Internal Auditor

Join the fintech revolution with Mambu

Join the fintech revolution with Mambu, the leading SaaS cloud banking platform. We're on a mission to make banking better for a billion people. Explore exciting career opportunities and help shape the future of financial services.

What you’ll do

• Support the Technical Audit and Assurance team in maintaining compliance with Mambu’s Technical Assurance Programs (ISO 27001, SOC 1 and SOC 2):
  • Prepare teams for external certification/assurance audits
  • Facilitate external certification and assurance audit sessions, acting as a liaison between external auditors and internal teams
  • Ensure external audit findings are reviewed, recorded, and support the implementation of remediation measures
• Define and own the audit roadmap for technology controls for the Mambu platform:
  • Work closely with Product teams to raise awareness of compliance requirements and ensure the effectiveness of internal controls and Technical Assurance Programs
  • Plan and conduct internal audits based on Mambu’s annual audit plan and/or on-demand
  • Follow up and report on internal audit findings, supporting teams in implementing mitigation measures
  • Serve as the contact person for questions related to Technical Assurance Programs
• Support Mambu customers to gain trust in Mambu’s control framework and Assurance Programs:
  • Support external customers’ audits by planning and coordinating on-site or remote audits
  • Ensure external customer audit findings are addressed
  • Respond to customer audit and due-diligence requests
  • Educate legal and pre-sales teams on existing controls and assurance programs to support the pre-sales and contracting process

What you’ll bring

Key Skills

• At least one relevant professional certification, such as CPA, CISSP, CISA, GIAC, or ISO 27001 Lead Implementer or Auditor
• A strong technical background with an understanding of product development, SaaS or Cloud environments, and platform infrastructure like APIs
• Experience working with public cloud platforms (AWS, Azure, GCP)
• Strong written and verbal communication skills in English
• Analytical, detail-oriented, and creative problem-solving abilities
• Good organisational skills to manage changing priorities and ensure all tasks are addressed and expectations are met
• Proactive mindset with a drive to find and address root causes (e.g., 5 Whys analysis)
• Able to work autonomously, both independently and in teams

Nice to have:

• Hands-on experience with information security and privacy compliance frameworks, controls, and best practices, either as an auditor or implementing frameworks such as AICPA Trust Services Principles, PCI DSS, NIST 800.53, GDPR, SOX, etc.
• Previous experience in an IT, SaaS, or cloud provider as an internal auditor, compliance officer, or technical program manager
• Experience performing risk assessment workshops, analyzing risks, producing mitigation plans, and helping deliver those changes

What you’ll get

Join us to shape the future of banking, where your professional growth is equally as valued as your personal well-being.

• Competitive base salary
• Company equity for all
• Learning and development opportunities
• Hybrid/Remote working (location dependent)
• 30 days working abroad
• 4-week paid sabbatical after 5 years of service
• Additional benefits based on location

As part of the recruitment (or HR onboarding) process, you will be required to obtain authorized criminal background and credit screening results, as well as be queried against a sanctions/anti-money-laundering/counter terrorism financing/politically exposed persons screening service. Your employment is conditional upon approval of these results.