About Us

Turnkey helps organisations realise the value of effectively managing their business risks, with an integrated approach unlocking the potential to achieve their strategic objectives. As a global consulting provider of risk management, identity and access management, and cyber security solutions to companies who run enterprise software, we help some of the largest companies in the world to manage their business risks and protect their most important assets from internal and external threats.

This is an excellent opportunity to join a passionate team with a shared purpose to help our customers act with integrity and embrace best practices for GRC and risk management. We are an expanding and dynamic company with a fun, relaxed, but professional culture. We are a small business that punches well above our weight and believe in sharing what we learn and challenging convention with innovative and disruptive thinking - all with the aim of moving the industry forward.

We are looking for people who want to make a difference and dare to disrupt the status quo!

About You

We are looking for a highly motivated and dynamic person who is committed to making a meaningful contribution to Turnkey. An experienced candidate who can help us continue growing the IRM practice and developing world class risk and internal controls advisory services, whilst also being able to guide and steer large scale transformation projects across our global clients.  

The candidate will play an integral role in managing client engagements, as well as utilising specialist content knowledge to deliver advisory services and transformation engagements that best fit our clients’ needs.

We are looking for a candidate with at least five years’ practical experience in designing and delivering high performing systems of internal control within the Risk and Controls Assurance and Advisory domain to join our team as a Senior Manager. The successful candidate will have a high level of knowledge and understanding regarding industry best practice control frameworks, relevant regulations and standards, business risk and controls across multiple core business processes, and the use of GRC technology to more effectively manage and monitor risk to ensure the achievement of our clients’ strategic objectives.    

Ideal candidate will be a Subject Matter Expert (SME) in designing and delivering risk and control transformation solutions for organisations of all sizes, and across multiple industries.

We are looking ideally for someone with the following attributes: 

• A self-starter with an entrepreneurial spirit to help define, build, and deliver new services and capabilities within the IRM practice
• A motivated candidate that has the appetite to own and develop a new service area that will involve a variety of activities including service definition, resource planning, recruitment, sales & marketing, thought leadership, delivery, training, coaching, mentoring etc.
• 5+ years of professional work experience within External/Internal Audit and/or Internal Controls Specialist (as part of second line function)
• Background in delivering complex control improvement/modernisation/transformation programmes
• Detailed understanding of core business processes and their key operational risks, as well as related best practice controls
• Detailed understanding of risk and controls principles and how processes across both Business and IT are implemented and improved utilising GRC systems (e.g., Access Governance, Access Requests/Reviews, Role Based Access Control, Control Testing, Continuous Control Monitoring, Risk Assessments, Risk Aggregation, Risk and Control Reporting etc.)
• Understanding of relevant regulatory/governance frameworks and standards, e.g. SOx, UK Corporate Governance Code, Basel, ISO31000, ISO27001, COSO, COBIT, NIST, GDPR, etc.
• Specific knowledge of the revised UK Corporate Governance Code 2024 and the implications regarding risk and internal controls reporting
• Understanding and awareness of the IIA 3 Lines of Defence framework and related advisory engagements
• Understanding of the different categories of risk (e.g., Strategic, Operational, Financial, Compliance etc.) and the concept of integrated risk management
• Education in Finance and Accounting, or related fields
• Project management/delivery experience (project planning, stakeholder management, scope management, quality assurance, etc)
• Strong written and verbal communication skills

The following attributes, while not mandatory, will be desired:

• Experience of assessing/designing/implementing controls within an ERP environment (e.g., SAP, Oracle, Workday etc.)
• Experience of managing a team to help develop and deliver controls modernisation/transformation strategies
• Professional certifications such as ACCA, ACA, CISA, ITIL, etc.  
• Experience of working in professional services consulting, ideally experience with the ‘Big-4’ or similar
• Implementation and project management methodologies (e.g., PRINCE2/AGILE) 

Your responsibilities will include:  

• Use your experience and commercial awareness of the risk and controls advisory market to define and deploy a suite of related in-demand services we can offer to our clients (e.g., hook products, strategic services etc.)
• Determine how we can leverage our technology partners and implementation skills to enhance our service offerings
• Take full ownership of these new revenue streams
• Develop methodologies, templates, and materials we can use when delivering those defined services to enable a consistent approach/standard across the delivery team
• Work with sales and marketing teams to define value propositions, develop marketing campaigns to support sales, identify and attend key events/conferences, deliver thought leadership in this area (e.g., webinars, articles, blogs, speaker sessions) etc.
• Advise clients on controls relating to regulatory or legislative compliance, e.g., SOX; GDPR; UK Corporate Governance Code etc.
• Develop a team of consultants to support delivery of our advisory services as we expand our offerings
• Build relationships with new clients and maintain good relations with our existing client base
• Provide SME knowledge to junior members of the team and provide knowledge transfer activities as part of our internal training initiatives
• Writing and reviewing reports and other client-facing deliverables, to a high standard
• NOTE: Where additional training/certifications are identified and justified, full training and certifications will be provided by us

Salary: Competitive package which will depend on a combination of factors including level of experience and relevant expertise.

Benefits include:

·       Pension: on joining, employees will be automatically enrolled in our workplace pension scheme

·       Holiday Entitlement: employees receive 25 days per holiday year plus all statutory bank and public holidays in England and Wales

·       Private Medical Insurance: employees will be enrolled on to the company BUPA healthcare scheme

·       Insurances: Life Insurance and Critical Illness cover are provided to all employees

·       Carbon Offset: Employees will be enrolled onto the company carbon offset scheme which is committed to offsetting at least 50% of all employee personal carbon emissions. All Turnkey employees are entitled to £40 worth of carbon credits each year, which can offset 7 tonnes of carbon. Options are available to increase carbon credit amounts which would be treated as a benefit in kind. 

Location: Our UK offices are London based but work may be across UK and Europe.  The successful applicant must be prepared to work away from home during the week.