Internal Auditor – Risk & Compliance

Hill Dickinson LLP

Liverpool

Description

Job role: Internal Auditor

Hours: Monday to Friday, 09:00 - 17:00 (35 hours per week)

Happy to talk flexible working

Hill Dickinson are proud to be named as a Top Ten Employer for Working Families 2025 for the second year running and so, we are happy to consider flexible working opportunities to help you balance your work and home life.

Team: Risk and Compliance

Location: Liverpool

Benefits: At Hill Dickinson we understand that incentives go far beyond a good salary, so we have created a comprehensive benefits package tailored around our people.

Here Are Some Examples Of What We Offer

  • Annual leave starting at 25 days
  • Annual bonus scheme
  • Birthday privilege day and Christmas shutdown
  • Holiday buy, sell and carryover scheme
  • 2 charity volunteering or pro bono days
  • Optional private medical insurance via BUPA
  • Annual fitness allowance
  • Flexible pension scheme
  • ISA saving scheme and independent financial advice
  • Electric or hybrid vehicle lease scheme
  • Medicash
  • EAP with access to counselling
  • Enhanced family leave policies
  • Access to confidential, expert support via Fertifa in relation to reproductive health and wellbeing
  • Access to 10 days fully subsidised emergency or back-up care per year via Bright Horizons.
  • Life assurance
  • Group income protection
  • Annual travel season ticket loan
  • Hybrid working and dress for your day policy
  • Bespoke training and development opportunities
  • Financial contribution towards home working equipment

Role Overview

Introduction to the role:

The Internal Auditor will provide independent and objective assurance across the firm’s international operations. The role will support the effective operation of the firm’s Risk & Compliance framework, including ISO-certified management systems, regulatory compliance obligations, and client and business compliance requirements.

The role involves planning and conducting internal audits against ISO 27001, ISO 9001, ISO 14001 and ISO 22301, alongside regulatory audits and file reviews, ensuring the firm meets its professional, legal, regulatory and contractual obligations.

Key Responsibilities

ISO Management System Auditing

  • Plan, conduct and report on internal audits against:
  • ISO 27001 - Information Security Management
  • ISO 9001 - Quality Management
  • ISO 14001 - Environmental Management
  • ISO 22301 - Business Continuity Management
  • Assess the effectiveness of policies, procedures, controls and governance arrangements
  • Identify non conformities, risks, trends and improvement opportunities
  • Agree and monitor corrective and preventive actions
  • Support the ongoing integration and continual improvement of the firm’s management systems

External Certification & Surveillance Audits

  • Act as a key liaison with certification bodies and external auditors
  • Prepare audit documentation and evidence in advance of surveillance and recertification audits
  • Support management responses to audit findings and ensure timely closure

Regulatory & Compliance Audits

  • Carry out audits to assess compliance with:
  • Legal and regulatory obligations applicable to an international law firm
  • Professional standards and codes of conduct
  • Internal risk, compliance and governance frameworks
  • Contribute to regulatory inspections or reviews, where required
  • Provide assurance to senior management on the effectiveness of regulatory controls

File Auditing & Client Compliance

  • Conduct file audits across legal practice areas to assess compliance with:
  • Client terms and engagement requirements
  • Business policies and procedures
  • Regulatory and professional obligations
  • Identify systemic issues, control weaknesses and training needs
  • Produce clear, practical audit reports with actionable recommendations

Risk & Compliance Support

  • Work closely with the Risk & Compliance team on:
  • Risk assessments and control reviews
  • Policy development and implementation
  • Incident, breach and near miss reviews
  • Contribute to management review meetings and risk reporting
  • Support internal awareness and compliance training initiatives

Important Criteria

What are we looking for:

  • Proven experience as an internal auditor within a law firm, professional services or regulated environment
  • Experience conducting regulatory audits and file reviews
  • Strong report writing, analytical and interpersonal skills
  • Ability to work independently and manage competing priorities
  • Confident engaging with partners, senior management and business services teams

It would be beneficial to have some of the following:

  • Demonstrable experience auditing ISO 27001 and ISO 9001
  • Working knowledge of ISO 14001 and ISO 22301
  • Experience of integrated management systems
  • Knowledge of information security, data protection or operational resilience
  • Exposure to regulator interactions or inspections

If you don't meet all of the criteria above but feel that you could add real value to Hill Dickinson, we encourage you to apply and if successful, we can help you develop along the way.

Equality, Diversity and Inclusion

Hill Dickinson is committed to providing fairness and equal opportunity for all regardless of age, gender, gender identity, ethnic origin, disability, sexual orientation, marital or transgender status, nationality, religion or belief.

We understand that our power as a firm comes from empowering our people and that it is only by encouraging and enabling individuals to be themselves at work that we can truly benefit from their rich and varied strengths.

Hill Dickinson is an equal opportunities employer. All applications received by the firm will be considered based on their merit alone and we welcome applications from all suitably qualified individuals regardless of background and from all routes to qualification, with both the SRA and CILEx.

Disability Support

We are a Disability Confident employer, which means if there is anything that we can do to make your visit easier, so you are able to perform at your best, please let us know. You can contact the HR team at [email protected] should you require any adjustments to the application or interview process.

At Hill Dickinson, we welcome applications from individuals that are looking to return to the law as well as all routes to qualification, with both the SRA and CILEx.

All successful candidates will be subject to our standard pre-employment screening, including a basic criminal record check via Disclosure and Barring Service. Any offer of employment made is conditional upon completion of all checks.

Due to the high response levels we receive for some vacancies, we may expire any of them prior to the advertised closing date and advise you to submit your application as soon as possible.