Audit Manager - CIB

Job Summary

The Internal Audit Manager, Digital Assets is responsible for providing independent and objective assurance over the Group’s Digital Assets activities, businesses and strategic initiatives. This role is accountable for end-to-end internal audit coverage, including audit planning, risk assessment, audit execution, reporting and continuous business monitoring of digital asset products, platforms, governance and risk management frameworks. Leading and executing audits across digital assets custody, trading, tokenisation and platforms.

The role ensures that digital asset activities are conducted within Group’s risk appetite, in compliance with regulatory expectations, and in line with internal policies. The role works closely with other Group Internal Audit teams and key stakeholders across the business, risk, technology and compliance functions to deliver a coordinated and integrated audit approach, and to provide senior management and the Board with clear insight into digital assets risks, control effectiveness and emerging issues.

Responsibilities

• Develop and maintain a risk-based audit plan for digital assets activities in accordance with IIA Standards and the Group Internal Audit methodology.
• Perform periodic and continuous risk assessments to identify and assess key risks arising from digital assets activities, new initiatives, regulatory changes and external developments.
• Plan and perform internal audit engagements in line with IIA Standards, including defining audit objectives, scope, and criteria for digital asset audits.
• Obtain sufficient, reliable, relevant and useful information to provide a reasonable basis for audit conclusions, including through walkthroughs, control testing, data analysis, and interviews.
• Evaluate the design and operating effectiveness of governance, risk management and internal control processes over digital assets activities.
• Assess whether digital asset activities are conducted in line with the Group’s risk appetite, internal policies and applicable laws and regulations.
• Identify and clearly document audit findings, root causes, risk implications, and control weaknesses in accordance with Group Internal Audit standards and documentation requirements.
• Communicate audit result through clear, accurate, and timely reporting to management and relevant governance forums and/or committees.
• Monitor and follow up on management actions plans to ensure effective and timely remediation of audit issues.
• Maintain independence and objectivity while providing credible and constructive challenge to management.
• Coordinate with other Group Internal Audit teams to ensure adequate coverage, avoid duplication, and support a consistent and integrated assurance approach.
• Contribute to quality assurance and improvement activities within Group Internal Audit, including methodology enhancements and peer reviews.
• Maintain up-to-date knowledge of digital asset risks, regulatory expectations, and industry practices to continuously enhance audit effectiveness.

Qualifications

• Educational Requirements: A Bachelor's degree or higher in a relevant discipline such as Finance, Accounting, Business Administration, Information Systems, Computer Science or a related field is required to support the technical knowledge necessary for this role.
• Experience: 5 - 7 years relevant audit experience, preferrably gained from digital assets or assurance firm
• Professional Training: Formal training and strong working knowledge of financial crime and/or technology risk related to digital assets.
• Certifications: A recognised professional qualification in auditing, accounting, or risk management (e.g., CA, CIA, CISA, or equivalent) is highly preferred, affirming the candidate’s commitment to professional excellence and continuous development.

Role Specific Technical Competencies

• Internal Audit
• Risk Assessment 
• Stakeholder Management
• Products and Processes
• Audit Report Writing