Job DescriptionSecurity, trust and strong controls are critical to how Sage operates — and this role helps make sure they stay that way.We’re looking for an IT Compliance Auditor to join our Global IT Controls Compliance team. This is a hands‑on, mid‑level role where you’ll work across our technology landscape, partnering with teams to make sure our IT controls are not only compliant, but practical, effective and fit for a modern, global business.Rather than acting as a “checker”, you’ll be a trusted partner — helping teams understand risk, strengthen controls and continuously improve how we govern our systems, data and change processes.*** Please note: This is a hybrid role requiring 3 days per week in our Newcastle office ***Key ResponsibilitiesWhat you’ll be responsible forDriving meaningful IT controls assuranceOversee IT compliance and operational audits across security, data, operations and change managementAssess how controls are designed and how they work in practice — not just whether they exist on paperProduce clear, robust audit evidence that can be relied upon by both internal and external auditorsImproving how we do governanceRefresh and improve audit approaches as technologies, risks and ways of working evolveHelp strengthen and standardise governance processes through the effective use of GRC toolingIdentify where controls can be simplified, strengthened or made more effective — and help teams get thereWorking in partnership across SageCollaborate with application, infrastructure and IT operations teams across multiple regionsClearly communicate audit findings, risks and recommendations to senior stakeholdersSupport teams in defining realistic remediation plans and seeing them through to completionSupporting external audit and compliance activityWork closely with internal and external auditors to support annual IT General Controls and SOx testingAct as a key point of contact, helping ensure audits run smoothly and findings are well understoodWhat we’re looking for:You don’t need to tick every box, but the right person will likely bring:Experience in IT compliance, risk or audit roles, with exposure to ITGC, SOx and control frameworksA working knowledge of how controls apply to applications, infrastructure, operations and changeConfidence to challenge, influence and support teams in a constructive wayStrong analytical skills and the ability to get to the root cause of control issuesClear communication skills — especially when translating technical or risk topics for non‑technical audiencesA collaborative, pragmatic mindset and the ability to manage competing prioritiesNice to have (not essential)CISA (Certified Information Systems Auditor) or equivalent experienceBenefits? We have plenty…Video: https://www.youtube.com/watch?v=TCMtTYUUiuUGenerous bonuses and pension scheme: Up to 8% matched pension contribution plus 2% top-up by Sage.25 days of paid annual leave with the option to buy up to another 5 days.8 bank holiday days.Paid 5 days yearly to volunteer through our Sage Foundation.50% income protection.Holiday buy + sell.Comprehensive health, dental, and vision coverage.Work away scheme for up to 10 weeks a year.Ongoing training and professional development.Hybrid working.Healthy Mind app membershipAccess to various helpful memberships for finances, health and wellbeing.#LI-MD1#J-18808-Ljbffr…
