Position      Internal Audit Manager

Location      London, Gibraltar, Vienna, Riga, Zagreb

Status      Permanent

Industry      Travel & Leisure (Betting and Gaming)    

Background

This is an exciting opportunity to join Entain’s Internal Audit global function.

You will be working for a FTSE 50 company responsible for over 27,000 employees worldwide, generating annual revenue of over £2bn annually. The Group has key operations in Belgium, Australia, Gibraltar, Spain, Italy, Ireland, Latvia, Croatia, USA and the UK.

The business is looking to recruit talented, experienced audit managers who share a passion for delivering value and quality and will be working closely within a highly skilled and trained audit team.

The role will provide a high level of access to both senior management as well as Audit Committee and Board level as well as working closely with all areas of the business both nationally and internationally.

The Internal Audit function will provide an excellent opportunity for exposure to the entire Group and growth within this specialist discipline.

Job Purpose

As an Internal Audit Manager your primary responsibility will be to provide independent, objective assurance as to the effectiveness of the company’s control framework. This will be primarily through the delivery of the annual audit plan to the business. As such, you will be responsible for working closely with the business to deliver audits and partnering the senior executives in order to remediate any issues arising.

You will be responsible for scoping, management and execution of audit fieldwork and reporting as part of the overall management of the audit lifecycle.

Responsibilities

• Deliver the audits assigned to you from the annual audit plan, including planning, fieldwork, reporting and follow-up. Audits could include:
  • Marketing and customer operations processes
  • Trading, sportsbook, poker and casino operations processes
  • Taxation matters including assurance around the company’s facilitation of tax evasion compliance framework or permanent establishment framework management
  • Regulatory compliance processes and corporate governance management systems
  • GDPR and data privacy management
  • HR and payroll management
  • In-flight and completed strategic projects
• Contribute to testing as part of a joint audit team with the IT audit function concerning integrity and accuracy of financial systems
• Contribute to the identification and documentation of risk in the audit universe
• Participate in multi-person audit teams on larger audit assignments
• Lead cross-disciplinary or multi-auditor engagements, acting as manager for the audit
• Ensure that all audit work is completed against agreed quality standards within the specified time frames and budget
• Create high quality, value-adding commercially focused reports identifying areas of deficiency with clear and concise recommendations
• Partner the business in remediating any issues identified, exploring possible solutions with the key stakeholders and following through to agree action plans and obtain regular updates on the progress of those plans
• Manage multiple projects concurrently and support other ad hoc projects as they arise

• Act as a mentor for other members of the audit team, up-skill and cross-train other auditors in various audit disciplines
• Develop long term working relationships with key business stakeholders and within the IA and other commercial functions

Key Skills & Experience

• Degree qualified with at least a 2:1
• A fully qualified accountant (ACA, ACCA, CIMA) or IIA qualified with 2+ years experience
• Experienced auditor (internal/external)
• Additional qualifications would be beneficial (CIIA, CISA)
• Ability to be able to work independently with minimal supervision
• Strong core audit skills, knowledge of IIA professional standards and understanding of up-to-date auditing methodologies and concepts
• Strong business and commercial acumen
• Experience with data driven auditing & analytical reviews
• Highly motivated, honest, approachable and collaborative individual
• Strong communications skills; clear and concise communicator (written and oral)
• Strong influencing and interpersonal skills
• Experience working within a large, complex, multinational organisation would be helpful but industry experience is not required

Package

• Pension provision
• 25 days annual leave as standard
• Generous bonus scheme
• Rewards package including significant discounts to many retail and high street stores
• Sharesave scheme
• Additional benefits including childcare vouchers and cycle to work scheme

Job Description

Internal Audit & Risk Manager

Group Audit and Risk

BSI is an Equal Opportunity Employer and we are committed to diversity.

Job Title:   Internal Audit & Risk Manager

Reports to:   Head of Internal Audit and Risk

Location:   Chiswick with global travel

Band:      Operational Delivery

Date:      Feb 2023

Purpose of the position

A key member of the Group Internal Audit & Risk (IAR) team who provide independent, objective assurance designed to add value and improve BSI’s operations. The mission of the IAR team is to enhance and protect organisational value by taking a risk-based approach to providing objective assurance, advice, and insight. IAR helps BSI bring a systematic, disciplined approach to evaluate and improve the effectiveness of governance, risk management, processes and controls; facilitating the alignment of risk exposures to risk appetite.

