IT Security Specialist (Hiring Immediately)

About SumUp

We believe in the everyday hero. Those who have the courage to follow their passion and who have the strength and determination to realise their dreams.

Small business owners are at the heart of all we do, so we're creating powerful, easy-to-use financial solutions to help them run their businesses. With a founder’s mentality and a team-first attitude, our diverse teams across Europe, South America and the United States work together to ensure that small business owners can be successful doing what they love.

Your Team

You’ll join SumUp’s Global Internal Audit team , part of our wider G&A / GRC function , reporting directly to the Global Head of Internal Audit .

This team plays a critical role in protecting SumUp’s integrity, supporting regulatory compliance, and strengthening trust with our Board, Audit Committee, and regulators. As our IT Internal Auditor , you’ll bring essential technology and data analytics expertise into a team that partners closely with senior leaders across the business.

You’ll be the go-to expert for technology-focused audits, helping shape how we assess IT risks, controls, and governance across a fast-scaling global fintech.

What You’ll Do

As an IT Internal Auditor , you’ll support the delivery of SumUp’s approved Internal Audit Plan, with a strong focus on technology, data, and systems risk.

In this role, you will:

• Plan and execute IT internal audits in line with the annual audit plan

• Assess IT general controls , security, governance, and risk management frameworks

• Prepare clear, insightful audit reports , presenting findings and recommendations to senior stakeholders

• Use data analytics to improve audit efficiency, sample testing, and risk identification

• Support ad-hoc audit projects and regulatory-related reviews

• Contribute to the continuous improvement of internal audit methodologies, frameworks, and templates

• Stay up to date with technology standards, regulatory developments, and industry best practices

• Build strong relationships across the business and promote a proactive internal controls culture

• Conduct targeted audits of AWS security standards and access controls across our cloud environment, ensuring credit card data stored in cloud services is adequately protected;
• Perform risk-based reviews of payment products and ensure security requirements are consistently embedded throughout the development lifecycle.
• Identifying anomalies or excessive privileges across different systems and payment platforms.

✅ You’ll Be Great for This Role If

You’re a hands-on IT auditor who enjoys combining technical depth with clear communication and stakeholder collaboration.

Must-have experience:

• Minimum 4 years’ experience in IT / Internal Audit within a regulated financial services environment

• Strong knowledge of audit standards, risk management, and internal controls

• Experience auditing IT controls and frameworks such as COBIT, ISO 27001, PCI DSS, ITIL, NIST, GDPR

• Practical exposure to areas like data security, cloud architecture, disaster recovery, security operations, or network infrastructure

• Advanced data analytics skills

• Professional-level English (written and spoken)

Nice to have:

• Professional certifications such as CIA, CISA, CPA

• Additional IT/security certifications ( CISSP, CISM, CRISC, ISO 22301 , or similar)

• Experience with audit-related data analytics tools

What sets you apart:

• High ethical standards and integrity

• Strong analytical and problem-solving mindset

• Confidence influencing change and challenging the status quo constructively

• Ability to work independently in a multinational environment

Why You Should Join SumUp

London, United Kingdom

Opportunity to work with a truly global, multicultural team from our central Covent Garden location, wrapped in historic charm and modern flair. This involves an office-first setup
Commitment to Diversity and Inclusion: be part of a workplace that values and promotes diversity, fostering an inclusive environment where everyone's perspectives are respected and embraced
Enrolment onto our VSOP program: you will own a stake in SumUp’s future success
Generous time off: enjoy 28 days of paid leave, plus bank holidays and special leaves
Health matters: Vitality health cover, including optical and dental
Life made easier: salary-sacrifice commuter benefits via Gogeta
Financial security: retirement scheme (SumUp matches 7% when you contribute 5%)
Peace of mind: life insurance from MetLife for 2× your salary
Break4me: 1-month sabbatical after 3 years of service
Referral Bonus: earn additional rewards by referring talented individuals to join the SumUp team

Job Application Tip

We recognise that candidates feel they need to meet 100% of the job criteria in order to apply for a job. Please note that this is only a guide. If you don’t tick every box, it’s ok too because it means you have room to learn and develop your career at SumUp.