Technology Risk Auditor- Manager

At OakNorth, we're on a mission to empower ambitious businesses and the communities they serve. Since 2015, we've lent over $21 billion across the UK and US, helped create more than 58,000 new homes and 36,000 new jobs, and supported hundreds of thousands of personal savers — all while driving economic growth in the markets we serve.

 

 

We are looking for a driven and enthusiastic expert with a keen interest in Cybersecurity and Technology Audits to join the Internal Audit team at OakNorth Bank. The successful candidate should possess a foundational understanding of IT general controls, Cybersecurity controls, and key industry frameworks such as NIST, ISO 27001, and COBIT. Prior experience in audit or compliance will be regarded as an added advantage. This position offers an exceptional opportunity to gain practical, hands-on experience in technology auditing within OakNorth’s dynamic internal audit environment.

Key responsibilities for this role include:  

• Contribute actively to technology and cybersecurity audits, participating in all phases from initial planning through detailed reporting.
• Support the internal audit team by engaging in technology-focused assignments, such as automating audit testing procedures and conducting comprehensive data analysis on large datasets to uncover valuable audit insights.
• Work collaboratively with internal stakeholders to identify audit requirements, providing proactive assistance and seeking timely guidance throughout each stage of the audit process.
• Assist in the creation, updating, and maintenance of key documentation, including policies, procedures, and control frameworks aligned with industry standards.
• Participate in internal audit reviews and gap assessments to highlight opportunities for process improvements and enhanced controls.
• Help in compiling, preparing, and presenting audit reports and findings to management, ensuring clarity and actionable recommendations.

 

5+ years of experience with Educational background in Computer Science, Information Systems, or related field: Currently pursuing or recently completed a degree relevant to technology and auditing.

Keen interest in Cybersecurity and Technology Audits: Possesses genuine curiosity about cybersecurity trends and technology audits, staying updated on industry best practices and regulatory expectations. Demonstrates motivation to expand knowledge in technology, cybersecurity, and internal audit practices.

Basic foundation in Technology and Cybersecurity Risk & Controls: Demonstrates a good grasp of core principles related to technology risks, IT general controls, Cybersecurity controls, and control frameworks (NIST, ISO 27001, COBIT, or similar frameworks), with the ability to quickly learn and apply key concepts in real-world audit scenarios.

Basic knowledge of data analytics or programming languages (e.g., Python, SQL): Advantageous for automating audit procedures and working with large data sets.

Excellent communication skills in English: Able to clearly articulate technical and non-technical information both verbally and in written form, facilitating effective collaboration with team members and stakeholders.

Experience or strong interest in leveraging Artificial Intelligence tools (such as ChatGPT) to improve audit effectiveness: Shows enthusiasm for adopting emerging technologies to automate processes, enhance data analysis, and drive innovation within the audit function.

Residing in the Delhi/NCR region: Based in or willing to relocate to Delhi/NCR, ensuring availability for in-person meetings and collaboration as required.

Proven ability to work both independently and collaboratively: Capable of managing assigned tasks autonomously while also thriving in team-based environments, proactively seeking feedback and guidance when needed.

Analytical and problem-solving skills: Ability to analyse large datasets, identify patterns, and extract actionable insights to support audit objectives.

Attention to detail: Meticulous in reviewing documentation, testing controls, and preparing audit reports.

Strong organisational and time management skills: Capable of prioritising tasks and managing deadlines effectively in a dynamic work environment.