Internal Audit & Compliance Manager

at  ION Group

Internal Audit & Compliance Manager
We are looking for a critical thinker with strong analytical skills and able to communicate results across all levels of the organization.
Your primary responsibility will be leading the Internal Audit & Compliance Department reporting directly to the Board of Directors.
You could be based in Pisa or Milan office.

YOUR SKILLS, EXPERIENCE, AND QUALIFICATIONS

• Ms Degree in Economics, Computer Science/Engineering or an equivalent degree;
• A minimum of 5 years of professional experience in a consulting firms or in a company in the area of Internal Audit, Compliance and IT Audit;
• Excellent knowledge of international standard for the professional practice of internal auditing;
• Good knowledge of: IT and Cybersecurity auditing and controls framework, management systems standard- such as ISO 9001 and ISO 27001, and good knowledge of D.Lgs 231/01 and GDPR;
• Professional certifications such as CIA, CISA, Lead auditor ISO 27001 and ISO 9001 would be a plus;
• Knowledge of main banking and insurance laws and regulations on IT security and internal controls (Bank of Italy Regulations, EBA, ESMA, MIFID II, NIS Directive, etc.) would be a plus.
• Strong process and/or project management skills;
• Detail-oriented, organized and able to prioritize;
• Strong sense of urgency with a demonstrated record of meeting commitments despite pressure;
• Strong analytical and problem-solving skills;
• Good knowledge of the Microsoft Office package;
• Strong oral and written communication skills in English and Italian;
• Willing to travel;
• EU Work Permit.

• Leads the Internal Audit function and develops compliance and risk management methodologies and procedures;
• Develops the Annual Audit Plan using appropriate risk-based methodologies;
• Leads the successful development, management and end-to-end execution of Audit and Compliance Plans;
• Performs audits and investigations as a lead auditor in all areas (in particular IT Audit, D.lgs. 231/01, GDPR, ISMS ISO 27001, QMS ISO 9001);
• Ensures results are achieved in a timely manner by applying state-of-the-art methodologies while keep key stakeholders updated;
• Presents results and subsequent recommendations to Top Management and Board of Directors appropriately;
• Coordinates the process of drafting and updating policies, procedures and company operating instructions;
• Coordinates the updating of the 231/01 and GDPR system model and support the Supervisor Body and the Data Protection Officer;
• Acts as an internal consultant for governance, risk management, and control activities for Top Management and Board of Directors;
• Coaches and mentors team members.