Internal Auditor - Technology

Internal Auditor - Technology

We’re looking for a proactive Internal Auditor with a focus on technology and security risks to help Adyen build an ethical, resilient, and sustainable business.

In this role, you will provide independent, risk-based assurance and advice across Adyen’s technology landscape. You will work on audits covering areas such as infrastructure, cloud, identity and access management, software development, cyber security, resilience, and the controls that support our regulated financial platform.

You will work closely with teams globally across Engineering, Security, Product, Risk, Compliance, and others. This role sits in Internal Audit reporting to the team lead in Amsterdam and is part of Adyen’s third line of defence. That means you are independent, but never distant: you understand the business deeply, take deep interest in technology and security, ask sharp questions, and help management make better decisions.

This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration.

What you’ll do

• Prepare, execute, and report on technology and security internal audit assignments across Adyen’s global business.
• Assess whether technology and security risks are being identified, managed, and escalated appropriately across first and second line functions.
• Provide management with an independent view on the effectiveness of governance, risk management, and internal controls.
• Evaluate the design and operating effectiveness of controls in areas such as cloud environments, infrastructure, networks, SDLC, change management, vulnerability management, identity and access management, logging and monitoring, incident response, and resilience.
• Translate technical observations into clear audit findings, practical recommendations, and meaningful insights for both technical and non-technical stakeholders.
• Stay up to speed on changes in Adyen’s products, architecture, threat landscape, and regulatory environment, and use those insights in risk assessment and audit planning.
• Identify opportunities to improve Internal Audit’s methodology, use of data, automation, and overall effectiveness.
• Build strong working relationships across the business and become a trusted partner who can challenge constructively.
• Support follow-up activities to monitor whether agreed actions are implemented effectively and on time.

Who you are

• You have 5+ years of relevant experience in internal audit, external audit, technology risk, or security assurance, ideally in a fintech, payments, financial services, or other technology-heavy environment.
• You have experience auditing or assessing technology and security domains with a strong grasp of technical knowledge, not only the frameworks.
• You understand how modern technology platforms work and are comfortable discussing architecture, systems, and risks with engineers and security specialists.
• You know how to separate real risk from process theatre. You ask why, challenge assumptions, and don’t stop at surface-level answers.
• You can scope and run audits independently, while also knowing when to collaborate closely with others.
• You write clearly, think critically, and communicate findings in a way that drives action.
• You are comfortable operating in a fast-paced, global environment with a high level of autonomy.
• Experience with payments, regulated financial institutions, PCI environments, or resilience and security frameworks is a plus.
• Experience using data analytics, automation, or AI to improve audit work.
• Relevant certifications such as CISA, CISSP, CIA, RE, or similar are a plus.

What sets you apart

• You combine technical depth with strong judgment.
• You are low ego, high ownership, and comfortable working across different teams, cultures, and time zones.
• You care about improving the business, not just documenting weaknesses.
• You have a track record of building. That includes stronger controls, better audit approaches, and better ways of working.