Internal IT Auditor (Regulated Fintech)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Deriv.com is hiring an Internal IT Auditor to conduct technology risk-based regulatory audits across banking, virtual assets, and investment services. You will audit cloud environments, containerized systems, and core fintech platforms, ensuring compliance with frameworks like DORA and ISO 27001.
Key Skills for This Role
Responsibilities
- Evaluate internal technology controls across IT governance, system security, and data protection to ensure regulatory expectations are met
- Conduct rigorous IT audits across regulated banking, VASP, and investment service entities
- Audit specialized core systems including banking platforms, VASP wallets, cryptographic key management, and algorithmic trading systems
- Identify security and compliance vulnerabilities and proactively highlight areas for improvement
- Track global tech regulation standards (ISO 27001, SOC 2, DORA) to stay ahead of international technology risk developments
- Collaborate with internal engineering and InfoSec teams to ensure technical controls are integrated into daily workflows
- Report tech risk audit findings and cyber posture insights to senior management and audit committees
- Drive IT remediation plans to completion to minimize risk of technological failure or non compliance
Requirements
- 5+ years in IT audit or technology compliance, ideally in regulated fintech, banking, investment services, or VASP environment
- Deep understanding of IT regulatory frameworks, technology risk guidelines, cybersecurity mandates, and frameworks like DORA
- Proven experience auditing cloud environments (AWS/GCP), containerized systems (Kubernetes/Docker), IAM, encryption standards, or blockchain tech
- Degree in CS, Cybersecurity, or IT, backed by CISA certification (CRISC, CISM, or CISSP are big pluses)
- Analytical and highly collaborative, able to dissect complex technical architectures and present actionable insights
- Clear communicator with excellent spoken and written English
Full Job Posting
Job Description
- You’ll focus on technology, information security, and IT governance audits across our regulated business entities—spanning banking, virtual assets (VASPs), and investment services.
- You’ll conduct technology risk based regulatory audits, identify infrastructure vulnerabilities, and embed robust technical controls directly into the DNA of our operations.
- This isn’t standard checklist IT auditing. It’s executing high stakes technology risk operations where your security and regulatory expertise safeguards our entire fintech infrastructure.
What You'll Do
- Evaluate internal technology controls across IT governance, system security, and data protection to ensure we consistently meet regulatory expectations.
- Conduct rigorous IT audits across regulated banking, VASP, and investment service entities, keeping our infrastructure and DevOps pipelines aligned with the fintech compliance landscape.
- Audit specialized core systems, including banking platforms, VASP wallets, cryptographic key management, and algorithmic trading systems to mitigate operational risks.
- Identify security and compliance vulnerabilities, proactively highlighting areas for improvement to prevent cybersecurity breaches, regulatory penalties, and system downtime.
- Track global tech regulation standards (such as ISO 27001, SOC 2, and DORA) to keep Deriv ahead of international technology risk developments.
- Collaborate with internal engineering and InfoSec teams to ensure technical controls are seamlessly integrated into daily workflows.
- Report tech risk audit findings and cyber posture insights directly to senior management and audit committees.
- Drive IT remediation plans to completion, ensuring the risk of technological failure or non compliance is kept to an absolute minimum.
Who You Are
- 5+ years in IT audit or technology compliance. Ideally with experience gained inside a regulated fintech, banking, investment services, or VASP environment.
- Deep understanding of IT regulatory frameworks. You know your way around technology risk guidelines, cybersecurity mandates, and frameworks like DORA.
- Strong technical auditing skills. You have proven experience auditing cloud environments (AWS/GCP), containerized systems (Kubernetes/Docker), IAM, encryption standards, or blockchain tech.
- Certified professional. You hold a degree in CS, Cybersecurity, or IT, backed by a CISA certification (CRISC, CISM, or CISSP are big pluses).
- Analytical and highly collaborative. You can dissect complex technical architectures, present actionable insights, and speak the language of both software engineers and senior leadership.
- Clear communicator. Excellent spoken and written English, with the integrity and discretion required to handle sensitive compliance matters.
The Honest Reality
- You will be auditing complex, fast evolving systems across multiple regulated environments where the compliance landscape is constantly shifting.
- You'll need to keep pace with everything from traditional banking regulations to cutting edge blockchain tech, and you must have the confidence to challenge engineering setups when necessary.
- The work demands absolute rigor and high technical depth. In return, you’ll gain unparalleled, future proof IT audit expertise across the absolute cutting edge of fintech, crypto, and global banking.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Deriv.com
Senior Regulatory Compliance Executive
Dubai, UAE
Deriv is seeking a Senior Regulatory Compliance Executive to manage compliance for entities spanning investment services, banking, and virtual assets. The role involves compliance monitoring, gap analyses, licensing mana
Senior SOC Analyst
Dubai, UAE
Deriv is hiring a Senior SOC Analyst to proactively hunt threats, build detections, and own incident response in a high-scale fintech environment. You will work across infrastructure, cloud, identity, and endpoint, and e
Senior Offensive Security Engineer
Dubai, UAE
Deriv.com is hiring a Senior Offensive Security Engineer to lead red team operations, emulating real-world attackers across infrastructure, applications, cloud, and AI agents. Candidates need 6+ years of offensive securi
Senior Data Analyst
, UAE
Deriv is seeking a Senior Data Analyst to transform complex datasets into actionable insights that shape products, optimize customer experiences, and drive business growth. You will lead data-driven initiatives, mentor j
Anti Fraud Manager
Dubai, UAE
Job Information Job Opening ID ZR\2183\JOB Industry Finance & Accounts Date Opened 13/05/2026 Job Type Full time City Dubai Country United Arab Emirates Job Description Fraud doesn’t announce itself. It hides in payment
Business Development Manager
Dubai, UAE
Job Information Job Opening ID ZR\2178\JOB Industry Marketing & Global Partnerships Date Opened 12/05/2026 Job Type Full time City Dubai Country United Arab Emirates Job Description We're not hiring a relationship manage
Business Development Executive
Dubai, UAE
Job Information Job Opening ID ZR\2177\JOB Industry Marketing & Global Partnerships Date Opened 12/05/2026 Job Type Full time City Dubai Country United Arab Emirates Job Description The partners you recruit and activate
Media Compliance Counsel
Dubai, UAE
Job Information Job Opening ID ZR\2171\JOB Industry Legal & Compliance Date Opened 06/05/2026 Job Type Full time City Dubai Province - Country United Arab Emirates Postal Code - Job Description The Challenge Your job: de
Senior Regulatory Compliance Executive
Dubai, UAE
Senior SOC Analyst
Dubai, UAE
Senior Offensive Security Engineer
Dubai, UAE
Senior Data Analyst
, UAE
Anti Fraud Manager
Dubai, UAE
Business Development Manager
Dubai, UAE
Business Development Executive
Dubai, UAE
Media Compliance Counsel
Dubai, UAE