Lead Specialist Internal Audit Controls Compliance and Risk

(Technology Audit Manager / IT Audit Manager)

Belfast (Hybrid minimum 1 day per week in office)

About Pearson

Learning is the most powerful force for change in the world. More than 20000 Pearson employees deliver our products and services in nearly 200 countries all working towards a common purpose to help people realise the life they imagine through learning.

We do this by providing high quality digital content and learning experiences as well as assessments and qualifications that enable people to build skills and grow in a rapidly evolving world. We are the worlds lifelong learning company.

Learn more at

About the Role & Team

We are looking for a highly motivated and experienced Technology Audit Manager / IT Audit Manager to join our dynamic innovative and collaborative Internal Audit team (14 people across the UK and US).

The team provides forward-looking assurance insight and advice to support Pearson in achieving its strategic objectives.

In this role you will:

• Lead the planning execution and reporting of IT and cybersecurity audits
• Work across a diverse and fast-changing technology and digital environment
• Engage directly with Senior Management and key stakeholders
• Support audit planning audit committee reporting and continuous improvement initiatives

Youll report into the Internal Audit Leadership team and play a key role in strengthening stakeholder relationships across the business.

This opportunity is ideal for someone who enjoys:

• Working in an international environment
• Exposure to a wide range of technology risks and audit topics
• Building relationships with senior stakeholders
• Being part of a supportive and collaborative team

Location & Working Pattern

• Based in Belfast (Clockwise River House)
• Hybrid working minimum 1 day per week in the office (required)
• Up to 10% international travel
• Collaboration across UK and US time zones (flexibility occasionally required)

Key Responsibilities

Audit Delivery & Leadership

• Lead delivery of complex technology application infrastructure and security audits
• Deliver project/programme audits and integrated audits
• Cover a wide range of topics including:
  • Cloud
  • AI
  • IT governance
  • Cybersecurity
• Take full ownership of audit delivery:
  • Define risk-based audit scope
  • Design audit approach and work programmes
  • Plan and project manage delivery
  • Conduct fieldwork and testing
  • Validate findings with business and IT stakeholders
  • Manage reporting through to file closure
• Integrate AI tools and agents as standard to support audit delivery

Stakeholder Management & Reporting

• Discuss findings with management and agree risk mitigation actions
• Produce clear concise commercially relevant reports
• Provide actionable recommendations to:
  • Improve internal controls
  • Address weaknesses
  • Drive process efficiency
• Build and maintain strong working relationships across:
  • Internal Audit
  • Technology teams
  • Wider business stakeholders

Governance Follow-Up & Continuous Improvement

• Track and follow up on audit actions and remediation progress
• Liaise closely with action owners and business leadership
• Support:
  • Annual audit planning
  • Audit committee reporting
  • Internal improvement initiatives
• Stay current with emerging audit techniques and practices
• Champion new approaches and continuous improvement

Team Contribution

• Support and coach team members
• Contribute to a collaborative and high-performing environment
• Support investigations and ad-hoc projects as required

Qualifications

• Degree (or equivalent) in:
  • Information Security
  • Computer Science
  • Or related field
• Professional certification such as:
  • CISA
  • QICA
  • CISSP
  • CRISC
  • SSCP

Experience Required

• 5 years experience in cybersecurity and IT audit

Strong experience across:

• IT processes and controls
• Applications infrastructure and IT security
• Cloud services and emerging technologies

Hands-on experience with:

• Auditing:
  • Web applications/services
  • Networks
  • Operating systems
  • Databases
  • Cloud environments
  • AI technologies
• Cybersecurity and audit frameworks:
  • NIST CSF
  • ISO 27001/27002
  • PCI DSS
  • COBIT
  • ITIL
• AI tools in audit delivery
• Data and analytics tools:
  • Tableau
  • Power BI
  • Alteryx
• Supporting complex data extraction and analysis
• Exposure to major ERP systems (Oracle preferred)

Key Skills & Capabilities

• Strong understanding of:
  • IT risk management
  • Security controls
  • Relationship between technology and business risk
• Knowledge of:
  • Cybersecurity controls
  • Network architecture
  • Secure coding
  • Website/platform development
  • Virtual computing
• Ability to:
  • Interpret complex technical issues
  • Develop practical business-focused solutions
• Strong:
  • Organisational and project management skills
  • Communication and stakeholder engagement skills
  • Ability to explain technical concepts to non-technical audiences
• Collaborative and team-oriented approach
• Commercial awareness and digital mindset
• Flexible innovative and proactive mindset
• Comfortable working independently in less structured environments

Why Join

• Global organisation with meaningful impact
• Exposure to cutting-edge technology environments (AI Cloud Cybersecurity)
• Opportunity to work closely with senior stakeholders
• Collaborative supportive and international team
• Strong focus on innovation and continuous improvement