Audit Manager - Cyber Security

JOB TITLE: Audit Manager - Cyber Security

SALARY:  £89,739 - £99,710 (salary range may vary according to location)

LOCATION(S): London, Bristol & Edinburgh

HOURS: Full time

WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.

About this opportunity

An exciting opportunity has become available to join the Group Audit function and the Technology Risk audit team as a Cyber Security Audit Manager. This role provides the opportunity to shape as well as lead audits, harnessing a deep understanding of cyber security and technology risks to deliver high quality independent assurance on the effectiveness of controls.

Responsibilities include:

• Audit Planning: planning a range of cyber security audits, requesting/selecting resources and liaising with stakeholders to discuss and propose scope and timelines.

• Audit Execution: leading and managing audit delivery, delivering audits on time and within budget, ensuring quality of the audit file and coverage of agreed scope, ensuring compliance with audit methodology, and providing progress updates to the Portfolio Lead, Head of Audit and Audit Directors.

• Taking the lead on audit report preparation and agreement with stakeholders.

• Oversee the follow-up and subsequent remediation of audit issues identified.

• Coaching and supporting colleagues.

• Providing SME insights and support across the Audit function.

• Driving personal growth and continuous improvement.

Why Lloyds Banking Group
We’re on an exciting journey and there couldn’t be a better time to join us. The investments we’re making in our people, data, and technology are leading to innovative projects, fresh possibilities, and countless new ways for our people to work, learn, and thrive.

What you’ll need

• Industry best-practices - Strong technical knowledge and experience of Information, Cyber and Physical Security best practices, threats, risks, frameworks and standards (e.g. NIST, MITRE and ISO27001). Related cyber/ information security qualifications valued e.g. Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH).

• Audit and/ or risk and controls experience – Practical experience of assessing cyber and technology risks and key controls (e.g. vulnerability management, network security, security operations, identity and access management), documenting appropriate test plans to deliver on audit objectives. Applicants should be able to identify control gaps and clearly articulate these to senior stakeholders.

• Curiosity and interest in new technology - Demonstrable curiosity and understanding of the emerging technologies shaping the risk landscape (inc. AI, Digital Ledger Technology, Quantum).

• Data skills - Experience of data analytics tools and processes, ability to assimilate a range sources of data and complex information to effectively problem solve and draw relevant conclusions.  

• Stakeholder management - The ability, skill, and experience to effectively manage senior stakeholder relationships, building credibility and trust.

• Project management – Solid project management skills and a focus on delivery of the audit plan are critical and applicants should be self-starting and proactive.

• Team leadership – Leadership and collaboration skills are key to achieving the Group and function’s objectives. Applicants should be comfortable both leading and participating in teams, supporting team members and management to deliver on team and personal goals.

And any experience of these would be really useful:

• Technically proficient, with hands-on technology experience (e.g. security testing, ethical hacking). Ability to use and/ or develop technical skills.

• Solid understanding of technology infrastructure, networks, cloud technologies and related architecture and security frameworks.

• Knowledge of software development and software engineering methods, practices, and tools across the software development lifecycle.

• Experience and ability to develop innovative tools to support audit testing and continuous auditing, including the use of AI.

About working for us

Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities and we’re committed to creating an environment in which everyone can thrive, learn and develop.

We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer Initiative.

We offer reasonable workplace adjustments for colleagues with disabilities, including flexibility in office attendance, location and working patterns. And, as a Disability Confident Leader, we guarantee interviews for a fair and proportionate number of applicants who meet the minimum criteria for the role with a disability, long-term health or neurodivergent condition through the Disability Confident Scheme.

We provide reasonable adjustments throughout the recruitment process to reduce or remove barriers. Just let us know what you need.

We also offer a wide-ranging benefits package, which includes:

• A generous pension contribution of up to 15%

• An annual performance-related bonus

• Share schemes including free shares

• Benefits you can adapt to your lifestyle, such as discounted shopping

• 30 days’ holiday, with bank holidays on top

• A range of wellbeing initiatives and generous parental leave policies

If you’re excited by the thought of becoming part of our team, get in touch! We’d love to hear from you!