nscaleoperationsukltd
IT Analyst - Audit, Risk, and Controls
Job description
About Nscale
Nscale is the GPU cloud engineered for AI. We provide cost-effective, high-performance infrastructure for AI startups and large enterprise customers. Nscale enables AI-focused companies to achieve superior results by reducing the complexity of AI development. Our GPU cloud bolsters technical capabilities and directly supports strategic business outcomes, including cost management, rapid innovation, and environmental responsibility. We thrive on a culture of relentless innovation, ownership, and accountability, where every team member takes pride in their work and drives it with excellence and urgency. As an Nscaler, you'll build trust through openness and transparency, where everyone is inspired to do their best work.
About the Role
The Analyst, Audit, Risk & Controls supports Nscale's internal control environment across IT SOX, internal audit, business process reviews, and enterprise risk management. Working within the Finance team and reporting to the Director, Audit, Risk & Controls, this is a hands-on role covering control design, testing, documentation, and ongoing monitoring across both IT and business process domains. This is a deliberately broad role. Depending on the candidate's background, the primary focus may sit closer to IT general controls and systems, or to business process controls and financial reporting. We expect to hire more than one person and welcome applicants from both profiles.
What You'll Be Doing
IT SOX & General Controls
- Support the design, documentation, and testing of IT general controls (ITGCs) across in-scope systems
- Perform walkthroughs and test design and operating effectiveness of controls covering access management, change management, SDLC, and backup & recovery
- Maintain and update ITGC documentation, control matrices, and testing workpapers
- Support user access reviews, segregation of duties (SoD) assessments, and role-based access management processes
- Assist in identifying, tracking, and remediating IT control gaps and deficiencies
- Contribute to system implementation reviews and ITGC scoping for new platforms entering the control environment
Internal Audit
- Support delivery of the internal audit plan across IT and business process areas, including scoping, fieldwork, and reporting
- Prepare and maintain audit workpapers, findings, and management action plans
- Track and follow up on open audit recommendations and remediation progress
- Assist in audit readiness activities and support coordination with external auditors on information requests and testing
Business Process Controls
- Conduct process walkthroughs and as-is documentation for key financial and operational processes
- Support the design and testing of business process controls for SOX and internal audit purposes
- Identify control weaknesses, process inefficiencies, and improvement opportunities
- Perform internal controls impact assessments for new systems, process changes, or organisational developments
- Assist in the design and implementation of controls arising from business initiatives or transformation projects
Enterprise Risk Management • Support the maintenance and monitoring of the risk register, including tracking of key risk indicators and control owners
- Contribute to periodic risk assessments and assist in identifying emerging risks relevant to IT, financial reporting, and operations
- Help embed risk and control awareness across the business by supporting documentation, reporting, and stakeholder engagement
- Assist in aligning control frameworks and audit findings with the broader ERM programme Collaboration & Reporting
- Work closely with control owners across Finance, IT, and Operations to gather evidence and support control activities
- Communicate control requirements and findings clearly to both technical and non-technical stakeholders
- Contribute to ARC team reporting, dashboards, and status updates for senior stakeholders
- Support ad hoc risk, compliance, and controls projects as required by the ARC leadership team
What We're Looking For
Education & Experience • 2.5 – 5 years of experience in IT audit, external audit, or internal audit — ideally from a Big 4 or equivalent firm
- Exposure to SOX compliance programmes, including ITGC and/or business process control testing
- Experience working with ERP or enterprise systems (e.g. NetSuite, SAP, Oracle, Workday)
- Familiarity with control frameworks such as COSO and COBIT
- Bachelor's degree in Information Technology, Accounting, Finance, or a related field (or equivalent experience)
Technical Skills • Working knowledge of IT general controls and their application in a SOX or internal audit context
- Understanding of access management, user provisioning, and SoD concepts
- Familiarity with ERP systems and financial applications
- Awareness of IT audit tools, testing methodologies, and basic system security principles
Professional Skills • Strong analytical and problem-solving skills with attention to detail
- Able to operate across both IT and business process domains
- Clear written and verbal communication skills — comfortable presenting findings to non-technical stakeholders
- Organised and self-directed, able to manage multiple tasks in a fast-paced, high-growth environment
- Collaborative and relationship-oriented, with the ability to work effectively across functions
Preferred Qualifications • Professional qualification in progress or achieved: ACA, ACCA, CISA, CIA, or equivalent
- Experience with audit or compliance management platforms (e.g. Workiva, AuditBoard)
- Knowledge of data governance or information security frameworks
- Experience in technology, financial services, or other regulated industriesFor information on how Nscale handles candidate personal data, please see our Employee & Candidate Privacy Notice: Here.


