Mundipharma
Senior Internal Auditor - IT and Operational Audit
How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Senior Internal Auditor - IT and Operational Audit
Senior Internal Auditor - IT and Operational Audit Location: Flexible (Hybrid – 3 days from office) Department: Risk, Audit & Assurance Job type: Permanent
Join us and make a difference when it matters most!
We are committed to strengthening risk management, safeguarding data, and enhancing operational resilience. This role offers the opportunity to shape audit strategies and partner with the business to ensure robust controls across IT, data, and operational risk landscapes.
The Team
This role sits within the Risk & Audit function and works closely with IT, Finance, Operations, and senior leadership teams. The position plays a key role in strengthening governance, ensuring regulatory compliance, and supporting enterprise risk resilience.
Role and Responsibilities
IT Audits
Support the development and delivery of the annual IT and data risk audit plan. Plan and execute IT audits across key areas including: IT system implementations Cybersecurity and IT resilience Artificial Intelligence IT General Controls (ITGCs) IT governance frameworks Critical third-party/vendor risk assessments Assess compliance with relevant regulations and standards, including EU AI Act, NIS2, and GDPR. Identify system vulnerabilities and control gaps, providing actionable recommendations to mitigate risks. Ensure timely and robust follow-up of audit findings and remediation actions.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Operational Audits
Plan, lead, and deliver operational audits across areas such as: Manufacturing and production processes Security and access controls Data privacy Back-office and support functions Provide insights to improve efficiency, strengthen controls, and reduce operational risks. Monitor and track implementation of agreed audit actions.
Risk Resilience
Support implementation of a risk preparedness and resilience framework across the organisation. Assist in identifying, documenting, and assessing functional risks, ensuring appropriate mitigating controls are defined and embedded. Partner proactively with IT and business stakeholders to enhance governance over key risk areas, including: Cybersecurity IT disaster recovery and business continuity Artificial Intelligence risk management Promote a risk-aware culture and continuous improvement in risk management practices
What you’ll bring
Experience in IT audit, risk management, or internal audit within a complex organization. Strong understanding of IT risk domains, including cybersecurity, data governance, and IT controls. Knowledge of relevant regulatory frameworks (e.g., GDPR, NIS2, EU AI Act) is preferred. Proven ability to plan and execute audits independently and deliver high-quality insights. Strong analytical, problem-solving, and stakeholder management skills. Ability to influence and collaborate with cross-functional teams. Professional certifications (e.g., CISA, CRISC, CIA, or equivalent) are advantageous. Fluent in English, both written and spoken.
Get help with your application
Your very own career expert that helps elevate your application to the next level.
What we offer in return
Flexible benefits package Opportunities for learning and professional development Collaborative and inclusive working environment Full ownership of the project
Diversity and inclusion
We are committed to creating an inclusive workplace where everyone feels valued, respected, and empowered to reach their full potential.
About Us
We are a forward-looking organization focused on strong governance, innovation, and resilience. Our goal is to ensure sustainable growth while maintaining the highest standards of risk management and compliance.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location