At a Glance
- Tasks: Plan and execute IT audits, assess controls, and present findings to senior leaders.
- Company: Join SumUp's Global Internal Audit team in a fast-growing fintech.
- Benefits: Competitive salary, professional development, and a dynamic work environment.
- Other info: Collaborate with senior leaders and promote a proactive internal controls culture.
- Why this job: Make a real impact on IT security and governance in a global company.
- Qualifications: 4+ years in IT/Internal Audit with strong knowledge of audit standards.
You’ll join SumUp's Global Internal Audit team, part of our wider G&A / GRC function, reporting directly to the Global Head of Internal Audit. This team plays a critical role in protecting SumUp's integrity, supporting regulatory compliance, and strengthening trust with our Board, Audit Committee, and regulators.
As our Internal Auditor – IT security specialist, you’ll bring essential technology and data analytics expertise into a team that partners closely with senior leaders across the business. You’ll be the go‑to expert for technology‑focused audits, helping shape how we assess IT risks, controls, and governance across a fast‑scaling global fintech.
In this role, you will support the delivery of SumUp's approved Internal Audit Plan, with a strong focus on technology, data, and systems risk.
You're a hands‑on IT auditor who enjoys combining technical depth with clear communication and stakeholder collaboration.
What You'll Do
- Plan and execute IT internal audits in line with the annual audit plan
- Assess IT general controls, security, governance, and risk management frameworks
- Prepare clear, insightful audit reports, presenting findings and recommendations to senior stakeholders
- Use data analytics to improve audit efficiency, sample testing, and risk identification
- Support ad-hoc audit projects and regulatory‑related reviews
- Contribute to the continuous improvement of internal audit methodologies, frameworks, and templates
- Stay up to date with technology standards, regulatory developments, and industry best practices
- Build strong relationships across the business and promote a proactive internal controls culture
- Conduct targeted audits of AWS security standards and access controls across our cloud environment, ensuring credit card data stored in cloud services is adequately protected
- Perform risk‑based reviews of payment products and ensure security requirements are consistently embedded throughout the development lifecycle
- Identify anomalies or excessive privileges across different systems and payment platforms
Must‑have experience
- Minimum 4years’ experience in IT / Internal Audit within a regulated financial services environment
- Strong knowledge of audit standards, risk management, and internal controls
- Experience auditing IT controls and frameworks such as COBIT, ISO27001, PCIDSS, ITIL, NIST, GDPR
- Practical exposure to areas like data security, cloud architecture, disaster recovery, security operations, or network infrastructure
- Advanced data analytics skills
- Professional‑level English (written and spoken)
Nice to have
- Professional certifications such as CIA, CISA, CPA
- Additional IT/security certifications (CISSP, CISM, CRISC, ISO22301, or similar)
- Experience with audit‑related data analytics tools
What sets you apart
- High ethical standards and integrity
- Strong analytical and problem‑solving mindset
- Confidence influencing change and challenging the status quo constructively
- Ability to work independently in a multinational environment
IT Infrastructure & Systems Internal Auditor in City of Westminster employer: SumUp Inc.
At SumUp, we pride ourselves on being an exceptional employer, offering a vibrant work culture in the heart of Covent Garden, London. Our commitment to diversity and inclusion fosters a supportive environment where every voice is valued, while generous benefits like private health insurance, a robust retirement scheme, and a dedicated learning budget empower our employees to thrive both personally and professionally. Join us to make a meaningful impact in the fintech space, with opportunities for growth and a stake in our collective success through our Virtual Stock Option programme.
StudySmarter Expert Advice🤫
We think this is how you could land IT Infrastructure & Systems Internal Auditor in City of Westminster
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like SumUp Inc. looking for candidates who are engaged and informed.
We think you need these skills to ace IT Infrastructure & Systems Internal Auditor in City of Westminster
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at SumUp Inc.. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at SumUp Inc.
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with SumUp Inc.’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!