Technology Senior Auditor

Join our team as a FCE Bank Technology Senior Auditor, providing internal assurance and advisory activities over IT infrastructure, application controls, cybersecurity, operational resilience, risk management, outsourcing and governance processes supporting FCE's operations. A critical component of this role is auditing shared IT services and assessing the effectiveness of intra-group outsourcing arrangements. FCE operates in the UK and through branches in France and Spain, as well as an operating subsidiary in Italy, providing retail and dealer financing services in these locations, and savings products to customers in the UK under the Ford Money brand., Lead and execute assurance and advisory engagements allocated by the Internal Audit Manager.Liaise with and oversee the work of co-source audit partners.Regulatory Compliance: Evaluate IT systems against European financial regulations, specifically the Digital Operational Resilience Act (DORA), EBA Guidelines on outsourcing, FCA and PRA regulations and guidelines relating to Operational Resilience and Outsourcing and Third-Party Risk. Shared Services Oversight: Audit the Service Level Agreements (SLAs) and operational performance of IT services provided both to and by FCE.Cross-Border Data Governance: Assess controls surrounding the transfer and storage of financial and customer data across UK and EU jurisdictions, ensuring compliance with GDPR.Third-Party & Intra-group Risk: Perform audits on "Critical Third Parties" and intra-group service providers to ensure resilience and "Right to Audit" clauses are maintained.Perform detailed testing and analysis to evaluate the design and operating effectiveness of internal controls.Prepare and present reports to senior management.Follow-up on corrective actions taken by management related to audit findings.Maintain an awareness of changing technology and associated risks, audit best practices and new or emerging regulations impacting FCE.Contribute to the development of the risk audit universe which provides input into the annual risk-based audit plan.Any other responsibilities outlined by audit management as they arise.The Technology Senior Auditor reports to the FCE Audit Manager.Please note: Global travel may be required for this role.

Bachelor's degree in computer science or related field. At least five years of IT audit, IT security experience and/or IT experience, including software engineering, application management, and/or infrastructure design and operations in a regulated financial services environment.A variety of IT job experiences preferred, including software engineering within Agile/DevOps frameworks, cloud architecture, platform engineering, data engineering, DevSecOps, and the governance of automated business solutions (e.g. RPA or low-code platforms).Proven Cybersecurity knowledge through experience or certification (ISC2's CISSP or similar).Strong understanding of industry security frameworks (e.g. NIST CSF, ISO 27001, etc.) and understanding of inherent risks and/or control risks.Experience of working with technology, or technology auditing, in a regulated financial services environment (banking or captive finance).Familiarity with UK and European regulatory frameworks: DORA, EBA Guidelines, PRA Supervisory Statements and FCA handbook and an understanding of the UK Senior Managers and Certification Regime (SM&CR) as it relates to technology accountability.Knowledge of Intra-group outsourcing and shared service centre audit.Strong project management skills, comfortable working in a dynamic environment with minimal direction as part of a global team, with a strong sense of accountability and attention to detail.Personable, with the ability to communicate clearly, concisely and candidly in both verbal and written form.Professional qualifications (CISA/CIA certification) will be required to be progressed if not already held. Internal Audit specific starter training will be provided on joining the team. This is a UK position, and applications will only be accepted from current UK employees (FoB employees only). The Company is committed to diversity and equality of opportunity for all and is opposed to any form of less favorable treatment or harassment on the grounds of race, religion or belief, sex, marriage and civil partnership, pregnancy and maternity, age, sexual orientation, gender reassignment or disability.This is a full-time role; however, we are keen to encourage applications from applicants who work flexibly including job-share applicants, who would like to work with another job-share applicant to do this role (even if you currently do not have a job-share partner). The Job Share Connect tool allows you to create your profile and then find a job share match.This position is based in Dunton, and it is expected the successful candidate will be able to attend the Dunton Campus for typically 4 days a week and remain flexible on the days they are required to attend the office according to business requirements.Priority will be given to displaced lateral employees in the first instance.