AVP - Technology, Cyber, Data and Digital Audit

Responsibilities

• Provide both IT Audit assurance for IT/user (e.g., IT General Control & Application Controls Review, IT Compliance Review, IT Risk, IT Governance & Security Audit, IT Audit follow regulatory, Data Analytic for Auditing, etc.)
• Coach the team, and demonstrate leadership roles and certain skillsets to support our end-to-end processes of each assignment
• Facilitate use of Audit or other technology-based tools/techniques to support auditing
• Ensuring an efficient and effective IT Internal Control Framework for the company
• Assisting in preparing “IT risk-based internal audit plans including audit scope for the company
• Perform and control the full audit cycle including risk management and control management over operations-effectiveness, financial reliability and compliance with all applicable directives and regulations
• Performing on-field audit operation as planned and preparing internal audit report including findings, implication and concrete recommendation in a timely manner
• Follow up the management’s action implementation for previous audit issue
• Prepare audit work program and audit work papers, as well as document of all audit work papers properly
• Advise and provide consultancy about planning, improvement to related parties
• Undertaking special projects in order to identify opportunities for increasing excellence, standardization and automation, with an eventual view of strengthening internal controls while reducing inefficiency, inaccuracy and overall workload
• Continually improve the professional knowledge and skills as needed
• Can perform the admin task or prepare admin work to support team/as assigned

Qualifications

• Bachelor’s or Master’s Degree or higher in IT, Computer Engineering, Computer Science, Accountancy, MIS, AIS or related field
• More than 7-8 working experience in IT Auditing, or IT risk advisory, IT consultant, auditing, accounting, internal controls, IT risk assessment, data governance, corporate governance or compliance
• CISA, CRISC, CISSP. ISO27001, CIA or another certificate related with IA/IT audit would be advantage
• Experience in risk-based audit, IT audit, internal financial control processes, IT/data governance frameworks, IT regulatory requirements, enterprise-wide risk management
• Experience in basis of IT audit/IT system review/basis or advance data analytic would be advantage
• Knowledge of Audit concept, IT regulatory requirements (e.g., SEC, PDPA, Cyber law), and IT-related controls & standards (e.g., ISO27001, COBIT, ITIL, NIST)
• Experience in using Data Analytic & Visualization tools would be advantage
• Good analytical skills, pro-activeness, hardworking, flexible, communication and dynamic
• Advanced computer skills on MS Office, accounting software and databases
• Good command of English and presentation
• Ability to interact with executive levels of firm management
• Ability to travel in oversea and upcountry frequently
• Ability to work under pressure, short lead-time and less supervision
• Experience in power plant business would be advantage
• Open mind to learn every new experience and work area
• Good mindset and open mind to work as a team