Senior Audit Manager - Cyber Security & Operational Resilience
| Posting date: | 16 July 2025 |
|---|---|
| Salary: | £90,440 to £131,540 per year |
| Hours: | Full time |
| Closing date: | 30 July 2025 |
| Location: | Edinburgh, Edinburgh, EH3 9BN |
| Remote working: | Hybrid - work remotely up to 3 days per week |
| Company: | Lloyds Banking Group |
| Job type: | Permanent |
| Job reference: | 139820_1752672031 |
Summary
JOB TITLE: Senior Audit Manager - Cyber Security and Operational Resilience
SALARY: £90,440 - £131,540 (dependent on location)
LOCATION(S): Edinburgh, Bristol
HOURS: Full-time
WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.
About this opportunity
An exciting opportunity has become available to join the Group Audit and Conduct Investigations (GA&CI) function and the Technology Risk audit team as a Senior Audit Manager (Portfolio Lead) in Cyber Security and Operational Resilience. This role provides the opportunity to shape as well as lead audits, harnessing a deep understanding of cyber, technology and resilience risks to provide high quality independent assurance on the effectiveness of controls.
Responsibilities include:
-
Audit Planning: planning for a portfolio of audits, requesting/selecting resources and liaising with stakeholders to discuss and propose scope and timelines.
-
Audit Execution: managing delivery of a portfolio of audits, delivering audits on time and within budget, ensuring quality of audit file and coverage of agreed scope, ensuring compliance with audit methodology, and providing progress updates to the Head of Audit and Audit Directors.
-
Audit report preparation and agreement with stakeholders.
-
Oversee the follow-up and subsequent remediation of audit issues identified.
-
Coaching and supporting colleagues.
-
Providing SME insights and support.
-
Driving personal growth and continuous improvement.
Why Lloyds Banking Group
We're on an exciting journey and there couldn't be a better time to join us. The investments we're making in our people, data, and technology are leading to innovative projects, fresh possibilities, and countless new ways for our people to work, learn, and thrive.
What you'll need:
-
Industry best-practices - Strong technical knowledge and experience of Cyber Security best practices, risks, frameworks and standards, including practical application of NIST, MITRE and ISO27001. Related cyber/ information qualifications valued e.g. Certified Information Systems Security Professional (CISSP).
-
Security testing - Knowledge and understanding of ethical hacking/ security testing best practices and techniques (with hands-on experience valued). Relevant qualifications valued e.g. Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP)).
-
Audit and/ or risk and controls experience - Practical experience of assessing cyber risks and key controls, documenting appropriate test plans to deliver on audit objectives. Applicants should be able to identify control gaps and clearly articulate these to senior stakeholders.
-
Stakeholder management - The ability, skill, and experience to effectively manage senior stakeholder relationships, building credibility and trust.
-
Project management - Strong project management skills and a focus on delivery of the audit plan are critical and applicants should be self-starting and proactive.
-
Team leadership - Leadership and collaboration skills are key to achieving the Group and function's objectives. Applicants should be comfortable both leading and participating in teams, supporting team members and management to deliver on team and personal goals.
And any experience of these would be really useful:
-
Technically proficient, with hands-on technology experience. Ability to use and/ or develop technical skills.
-
Solid understanding of technology infrastructure, networks, cloud technologies and related architecture and security frameworks.
-
Knowledge of software development and software engineering methods, practices, and tools across the software development lifecycle.
-
Experience and ability to develop innovative tools to support audit testing and continuous auditing.
About working for us
Our focus is to ensure we are inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it is why we especially welcome applications from under-represented groups. We are disability confident. So, if you would like reasonable adjustments to be made to our recruitment processes, just let us know.
We also offer a wide-ranging benefits package, which includes:
* A generous pension contribution of up to 15%
* An annual performance-related bonus
* Share schemes including free shares
* Benefits you can adapt to your lifestyle, such as discounted shopping
* 30 days' holiday, with bank holidays on top
* A range of wellbeing initiatives and generous parental leave policies
Want to do amazing work, that is interesting and makes a difference to millions of people? Join our journey.
Proud member of the Disability Confident employer scheme