Key Responsibilities & Accountabilities

• Establish risk-based audit programs and execute financial controls and non-financial audits, through planning, fieldwork and reporting phases
• Produce well written, insightful reporting on audit engagements
• Contribute to the continuing development and improvement of IAR’s ways of working, ensuring audit tools and procedures keep abreast of industry best practice
• Identify resourcing requirements for audit engagements i.e. secondees/SMEs
• Coach junior members of the team and secondees to IAR to ensure they deliver the right quality of work and continue learning, being the first line of review for large audits
• Work alongside the business to ensure the timely closure of audit actions
• Assist with committee reporting and development of the annual Audit Plan
• Support the team objectives and promote a culture of continuous improvement
• Build and maintain trust-based relationships with the team, leadership and management at all levels
• Identify opportunities to create synergies with the second line of defense
• Facilitate the risk management process; working closely with all areas of leadership (Exec & Leadership level) to continually review functional and principal risks in their areas.
• BSI operates in 86 countries and this position involves at least 30% global travel.

Key Result Areas

• Production of timely and high-quality Audit Reports
• Ownership and follow up of management actions
• Continuous improvement of IAR methodology

Key Performance Indicators

• Delivering to the Audit timeline for planning, fieldwork and reporting
• Identifying value-adding and credible observations
• Maintaining independence
• Feedback from key stakeholders
• Feedback from the team

Organisation Structure

Person Specification

BSI Excellence behaviours

• Client-centric - We put the client at the centre of everything we do to deliver outstanding products and services.
• Agile - In an ever-changing world agility is key not just in terms of actions but in terms of thinking creatively and finding new and better ways of doing things, so that we continue to exceed our clients’ expectations
• Collaborative - To provide integrated solutions to our clients, we need to collaborate across the organization and act as One BSI.
• Leadership Pledge – I will create an inclusive environment, care for the wellbeing of my team, develop the talent BSI needs for the future and contribute to BSI’s sustainable development goals

Risk Manager

Function: Audit, Risk and Assurance / Finance

Reports to: Head of Risk Management

Location: Colt House, London, UK

Set up: Hybrid

Role purpose

To support the Enterprise Risk Management within Colt by delivering on the risk management plan, providing risk expertise across all aspects of the Risk framework and working with risk owners to deliver “value add” risk management.

This role will be responsible, together with the Head of Risk and the other Risk Managers in the team, for delivering the risk transformation required to ensure Colt Enterprise Risk Management meets the needs of the business and drives a proactive risk management culture across Colt, and business partners through involvement in the decision making process.

Key accountabilities

• Work with the Head of Risk to develop the Colt risk strategy and the annual risk management plan.
• Drive adoption of a more data driven risk methodology, introducing risk modelling into the suite of available risk management tools within Colt. 
• Deliver on specific risk related projects in response to business needs (Eg: provide risk insights in deal bidding process and in key strategic initiatives and projects)
• Support all elements of the risk management process as required :
• conduct regular risk identification, assessment and evaluation with management across the various business units;
• work with Risk Owners to define risk appetite and ensure ongoing monitoring of Colt’s adherence to set appetite;
• work with the business to define controls and action plans required to effectively manage the risks identified;
• drive maturity of the risk management process, ensuring risk information is used to effectively support decision making;
• provide support, education and training to the business to build risk awareness and to promote the right risk culture within the organisation.
• Support the development of risk reporting and relevant material for the Board, the Executive Leadership Team and the Audit Committee.
• Assess and review Colt’s internal practices and regulatory obligations (e.g : anti-bribery and anti-corruption, Fraud, Climate change, UK Corporate Governance reforms).
• Identify opportunities for innovation and continuous improvement in the Risk Process.

Key performance indicators (financial and non-financial)

• Risk Management Process is consistently implemented across the organisation
• Bottom-Up risk consolidation in place, informing Colt top risk register
• Risk modelling and risk data analytics developed and successfully applied to key scenarios to generate insights and drive risk decisions
• Risk information is used to better support decision making across the organisation.

