Internal Audit Manager – Technology and Cyber

Company Description

Shawbrook provides finance to a wide range of customer segments that value the premium experience, flexibility and certainly we deliver.  We are a purpose-led organisation, with a focus on delivering long-term sustainable value for all our stakeholders.

We have a diversified offering, with our innovative lending propositions tailored to meet specific customer needs in carefully selected markets across SME, Real Estate and Personal. Our products range from complex structured credit facilities for growth-focused businesses to mortgages for professional landlords and property investors, as well as simple loans for consumers delivered digitally.  We fuel our lending through customer deposits, which we attract by delivering a premium experience, choice and consistently great value to smart savers.

The business model we have created is unique and difficult to replicate, with our ‘best of both’ approach combining deep human expertise with advanced digital, tech and data capabilities.  This combination not only allows us to deliver excellent customer experiences, but to do so efficiently and at scale.  We are proud of our innovative and agile culture, which drives consistently high employee engagement scores and makes Shawbrook an attractive destination for the best talent. If you’re willing to roll up your sleeves, contribute new ideas and believe anything is possible, you’re our kind of person.

Work with us because you:

• Want to be part of a bank built for the dynamics of the modern world
• Relish a challenge and enjoy a fast-paced, innovative and hardworking culture
• Enjoy finding new and better ways to solve complexity and make things happen
• Want to belong to a diverse culture that stands shoulder to shoulder with minority and underrepresented groups
• Care about society and the environment and want to be part of a business that cares too
• Want to continue to grow professionally and be the best version of yourself

Job Description

We are looking for an experienced and motivated Internal Audit professional with strong direct experience in technology and cyber risk. You will deliver end-to-end reviews that provide assurance over technology controls and emerging risks, while helping us shape and maintain sound audit coverage across areas like cyber security, cloud, data, infrastructure, change and resilience. This role is ideal for someone who has independently led audits and is looking to step up into a more autonomous delivery role. You will be expected to build stakeholder relationships, deliver impactful insights, and collaborate across the function to help evolve our audit coverage in line with business and regulatory change.

Responsibilities:

Execution and Delivery

• Independently lead and deliver a portfolio of high-quality assurance reviews across Cyber Security, IT Change, IT Governance, and Operational Resilience, providing timely and practical insights (with appropriate co-source support as needed).
• Lead all stages of audit delivery, including planning, fieldwork, reporting, and follow-up, with guidance from senior colleagues where required.
• Evaluate control environment design and operating effectiveness for the relevant audits within the plan.

Risk Assessment and Planning

• Contribute to annual and rolling audit planning by participating in ongoing assurance needs assessments and horizon scanning.
• Apply a risk-based approach to help shape audit strategies, identify emerging themes, and enhance audit universe coverage.

Regulatory and Framework Alignment

• Align audit work to FCA and PRA regulatory expectations, including operational resilience and cyber risk guidance.
• Reference and apply industry frameworks such as NIST CSF, ISO 27001, COBIT, and relevant IT governance standards when forming assurance opinions.

Stakeholder Engagement and Communication

• Engage with governance forums and control owners, sharing insights and promoting a collaborative control culture.
• Communicate clearly and constructively to influence outcomes, explain risks, and drive meaningful impact through audit insights.
• Effectively manage key stakeholders through audit delivery.

Contribution to the Functional Development Initiatives

• Support continuous improvement of the audit methodology, tools, and reporting practices.
• Contribute to functional initiatives that enhance the efficiency, impact, and value of IA.
• Share knowledge and good practice with colleagues to raise capability across the team.

Team Collaboration and Culture

• Demonstrate inclusive, collaborative behaviours and contribute to a one-team culture.
• Encourage a growth mindset, openness to feedback, and professional development across the team.

Strategic Contribution and Ways of Working

• Support the formation of the Internal Audit annual opinion by providing clear, risk-focused insights from reviews.
• Apply agile ways of working, remain responsive to emerging priorities, and use data where appropriate to enhance audit value.

Qualifications

• CISA, CISM, CISSP, or CRISC certification would be preferred, but is not essential
• Proven experience of Cyber Security, IT Change, IT Governance or Operational Resilience audits within an environment with complex tech challenges
• Able to demonstrate a strong knowledge of cyber threats, attack vectors, security frameworks, and incident response
• Able to demonstrate excellent stakeholder management skills.

Additional Information

Your Wellbeing - We take your health and well-being very seriously by providing a range of benefits to give you and your family peace of mind. These include:

• Market leading family friendly policies such as access to our Maternity, Adoption and Paternity policies from Day 1 of your employment
• Free access to Headspace, a mindfulness & meditation digital health app
• Free access to Peppy digital health app that offers personalised support through fertility treatment becoming a parent or menopause
• EAP (Employee Assistance Programme) - Offering you support on a wide range of subjects including financial concerns, mental wellbeing and more general queries around family, work, housing, and health
• Cycle to work scheme
• Discounts on gym membership
• Contributory pension scheme & death in service

Your Lifestyle - It’s important you strike the right balance between your work and personal life. We provide benefits to support you when at work and when you’re enjoying your leisure time.

• Minimum of 27 days holiday per year
• Option to buy or sell holiday days through our flexi-holiday scheme
• Discounts on gym membership nationwide
• Access to discounts on a range of high street and online brands
• Community support and charitable giving

Your Contribution - We’re focused on rewarding those that go the extra mile in helping us achieve our goals.

• Participation in our annual discretionary bonus scheme designed to reward your contribution to our success
• Proudly Shawbrook recognition scheme focused on recognising our role models and thanking our colleagues for a job well done