Promoting Risk Culture and Policy Development: Develop a risk-aware culture by conducting workshops, training, and ongoing communication. Develop, implement, and refine risk management policies and strategies for IT and operational risks, ensuring they align with business goals and evolving best practices.
Risk Assessment and Integration: Conduct risk assessments across IT and operational domains, identifying, evaluating, and mitigating risks that could impact business operations or technology infrastructure. Develop risk control matrix (RCM) that maps out the risks of organization and the controls used to address those risks.
Risk Monitoring and Reporting: Set up risk reporting mechanisms to ensure regular and clear communication of risks to all stakeholders. Monitor risk exposure and key risk indicator (KRI) continuously and report findings to senior management, providing insights and recommendations for risk mitigation strategies.
Audit Planning and Execution: Develop and execute IT audit plans aligned with organizational risk management strategies and regulatory requirements. Conduct audits of IT systems, applications, and infrastructure to ensure compliance with internal policies and external regulations
Audit Reporting and Follow-up: Prepare detailed audit reports that summarize findings, highlight risks, and provide actionable recommendations for remediation. Track the implementation of audit recommendations and perform follow-up audits to ensure corrective actions have been effectively implemented.
Regulatory Compliance: Ensure continuous compliance with both local and international regulatory standards specific to e-payment systems and broader financial regulations. Address discrepancies and implement corrective actions to prevent future occurrences.
Collaboration and Advisory: Work closely with IT and business units to provide advisory services on risk and control issues. Support the development and implementation of robust IT governance frameworks.
What you’ll need:
Bachelor’s or master’s degree in Risk Management, Information Technology, Business Administration, or a related field.
CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), CIA (Certified Internal Auditor), or similar certifications are highly desirable.
Minimum of 5-7 years experience in audit and risk management within the financial services, e-payment sector, or technology services
Deep understanding of risk management principles, methodologies, and frameworks
Deep understanding of audit processes, control evaluation techniques, and regulatory compliance requirements.
Strong analytical, problem-solving, and project management skills.
Excellent communication and interpersonal skills, capable of leading teams and engaging senior stakeholders.
Ability to translate technical issues into business risks and impacts for effective communication with non-technical stakeholders.
Skills
IT Audit
Regulatory Compliance
Security Information and Event Management (SIEM)
Technology Services
IT Governance
Functions
Information Technology (IT)
Job Overview
Job Type:
Hybrid
Company
LINE MAN Wongnai
165 active jobs
Bangkok
Industry:
Consumer Goods, Retail & E-Commerce
Ready to Apply?
Submit your application now and take the next step in your career journey.