Relationships and key contacts

• Exposure to the EVPs, VPs  and Senior Managers across Colt in all territories.
• Industry regulators and auditors (e.g. ISO, External Auditors)

Role specific requirements

Skills & Experience

• Background – Experienced Risk Manager or Risk Professional, with minimum of 6 years’ experience gained in a Big 4 consultancy/ Global Corporate Organisations / FTSE 100 or similar. Track record of driving risk management maturity and being solution focused. Excellent interpersonal and communication skills .
• Risk Management Experience – Experience and knowledge of risk management framework methodology and practices gained in global corporate organisations or consultancy practices. Track record of enhancing maturity in risk functions and processes.
• Technology Experience – Experience in technology risk management, cybersecurity, or information security roles, with a strong understanding of risk assessment methodologies and industry standards. Demonstrable experience with project based risk identification for system implementations.
• Data Analytics and Risk Modelling – Exposure to data analytics and risk modelling, with the ability to explore data sets to generate meaningful insights.
• Communication and Influencing Skills – Proven track record in developing strong stakeholder relationships, excellent communication (verbal and written) and interpersonal skills.  The successful candidate will be a clear and focussed communicator, with the ability to build rapport and to challenge stakeholders when required. He/she will also have the ability to collate and summarise information in plain English and to design engaging reports for various audiences.
• Problem-solving skills – Ability to identify the nature of a problem, deconstruct it and work with the business to address it.
• Organisational skills – A self-starter who can be relied upon to act on initiative and take full ownership of deliverables and who has the ability to successfully manage many work streams simultaneously.
• Commercial exposure  –  Experience in applying risk management to commercial deals/settings
• Although experience in technology services and telecommunications is not essential, the successful candidate will have a good understanding the sector and associated technologies and products.

Qualifications

• Relevant qualification in risk management (CRMA, Diploma from IRM, C-Risk).
• Bachelor’s degree or a qualification in accounting (ACA,ACCA,CIMA).
• Strong proficiency in Microsoft Excel, PowerPoint, SharePoint and data analytics, ability to present risk information in a compelling way.

Others

Travel opportunities to Europe and/or Asia. Candidate should be able to travel up to 10%.
Flexible and remote working

What we offer

Colt is a growing business that is investing in its people. We offer skill development, learning pathways and accreditation to help our people perform at their best, regardless of role and location. The company supports diversity and inclusion in the workplace and has signed Diversity Charter.

In addition to offering competitive salaries and incentive plans, a range of benefits and local rewards packages are offered to staff. Colt recognises the importance of a work life balance.

Some benefit examples are:

• Hybrid set up
• Pension fund
• Two days annually to spend on volunteering opportunities
• Medical and life insurance
• Full time standard working hours
• Flexible benefits scheme
• Access to a virtual business school for on-going learning
• Business mentoring
• International environment with employees from more than 35 different nationalities

RISK & CONTROLS MANAGER JOB DESCRIPTION

Company: GroupM EMEA

Location: London, UK

Salary range: Competitive

Reporting to: Associate Risk & Controls Director, GroupM EMEA

ABOUT GROUPM

GroupM is the world’s leading media buying operation worldwide, responsible for more than $60B of global media billings through agencies including Mindshare, Essence Mediacom, Wavemaker, and mSix & Partners, as well as Nexus, the industry’s largest community of performance marketing experts designed to drive performance and innovation at scale for GroupM’s agencies and clients.

SCOPE AND OBJECTIVE

We are looking for a Risk & Controls Manager to join our team. The candidate will be part of the EMEA Risk & Controls team, reporting to the Associate Risk & Controls Director, GroupM EMEA.

You will be responsible for providing support to the organization in both implementing and monitoring an effective local control framework aligned with Group requirements and the wide spectrum of compliance activities. You will support with audits on both coordination, issue discussion and remediation. This is a challenging role with multiple priorities and a wide range of local and regional stakeholders.

