Position Overview: Bridge Building S.A. (BBSA) is building a Luxembourg-regulated EMI and CASP. We are seeking an Internal Auditor manager to establish and execute a risk-based internal audit approach across core regulated-entity domains, including governance, safeguarding, treasury, AML/CTF, ICT/DORA, and outsourcing. The role will be reporting to the Internal Audit Officer based based in Ireland.

• Key Responsibilities:
• Audit Planning and Execution:
• Develop with the Internal Audit Officer and maintain a risk-based annual audit plan aligned with BBSA’s risk profile and regulatory priorities.
• Execute audits end-to-end (scoping, walkthroughs, control testing, sampling, issue grading, and reporting).
• Regulated Entity Coverage:
• Audit key frameworks and operations, including AML/CTF controls, safeguarding and reconciliation processes, treasury operations, ICT risk management, incident governance, and outsourcing oversight.
• Assess design and operating effectiveness of controls and identify root causes for weaknesses.
• Reporting and Remediation Follow-Up:
• Produce clear audit reports with pragmatic remediation actions and timelines.
• Track action plans to closure, validate fixes, and report progress to Internal Auditor Officer senior management and the Board/Audit Committee.
• Coordination and Inspection Support:
• Coordinate with external auditors and support supervisory inspections by preparing evidence and independent perspectives.
• Contribute to continuous improvement of audit methodology, documentation standards, and quality assurance.
• Key Requirements:
• Education:
• Bachelor’s or Master’s degree in Accounting, Finance, Business, or a related discipline.
• Experience:
• 5+ years in internal audit or equivalent assurance roles within regulated financial services.
• Experience in payments/EMI/PI and/or fintech/crypto is advantageous.
• Certifications:
• CIA, CISA, or equivalent certification strongly preferred.

• Ability to plan and execute internal audits across finance, operations, compliance, IT and cybersecurity.
• Strong interpersonal skills with the ability to create trust with stakeholders.
• Strong analytical, investigative, control testing and reporting skills; excellent judgment and ability to communicate issues clearly to senior stakeholders as well as produce clear written assessments and regulatory-ready documentation
• Adaptable, self driven and comfortable in a fast paced, evolving environment.
• High standards of professionalism, independence, and discretion.
• Languages:

Fluent English required