Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead IT and cyber risk management, ensuring robust controls and compliance.
- Company: Join a leading firm in technology risk and cybersecurity.
- Benefits: Competitive salary, professional development, and a dynamic work environment.
- Why this job: Make a significant impact on IT security and risk management.
- Qualifications: Experience in IT risk, cyber risk, and relevant certifications preferred.
- Other info: Opportunity for career growth in a fast-paced industry.
The predicted salary is between 48000 - 72000 £ per year.
Location: Milton Keynes
Function: Technology Risk & Cybersecurity
About the Role
We are seeking a Senior IT & Cyber Risk, Controls and Audit Specialist to take a leadership role across IT risk, cyber risk, controls assurance, SOX ITGCs, and audit. Reporting into the Head of Technology GRC, you will strengthen the design, operation, testing, and assurance of IT and cyber controls across both cloud and on‑prem environments. This is a high‑impact role working closely with Technology, Risk, Internal Audit, and External Audit, ensuring regulatory confidence, strong audit outcomes, and robust financial reporting controls.
Key Responsibilities
- Lead the identification, assessment, and management of IT, cyber, and operational risks across infrastructure, applications, data, and platforms.
- Design, review, and challenge IT and cyber controls; oversee control testing, issue remediation, and validation.
- Act as a senior specialist for SOX IT General Controls, ensuring controls are defined, documented, tested, and evidenced to required standards.
- Coordinate with External Audit on IT, cyber, and SOX matters, managing requests, walkthroughs, evidence, and findings.
- Provide specialist oversight of risks linked to cloud, automation, and hybrid technology environments.
What You'll Bring
- Strong experience in IT risk, cyber risk, IT controls, and SOX ITGCs.
- Background in regulated financial services, ideally banking.
- Proven ability to work with Internal and External Audit on testing, evidence, and findings.
- Strong understanding of cloud and on‑premise technologies and related controls.
- Excellent analytical, documentation, and communication skills.
- Ability to balance robust control requirements with operational practicality.
Qualifications & Certifications
- Degree in IT, Computer Science, Cyber Security, or related discipline (or equivalent experience).
- Professional certifications desirable: CISA, CISSP, CRMP, CIA, or similar.
- SOX, audit, or controls‑focused certifications or experience highly advantageous.
IT & Cyber Risk, Controls and Audit Specialist in Milton Keynes employer: Lorien
Contact Detail:
Lorien Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT & Cyber Risk, Controls and Audit Specialist in Milton Keynes
✨Tip Number 1
Network like a pro! Reach out to your connections in the IT and cyber risk space. Attend industry events or webinars, and don’t be shy about introducing yourself. We all know that sometimes it’s not just what you know, but who you know!
✨Tip Number 2
Prepare for those interviews by brushing up on your knowledge of IT controls and SOX regulations. We recommend doing mock interviews with friends or using online platforms to get comfortable discussing your expertise. Confidence is key!
✨Tip Number 3
Showcase your skills through real-world examples. When discussing your experience, highlight specific projects where you’ve led risk assessments or managed audits. We want to see how you’ve made an impact in previous roles!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace IT & Cyber Risk, Controls and Audit Specialist in Milton Keynes
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of IT & Cyber Risk, Controls and Audit Specialist. Highlight your experience in IT risk and controls, and don’t forget to mention any relevant certifications like CISA or CISSP.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for this role. Mention specific experiences that relate to the key responsibilities, like managing IT and cyber risks or working with audits.
Showcase Your Analytical Skills: In your application, make sure to highlight your analytical skills. We want to see how you’ve tackled complex problems in the past, especially in regulated environments like banking. Use examples that demonstrate your ability to balance control requirements with practicality.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Lorien
✨Know Your Stuff
Make sure you brush up on your knowledge of IT risk, cyber risk, and SOX ITGCs. Familiarise yourself with the latest trends in cloud and on-prem technologies, as well as the specific controls relevant to this role. Being able to discuss these topics confidently will show that you're serious about the position.
✨Prepare for Scenario Questions
Expect to be asked about real-life scenarios where you've identified or managed risks. Think of examples from your past experience that highlight your analytical skills and ability to work with both Internal and External Audit teams. Practising these responses can help you articulate your thought process clearly.
✨Showcase Your Communication Skills
As a Senior Specialist, you'll need to communicate complex information effectively. Prepare to demonstrate how you've successfully communicated audit findings or control issues in the past. Use clear, concise language and be ready to explain technical concepts to non-technical stakeholders.
✨Ask Insightful Questions
At the end of the interview, don’t shy away from asking questions. Inquire about the company's approach to managing IT and cyber risks, or how they ensure compliance with regulatory standards. This shows your genuine interest in the role and helps you assess if the company is the right fit for you.
