Job Description The Group Internal Auditor will deliver independent, objective assurance and advisory activity across the Group, supporting the effectiveness of risk management, internal control and governance arrangements. The role supports internal audit assurance activity, internal controls testing (including UK Corporate Governance Code Provision 29), and advisory work across financial, operational, digital and third‑party risks. Internal Audit Delivery • Deliver risk‑based internal audit reviews in line with the approved Internal Audit Plan and Global Internal Audit Standards. • Lead audits end‑to‑end including scoping, walkthroughs, control testing and reporting. • Apply appropriate audit techniques including controls testing, substantive testing and data analysis. • Produce clear, concise audit reports highlighting control weaknesses, root causes, risk impact and practical recommendations. Internal Controls & Provision 29 • Support the identification, documentation and assessment of material controls across the Group. • Perform controls testing to support the Board’s internal controls declaration under the UK Corporate Governance Code. • Maintain robust audit evidence and follow up agreed management actions. Advisory & Value Add • Provide independent advisory input on control design and risk mitigation for new initiatives, system changes and emerging risks. • Support continuous improvement through commercially‑focused challenge and insight. Risk, Compliance & Governance • Support assurance over principal and operational risks including cyber, data protection, financial controls and supplier risk. • Work constructively with first- and second-line teams while maintaining independence. Reporting & Stakeholder Engagement • Build effective relationships with Group functions and senior stakeholders. • Communicate audit issues clearly to non‑technical audiences and contribute to Audit Committee reporting where required.