with minimal supervision. What you need to do * Contribute appropriately to the provision of an independent assessment of the SB governance, risk management and control processes. * Contribute appropriately to the achievement of the IA department objectives including development and implementation of the SB Internal Audit IT function and IA frameworks. * Support and manage all relevant aspects of the IA strategy and services, consistent with current professional standards * Lead and undertake assigned audits to time, plan and quality using the SB audit methodology and quality standards. * Coaching, develop and performance manage, as required, any Senior Auditors within the IT Audit team. * Identify and assess potential risks to the SB business and appropriate audit responses, working in line with current regulatory and statutory requirements. * Take accountability for the end-to-end audit process and deliverables. * Liaise with the SB business to confirm that planned timescales for the assignment are viable. * Set up and carry out any required site visits, conducting 'walk through' interviews with key staff to identify processes, risks and controls. * Audit technology risks and controls within the scope of business led audits. * Create and issue an Audit Planning Document, assessing the adequacy of controls, identifying tests to be completed and the associated testing rationale. * Create and issue the Terms of Reference to the business. * Review key audit documents with the SAM and AD, as required by the SB IA methodology. * Lead and conduct site visits to test the effectiveness of controls. * Document testing in the SB audit software system. * Draft the audit report and review with the SAM. * Liaise with key business stakeholders to introduce and discuss the draft and final reports. * Conduct and on-going follow up of issues to ensure that they are monitored until closure. * Work closely with business audit colleagues on integrated audits to understand and test IT controls underlying business processes. * Demonstrate supportive and effective teamwork on all assignments. * Develop and manage strong relationships within the business. * Demonstrate the capability to challenge the business on risks and controls, as required, and effectively influence and negotiate when making recommendations for improvements. What you need to know and show * Strong experience in risk based IT auditing or risk and control activities, ideally from a "big 4" background. * CISA, IIA IT Auditing Certificate, CISSP or equivalent qualification is desirable but not essential. * Experience of working in a largely outsourced environment essential. * Audit or assurance experience of Cyber risks in a Digital driven business. * Experience in undertaking change audit assignments e.g. Data related, transitional or Cloud technology programmes. * Demonstrated experience in managing business relationships using excellent communication and relationship building skills. * Experience of working in an integrated audit function, working closely with business audit colleagues. * Experience of building, developing and maintaining audit methodologies and frameworks. * Excellent analytical, evaluation and problem solving skills. * Excellent influencing and negotiation capabilities. * Strong focus on finding solutions that have the right outcomes, acceptable to both the auditee and IA function. Colleague Conduct Rules The individual performing this role is expected to adhere to the conduct rules as specified by our regulators (PRA and FCA). Our benefits In addition to the all-important competitive salary, pension & bonus offering, we totally get that life outside work is important to us all. So we want to shout out some of our other great benefits... * We offer flexible working to help you achieve a good work/life balance. * Opportunity to buy extra holidays is on the table. * Discounts on your weekly shop, buying a laptop or sofa? We've got it covered through your Sainsbury's, Argos and Habitat store discount card. * Cycle to work scheme and great coffee and cake! A little about us & our culture We're proud of our heritage as the UK's first supermarket bank. As digital t