{bc}
indeed

Internal IT Auditor (Regulated Fintech)

Deriv.com
Dubai, UAE
Full Time
Senior
Today
IT AuditTechnology ComplianceCloud Environments (AWS/GCP)KubernetesDockerIAM
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

IT AuditTechnology ComplianceCloud Environments (AWS/GCP)
Smart Apply

Full Job Posting

Job Description

  • You’ll focus on technology, information security, and IT governance audits across our regulated business entities—spanning banking, virtual assets (VASPs), and investment services.
  • You’ll conduct technology risk based regulatory audits, identify infrastructure vulnerabilities, and embed robust technical controls directly into the DNA of our operations.
  • This isn’t standard checklist IT auditing. It’s executing high stakes technology risk operations where your security and regulatory expertise safeguards our entire fintech infrastructure.

What You'll Do

  • Evaluate internal technology controls across IT governance, system security, and data protection to ensure we consistently meet regulatory expectations.
  • Conduct rigorous IT audits across regulated banking, VASP, and investment service entities, keeping our infrastructure and DevOps pipelines aligned with the fintech compliance landscape.
  • Audit specialized core systems, including banking platforms, VASP wallets, cryptographic key management, and algorithmic trading systems to mitigate operational risks.
  • Identify security and compliance vulnerabilities, proactively highlighting areas for improvement to prevent cybersecurity breaches, regulatory penalties, and system downtime.
  • Track global tech regulation standards (such as ISO 27001, SOC 2, and DORA) to keep Deriv ahead of international technology risk developments.
  • Collaborate with internal engineering and InfoSec teams to ensure technical controls are seamlessly integrated into daily workflows.
  • Report tech risk audit findings and cyber posture insights directly to senior management and audit committees.
  • Drive IT remediation plans to completion, ensuring the risk of technological failure or non compliance is kept to an absolute minimum.

Who You Are

  • 5+ years in IT audit or technology compliance. Ideally with experience gained inside a regulated fintech, banking, investment services, or VASP environment.
  • Deep understanding of IT regulatory frameworks. You know your way around technology risk guidelines, cybersecurity mandates, and frameworks like DORA.
  • Strong technical auditing skills. You have proven experience auditing cloud environments (AWS/GCP), containerized systems (Kubernetes/Docker), IAM, encryption standards, or blockchain tech.
  • Certified professional. You hold a degree in CS, Cybersecurity, or IT, backed by a CISA certification (CRISC, CISM, or CISSP are big pluses).
  • Analytical and highly collaborative. You can dissect complex technical architectures, present actionable insights, and speak the language of both software engineers and senior leadership.
  • Clear communicator. Excellent spoken and written English, with the integrity and discretion required to handle sensitive compliance matters.

The Honest Reality

  • You will be auditing complex, fast evolving systems across multiple regulated environments where the compliance landscape is constantly shifting.
  • You'll need to keep pace with everything from traditional banking regulations to cutting edge blockchain tech, and you must have the confidence to challenge engineering setups when necessary.
  • The work demands absolute rigor and high technical depth. In return, you’ll gain unparalleled, future proof IT audit expertise across the absolute cutting edge of fintech, crypto, and global banking.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Deriv.com