Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead audits and manage compliance for fintech software in cloud environments.
- Company: Join finova, the UK's top cloud-based mortgages and savings software provider.
- Benefits: Enjoy flexible working, 25 days holiday, and great health perks.
- Why this job: Be part of a dynamic team shaping the future of fintech with impactful solutions.
- Qualifications: Need extensive auditing experience and a degree in a related field.
- Other info: Diversity is key here; we value and encourage diverse teams.
The predicted salary is between 43200 - 72000 £ per year.
Audit & Risk Lead – London
About finova
finova is the UK’s largest cloud-based mortgages and savings software provider, supporting over 60 leading lenders, 3000 mortgage brokers and 200 financial institutions. Our suite of award-winning software includes a Core Banking Platform, Broker Platform and finova Connect, a range of solutions that connect lenders, intermediaries and consumers. We specialise in offering cutting-edge fintech software to empower our clients with advanced tools and capabilities to stay competitive.
Role Overview:
This role is accountable to the Head of Risk & Compliance, and ultimately the COO. As the Audit & Risk Lead within the R&C function, you will play a crucial role in ensuring the delivery of compliance, security, and governance within our solutions offered to clients’ in Azure & AWS cloud-hosted estates.
Your Responsibilities:
- Assessing and implementing compliance measures in line with the R&C control framework.
- Auditing and reviewing control sets internally of the product in line with our control framework and ISO certification.
- Managing client audits on the products as part of the wider Client Governance Schedule.
- Interlinking with the wider R&C framework where there are control remediations as a result of audit findings or risk events.
- Working alongside the wider risk team to implement and further embed risk management.
About You:
• Extensive recent experience in auditing is essential as well as managing compliance and governance (preferably for fintech software companies in the financial services sector)
• Bachelor’s degree in computer science, Information Security, Business Management, or a related field
• Knowledge of DevOps development cycles and secure development, an advantage
• In-depth knowledge of SS2/21 material outsourcing, FCA & PRA regulations, NIST, and ISO, with a proven track record of implementing and maintaining compliance & control frameworks
• Experience with Azure/AWS cloud services and Azure DevOps Boards and security practices related to cloud-hosted estates is greatly desired
• The ability to work with multiple different L1 departments both in software development and servicing, and partnering with the wider risk team is essential.
What Will You Be Doing?
- Auditing: Pre-audit ISO27001 control cycle before the certification, plan and perform internal auditing on products and key risk areas.
- Manage Client Audit Schedule planned in advance annually partnering with the account managers.
- Link any findings of audits into the wider Risk management framework and remediation schedule.
- Work with key internal stakeholders to develop in-house SoPs for audit evidencing.
- Client Engagement: Work with the Senior Risk Analyst on the overall Client Governance schedule.
What Will You Get From Joining the finova Family?
• Flexible Working: 25 days holiday in each calendar year plus bank holidays, bank holiday trading, work from anywhere in the world for up to 4 weeks a year, and flexible hybrid working policy.
• Looking After You: Life Assurance, Group Income Protection, and Private Medical Insurance.
• Family Friendly policy: Enhanced maternity and paternity pay, and paid time off for fertility treatments and pregnancy loss.
• Extra Perks: Cycle to Work Scheme, access to benefits & discounts, and social groups.
• Equal Opportunity Statement: Diverse teams really are the best teams, we promote a working environment in which diversity is recognised, valued and encouraged.
#J-18808-Ljbffr
IT Audit and Risk Lead employer: finova
Contact Detail:
finova Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Audit and Risk Lead
✨Tip Number 1
Familiarize yourself with the specific compliance measures and control frameworks mentioned in the job description, such as ISO27001 and FCA regulations. This knowledge will not only help you understand the role better but also demonstrate your commitment to compliance during discussions.
✨Tip Number 2
Network with professionals in the fintech sector, especially those who have experience in auditing and risk management. Engaging with industry peers can provide valuable insights and potentially lead to referrals that could strengthen your application.
✨Tip Number 3
Showcase your understanding of cloud services, particularly Azure and AWS, by discussing relevant projects or experiences in your conversations. Highlighting your practical knowledge in these areas can set you apart from other candidates.
✨Tip Number 4
Prepare to discuss how you would approach client audits and internal auditing processes. Having a clear strategy or examples ready can illustrate your proactive mindset and readiness to take on the responsibilities outlined in the role.
We think you need these skills to ace IT Audit and Risk Lead
Some tips for your application 🫡
Understand the Role: Take the time to thoroughly read the job description for the IT Audit and Risk Lead position. Make sure you understand the key responsibilities and required qualifications, as this will help you tailor your application.
Highlight Relevant Experience: In your CV and cover letter, emphasize your extensive experience in auditing, compliance, and governance, particularly within fintech software companies. Use specific examples that demonstrate your knowledge of ISO standards and cloud services like Azure and AWS.
Showcase Your Skills: Make sure to highlight your skills related to risk management, internal auditing, and client engagement. Mention any relevant certifications or training that align with the requirements listed in the job description.
Craft a Compelling Cover Letter: Write a personalized cover letter that connects your background and skills to the specific needs of finova. Discuss why you are passionate about the role and how you can contribute to their mission of providing cutting-edge fintech solutions.
How to prepare for a job interview at finova
✨Showcase Your Audit Experience
Make sure to highlight your extensive recent experience in auditing, especially within fintech software companies. Prepare specific examples of how you've managed compliance and governance in previous roles.
✨Demonstrate Knowledge of Compliance Frameworks
Familiarize yourself with SS2/21 material outsourcing, FCA & PRA regulations, NIST, and ISO standards. Be ready to discuss how you've implemented and maintained compliance and control frameworks in your past positions.
✨Discuss Cloud Services Expertise
Since the role involves Azure and AWS cloud services, be prepared to talk about your experience with these platforms. Highlight any relevant projects where you ensured security practices related to cloud-hosted estates.
✨Engage with Client Governance Insights
Understand the importance of client engagement in the audit process. Be ready to discuss how you've worked with stakeholders to develop audit evidencing and manage client audits effectively.
