Technology Risk Auditor- AVP

At OakNorth, we're on a mission to empower ambitious businesses and the
communities they serve. Since 2015, we've lent over $21 billion across the UK
and US, helped create more than 58,000 new homes and 36,000 new jobs, and
supported hundreds of thousands of personal savers — all while driving economic
growth in the markets we serve.

\n

Responsibilities

We are looking for a driven and enthusiastic expert with a keen interest in
Cybersecurity and Technology Audits to join the Internal Audit team at OakNorth
Bank. The successful candidate should possess a foundational understanding of IT
general controls, Cybersecurity controls, and key industry frameworks such as
NIST, ISO 27001, and COBIT. Prior experience in audit or compliance will be
regarded as an added advantage. This position offers an exceptional opportunity
to gain practical, hands-on experience in technology auditing within OakNorth’s
dynamic internal audit environment. Key responsibilities for this role include:
 

* Contribute actively to technology and cybersecurity audits, participating in
all phases from initial planning through detailed reporting.
* Support the internal audit team by engaging in technology-focused
assignments, such as automating audit testing procedures and conducting
comprehensive data analysis on large datasets to uncover valuable audit
insights.
* Work collaboratively with internal stakeholders to identify audit
requirements, providing proactive assistance and seeking timely guidance
throughout each stage of the audit process.
* Assist in the creation, updating, and maintenance of key documentation,
including policies, procedures, and control frameworks aligned with industry
standards.
* Participate in internal audit reviews and gap assessments to highlight
opportunities for process improvements and enhanced controls.
* Help in compiling, preparing, and presenting audit reports and findings to
management, ensuring clarity and actionable recommendations.

Qualifications
* Educational background in Computer Science, Information Systems, or related
field: Currently pursuing or recently completed a degree relevant to
technology and auditing.
* Keen interest in Cybersecurity and Technology Audits: Possesses genuine
curiosity about cybersecurity trends and technology audits, staying updated
on industry best practices and regulatory expectations. Demonstrates
motivation to expand knowledge in technology, cybersecurity, and internal
audit practices.
* Basic foundation in Technology and Cybersecurity Risk & Controls:
Demonstrates a good grasp of core principles related to technology risks, IT
general controls, Cybersecurity controls, and control frameworks (NIST, ISO
27001, COBIT, or similar frameworks), with the ability to quickly learn and
apply key concepts in real-world audit scenarios.
* Basic knowledge of data analytics or programming languages (e.g., Python,
SQL): Advantageous for automating audit procedures and working with large
data sets.
* Excellent communication skills in English: Able to clearly articulate
technical and non-technical information both verbally and in written form,
facilitating effective collaboration with team members and stakeholders.
* Experience or strong interest in leveraging Artificial Intelligence tools
(such as ChatGPT) to improve audit effectiveness: Shows enthusiasm for
adopting emerging technologies to automate processes, enhance data analysis,
and drive innovation within the audit function.
* Residing in the Delhi/NCR region: Based in or willing to relocate to
Delhi/NCR, ensuring availability for in-person meetings and collaboration as
required.
* Proven ability to work both independently and collaboratively: Capable of
managing assigned tasks autonomously while also thriving in team-based
environments, proactively seeking feedback and guidance when needed.
* Analytical and problem-solving skills: Ability to analyse large datasets,
identify patterns, and extract actionable insights to support audit
objectives.
* Attention to detail: Meticulous in reviewing documentation, testing controls,
and preparing audit reports.
* Strong organisational and time management skills: Capable of prioritising
tasks and managing deadlines effectively in a dynamic work environment.

\n