Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to lead ISO27001 audits and enhance security assurance processes.
- Company: We are a leading financial services provider in a highly regulated environment.
- Benefits: Enjoy flexible working options and a supportive team culture.
- Why this job: Make a real impact on security while developing your skills in a dynamic setting.
- Qualifications: ISO27001 Lead Auditor certification and experience in audit roles, preferably from 'Big 4' firms.
- Other info: Opportunity to work on cutting-edge technology and security projects.
The predicted salary is between 48000 - 72000 £ per year.
We are currently looking for a Security Assurance and Audit specialist with technical and security expertise who has led and performed audit and assurance engagements, specifically relating to ISO27001. This is to join an existing team at our financial services client, in a highly regulated environment. The role will be to provide expertise and support to various Technology and Security Assurance projects and work on the development and delivery of the 2nd Line Risk Assurance plan. Applicants with a background in "Big 4" Consultancy would be of particular interest.
Responsibilities:
- Development of the assurance process and framework.
- ISO27001 Lead Auditor certification.
- Perform control testing, control walkthroughs and gathering of evidence from the 1st Line Business team.
- Perform internal risk and control assurance using the assurance methodology to determine control effectiveness, ensuring compliance to internal policies, standards/processes, best practices and industry standard and frameworks.
- Complete documentation of control testing and reporting for senior management review.
- Work with relevant stakeholders in the 1st line team to identify appropriate remedial actions, for issues identified through testing.
- Support the definition of a control library, creation and review of controls ensuring alignment to internal policies and external frameworks e.g. CRI, ISO, NIST, ISAE.
- Perform internal control assessment/audit for SWIFT CSCF, LINK CSB, ISO27001 and IS022301.
- Development of appropriate assurance internal documentation.
- Preparing relevant submissions into risk governance committees.
IT Audit/Assurance Specialist employer: I-confidential
Contact Detail:
I-confidential Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Audit/Assurance Specialist
✨Tip Number 1
Familiarise yourself with ISO27001 and its requirements. Understanding the nuances of this standard will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the IT audit and assurance field, especially those with experience in 'Big 4' consultancies. Engaging with them can provide insights into the role and may even lead to referrals.
✨Tip Number 3
Stay updated on the latest trends and challenges in cybersecurity and risk management. Being knowledgeable about current issues will allow you to speak confidently about how you can contribute to the team.
✨Tip Number 4
Prepare to discuss specific examples from your past experiences where you've successfully led audit engagements or implemented security frameworks. Real-life scenarios can showcase your expertise effectively.
We think you need these skills to ace IT Audit/Assurance Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with ISO27001 and any relevant audit engagements. Emphasise your technical skills and any certifications, especially if you have a 'Big 4' background.
Craft a Strong Cover Letter: In your cover letter, explain why you're interested in the role and how your previous experiences align with the responsibilities listed. Mention specific projects or achievements that demonstrate your expertise in security assurance.
Highlight Relevant Skills: When detailing your skills, focus on those that are directly related to the job description, such as control testing, risk assessment, and compliance with industry standards like NIST and ISAE.
Proofread Your Application: Before submitting, carefully proofread your application for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in an audit role.
How to prepare for a job interview at I-confidential
✨Showcase Your Technical Expertise
Make sure to highlight your technical skills and experience in security assurance, especially your familiarity with ISO27001. Be prepared to discuss specific projects where you've applied these skills, as this will demonstrate your capability to handle the responsibilities of the role.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving abilities in real-world situations. Prepare examples from your past experiences where you successfully identified risks and implemented controls, particularly in a regulated environment like financial services.
✨Understand the Assurance Framework
Familiarise yourself with the assurance process and frameworks relevant to the role. Being able to discuss how you would develop and implement these frameworks will show your proactive approach and understanding of the position's requirements.
✨Demonstrate Stakeholder Engagement Skills
Since the role involves working with various stakeholders, be ready to discuss how you've effectively communicated and collaborated with different teams in the past. Highlight any experience you have in managing relationships and driving consensus on remedial actions.