KEY DUTIES AND RESPONSIBILITIES

• Promote and help embed the culture of ethics and integrity across the region, through training, support and advising on relevant topics such as anti-bribery and corruption, internal controls, as well as internal policy requirements.
• Serve as a risk & controls subject matter expert and thought leader within the region.
• Be a great business partner; establish and maintain excellent relationships within the R&C team and local markets, and collaborate effectively with colleagues across GroupM, WPP and other Networks. Engage with multiple senior stakeholders, both internal and external.
• Support the design and implementation of financial, operational and compliance controls in line with the WPP Internal Control framework, which includes meeting the documentation and evidence standards required.
• Design and operate effective on-going quality reviews / control monitoring programs as a second line of defense for the markets you work with.
• Identify opportunities for continuous improvement, including use of technology, while adapting to the new and evolving challenges and opportunities.
• Reinforce WPP & GroupM policies, control requirements and communicate updates / changes to the business in a clear and concise manner.
• Be a partner and source of support and guidance for specific areas of change / strategic importance that require controls implementation to enable on-going success.
• Think strategically about our business, develop pragmatic and sustainable solutions to enhance the control environment and streamline and standardise processes, procedures and controls.
• Coordinate audit and compliance activities alongside the relevant teams within the markets you support, liaising with internal and external audit teams (e.g. WPP IA, PwC and EY) and monitor remediation for all sources of assurance.
• Coordinate / oversee internal control and risk management processes, e.g. business risk maps, internal control self-certifications, market Letter of Representation submissions, Code of Conduct and related party declarations review.

ACADEMIC BACKGROUND & EXPERIENCE

• Bachelor’s degree or equivalent.
• 5+ years of work experience in industry or consulting in risk and controls, ethics and compliance, business process improvement, risk management, or internal / external audit.

MANDATORY SKILLS

• Familiar with IFRS, Sarbanes-Oxley compliance, PCAOB requirements, etc.
• Ability to work independently and apply a structured approach towards balancing multiple demands and priorities in a fast-paced environment and work cross-functionally across different geographies, functions, and employees of diverse backgrounds.
• Experienced in assessing business risk and evaluating adequacy and effectiveness of internal control systems.
• Experienced in driving improvement and creating stronger business relationships, rather than simply enforcing guidelines.
• Approachable with excellent interpersonal and communication skills (verbal and written).
• Flexibility and openness to grow and take ownership of new projects/tasks/roles.
• Competent in Excel.

DESIRED SKILLS

• Certified Accountant, ACA/CA/ACCA qualified or equivalent.
• Language skills. We work across 30+ countries and therefore additional languages including Spanish, French and German are desirable.
• Experience in media and advertising with proven knowledge of core business processes.

Company Description

We're ASOS. We blend our flair for fashion with our love of cutting- edge technology, but more importantly were interested in how we can bring the best out of you.

We exist to give people the confidence to be whoever they want to be, and that goes for our people too. At ASOS, you're free to be your true self without judgment, and channel your creativity into a platform used by millions.

Through our Fashion with Integrity strategy we are driving diversity, equity and inclusion across every aspect of ASOS and ensuring every ASOSer can be their authentic self at work.  We want our people to be whoever they want to be, because we believe people who bring their best selves to work, do their best work.  

About the Role

As the Marketplace Compliance Manager, you’ll focus on ASOS’ payments-related relationships and processes (for example, with acquirers and payments service providers (PSPs)). You’ll be developing and maintaining ASOS’ compliance strategy and relevant policies required to adhere to acquirer and PSP requirements and comply with applicable legislation / regulation, and ensuring that these are implemented across all relevant functions within the business in order to guarantee that ASOS maintains contractual and regulatory compliance. In collaboration with the Compliance Manager, this role will drive the implementation of compliance controls and will include a broad set of cross-functional tasks to ensure that all personnel are properly trained, processes are scalable, and metrics accurately reported.  

The Marketplace Compliance Manager’s core focus will be on four key business activities:

1. Managing the contractual compliance requirements ASOS has with its PSPs and acquirers.
2. Ensuring ASOS complies with applicable Marketplace rules, according to contractual and regulatory requirements.
3. Managing the relationship with the card provider of ASOS’ co-branded credit card.
4. Supporting ASOS in ensuring it has the right marketplace governance and compliance best practices in place.
5. Supporting our culture by driving Diversity, Equity & Inclusion strategies.

What You’ll be Doing

Marketplace Compliance Monitoring

1. Ensure that ASOS’ activities comply with all applicable and relevant contractual and/or legislation and regulation in relation to its marketplace, and oversee ongoing compliance with new/changing regulations and requirements relating to marketplace. 
2. In collaboration with the Compliance Manager, identify financial crime compliance (FCC) vulnerabilities ASOS’ marketplace may be exposed to and implement measures to mitigate or control the risks. 

