Chief Internal Audit & Risk Assurance (Virtual Assets)

The Head of Internal Audit is responsible for establishing and leading an independent, risk-based internal audit function, providing assurance over the effectiveness of the Company’s governance, risk management, internal controls, and regulatory compliance across its virtual asset activities.The role supports the Board and Audit Committee by delivering objective assessments of the control environment, maintaining a risk-based audit plan, reporting findings independently, and ensuring timely remediation in line with VARA expectations.Responsibilities:Establish and maintain the internal audit framework, including methodology, charter, audit universe, and risk-based audit planDeliver independent audits across governance, compliance, operations, finance, technology, and client-facing processesConduct risk assessments to define audit priorities, coverage, and resource allocationEvaluate the design and effectiveness of key controls across the businessPrepare clear, evidence-based audit reports with findings, root causes, and recommendationsTrack and validate remediation actions, escalating delays or ineffective controlsAssess compliance with regulatory requirements, policies, and licence conditions (independent of Compliance and Risk)Oversee audits of technology, cybersecurity, and third-party dependenciesReview operational and financial controls, including trade lifecycle, reconciliations, and client asset handlingAssess outsourcing and third-party governance frameworksSupport regulatory inspection readiness and control environment reviewsPresent audit plans and findings to the Audit Committee and maintain functional independenceQualifications:Bachelor’s degree in Accounting, Finance, Audit, Risk, Information Systems, or related fieldProfessional certification (CIA, ACCA, CPA, CISA, or equivalent) preferred7+ years of internal/external audit or assurance experience in regulated financial services, fintech, or virtual assetsExperience leading risk-based audit plans and reporting to Board or Audit CommitteesStrong understanding of internal controls and the three lines of defence model#J-18808-Ljbffr