Lead Specialist, Internal Audit, Controls, Compliance, and Risk in Newtownabbey

About Pearson

Learning is the most powerful force for change in the world. More than 20,000 Pearson employees deliver our products and services in nearly 200 countries, all working towards a common purpose to help people realise the life they imagine through learning. We do this by providing high quality digital content and learning experiences, as well as assessments and qualifications that enable people to build skills and grow in a rapidly evolving world. We are the world's lifelong learning company.

Learn About the Role & Team

We are looking for a highly motivated and experienced Technology Audit Manager / IT Audit Manager to join our dynamic, innovative, and collaborative Internal Audit team (14 people across the UK and US). The team provides forward-looking assurance, insight, and advice to support Pearson in achieving its strategic objectives.

In this role, you will:

• Lead the planning, execution, and reporting of IT and cybersecurity audits
• Work across a diverse and fast-changing technology and digital environment
• Engage directly with Senior Management and key stakeholders
• Support audit planning, audit committee reporting, and continuous improvement initiatives

You’ll report into the Internal Audit Leadership team and play a key role in strengthening stakeholder relationships across the business. This opportunity is ideal for someone who enjoys:

• Working in an international environment
• Exposure to a wide range of technology risks and audit topics
• Building relationships with senior stakeholders
• Being part of a supportive and collaborative team

Location & Working Pattern

Based in Belfast (Clockwise River House) Hybrid working minimum 1 day per week in the office (required) Up to 10% international travel Collaboration across UK and US time zones (flexibility occasionally required)

Key Responsibilities

Audit Delivery & Leadership

• Lead delivery of complex technology, application, infrastructure, and security audits
• Deliver project/programme audits and integrated audits
• Cover a wide range of topics including: Cloud, AI, IT governance, Cybersecurity
• Take full ownership of audit delivery:
• Define risk-based audit scope
• Design audit approach and work programmes
• Plan and project manage delivery
• Conduct fieldwork and testing
• Validate findings with business and IT stakeholders
• Manage reporting through to file closure
• Integrate AI tools and agents as standard to support audit delivery

Stakeholder Management & Reporting

• Discuss findings with management and agree risk mitigation actions
• Produce clear, concise, commercially relevant reports
• Provide actionable recommendations to:
• Improve internal controls
• Address weaknesses
• Drive process efficiency

Build and maintain strong working relationships across:

• Internal Audit
• Technology teams
• Wider business stakeholders

Governance, Follow-Up & Continuous Improvement

• Track and follow up on audit actions and remediation progress
• Liaise closely with action owners and business leadership
• Support:
• Annual audit planning
• Audit committee reporting
• Internal improvement initiatives

Stay current with emerging audit techniques and practices

Champion new approaches and continuous improvement

Team Contribution

• Support and coach team members
• Contribute to a collaborative and high-performing environment
• Support investigations and ad-hoc projects as required

Qualifications

• Degree (or equivalent) in:
• Information Security
• Computer Science
• Or related field
• Professional certification such as:
• CISA
• QICA
• CISSP
• CRISC
• SSCP

Experience Required

• 5+ years experience in cybersecurity and IT audit
• Strong experience across:
• IT processes and controls
• Applications, infrastructure, and IT security
• Cloud services and emerging technologies
• Hands-on experience with:
• Auditing: Web applications/services, Networks, Operating systems, Databases, Cloud environments, AI technologies
• Cybersecurity and audit frameworks: NIST CSF, ISO, PCI DSS, COBIT, ITIL
• AI tools in audit delivery
• Data and analytics tools: Tableau, Power BI, Alteryx
• Supporting complex data extraction and analysis
• Exposure to major ERP systems (Oracle preferred)

Key Skills & Capabilities

• Strong understanding of:
• IT risk management
• Security controls
• Relationship between technology and business risk
• Knowledge of:
• Cybersecurity controls
• Network architecture
• Secure coding
• Website/platform development
• Virtual computing
• Ability to:
• Interpret complex technical issues
• Develop practical, business-focused solutions
• Strong:
• Organisational and project management skills
• Communication and stakeholder engagement skills
• Ability to explain technical concepts to non-technical audiences
• Collaborative and team-oriented approach
• Commercial awareness and digital mindset
• Flexible, innovative, and proactive mindset
• Comfortable working independently in less structured environments

Why Join?

• Global organisation with meaningful impact
• Exposure to cutting-edge technology environments (AI, Cloud, Cybersecurity)
• Opportunity to work closely with senior stakeholders
• Collaborative, supportive, and international team
• Strong focus on innovation and continuous improvement

Who we are:

At Pearson, our purpose is simple: to help people realize the life they imagine through learning. We believe that every learning opportunity is a chance for a personal breakthrough. We are the world's lifelong learning company. For us, learning isn't just what we do. It's who we are.

Pearson is an Equal Opportunity Employer and a member of E-Verify. Employment decisions are based on qualifications, merit and business need. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, age, national origin, protected veteran status, disability status or any other group protected by law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.