Third Party Liaison

1. Ongoing review of contracts that ASOS holds with PSPs, acquirers and Capital One to ensure ASOS is fulfilling it compliance obligations under applicable regulations, such as the Marketplace Card Scheme Rules.
2. Build and monitor against the Marketplace Compliance Framework, identifying areas of non-compliance with third party partners’ obligations.
3. Deal with audits and audit requests conducted by and questions from our marketplace third parties (e.g. PSPs and acquirers). 

Risk management and governance

1. Create, own and drive the end-to-end Marketplace Financial Crime Risk Management Framework (MFCRM).
2. Manage the upkeep of FCC Policies, Processes and Procedures for ASOS Payments Limited. 
3. Work with the Compliance Manager to create the financial crime risk acceptance criteria for partners and brands at ASOS. 
4. In collaboration with the Compliance Manager, design and implement the company’s Customer Risk Rating (CRR) assessment model.  Define parameters of High, Medium and Low risk partners for ASOS based on factors such as ownership structure, adverse media, political exposure, high risk jurisdictions.
5. Define ASOS’ customer Risk Appetite Statement (RAS) and ensure it is consistently applied across ASOS’ onboarding and KYBP review processes (both periodic and event driven).
6. Support ASOS teams in keeping the know your business partner (KYBP) process fit-for-purpose and up-to-date.
7. Oversee the periodic and event driven reviews of Customer Due Diligence (CDD) based on customer risk rating (High, Medium, Low).
8. In collaboration with the Compliance Manager, maintain a PEP Register of all Politically Exposed Persons (PEPs) onboarded.
9. Ensure Enhanced Due Diligence (EDD) is conducted on each PEP alongside a periodic KYBP refresh.
10. Develop and deliver training to the business for relevant payments compliance areas (for example, Know Your Business Partner (KYBP)).  

Maintain and manage the marketplace compliance risk register

1. Ensure all existing and new or potential marketplace compliance risks and issues are logged on the register and communicated to relevant parties within ASOS. 
2. Conduct regular reviews of risks and issues and update these where necessary. 
3. Ensure each risk or issue has a mitigation plan or control(s) assigned to it.  
4. Track each risk to point of closure evidencing how each risk has been successfully mitigated / closed.  
5. Ensure evidence for risk closure is full and complete, therefore providing an audit trail which can be verified by the third line of defence (3LOD).  

3 Lines of Defence

1. Develop and mature the second line of defence (2LOD) by monitoring all applicable areas in relation to marketplace and the co-branded credit card.
2. Support the first line of defence (1LOD) in developing and operating their own monitoring and control documentation.
3. Work with the Compliance Manager to ensure monitoring activity follows a consistent process across ASOS.com Limited and ASOS Payments Limited

Who We’d Like to Meet

Someone with:

• Demonstrable financial crime experience from a regulated entity.
• Experience working in a retail marketplace environment, specialising in marketplace compliance.
• Experience working or engaging with payment service providers and / or acquirers.
• Experience in risk identification, application of appropriate mitigating controls, and risk management.
• Knowledge of marketplace card scheme rules.
• Attention to detail when reviewing contractual obligations.
• Experience in establishing and executing compliance monitoring frameworks.
• Experience acting as a Subject Matter Expert (SME) for payments compliance queries and initiatives  

What’s in it for you?

• Employee discount (hello ASOS discount!)
• ASOS Develops (personal development opportunities across the business)
• Employee sample sales
• Access to a huge range of LinkedIn learning materials

• 25 days paid annual leave + an extra celebration day

• Discretionary performance related bonus scheme
• Private medical care scheme
• Flexible benefits allowance - which you can choose to take as extra cash, or use towards other benefits

Our Commitments

We want our people to be whoever they want to be. That’s why we’re committed to creating a truly inclusive culture at ASOS, but how’re we doing it?

We’re proud members of Inclusive Companies, are Disability Confident Committed and have signed the Business in the Community Race at Work Charter. We’ve also recently been placed 8th in the Inclusive Top 50 Companies Employer List too.

We have several employee networks that operate as safe spaces, to help support and celebrate our people, find out more here.

Do you need any reasonable adjustments? Our recruitment team will be happy to support you in the best way possible if you feel comfortable raising this. It’s also our policy to interview all candidates with a disability who meet the minimum requirements for roles they have applied to.

If you have any questions about the policies we have in place to support our employees (e.g. our parental leave approach), just let our Talent team know.