Highlight
- 3 years experience in IT Audit/ IT Risk
- Hybrid working / Good benefits
- CISSP, CISM, CISA, ISO27001
We are looking for IT Internal Audit Specialist to working with our client, very well-known subsidiary financial company in Thailand. You will conduct an audit of the information system, make suggestions, and monitor action plans.
Location: Banthat Thong, Bangkok
Working days: Mon - Fri (Hybrid Working)
Responsibility
- Conduct information system audits, compile audit reports, provide impactful recommendations, and oversee/follow up on the implementation of action plans.
- Identify critical technology and data risks at the local level for each entity, taking into account relevant strategies and the business environment.
- Assist in creating/supporting the development of the annual audit plan based on the identified key risks.
- Strategize, lead, and carry out audits, assessing the effectiveness of risk management and control measures for technology and cyber-related risks as per the established schedule and quality standards
- Offer consulting services for new product/system development and process enhancement while maintaining independence.
- Strategize and allocate resources efficiently to achieve productivity and quality objectives, and adapt IT audit plans in response to evolving IT controls, risk profiles, and business priorities.
- Lead the team in tracking outstanding audit issues and ensuring timely completion of agreed-upon remedial actions by management.
- Keep abreast of relevant regulatory requirements, guidelines, and best practices.
- Engage in discussions and share perspectives on risks and concerns, and report audit findings to the Parent company.
Qualifications
- A minimum of 3 years of experience in technology audit, with demonstrated people management skills.
- Bachelor's or Master's degree in IT, Computer Science, MIS, or related fields.
- At least 1 relevant professional certification : CISSP, CISM, CISA, ISO 27001 Lead Auditor, etc.
- Proven experience auditing IT aspects, including governance, risk management, systems, and cybersecurity, preferably acquired within financial services, payment institutions, or regulatory environments.
- Proficiency in applying relevant IT standards and best practices such as COBIT, ITIL, ISO27001, PCI/DSS, and cybersecurity frameworks to audit activities.
- Understanding or knowledge in Digital Blockchain & Digital Asset would be advantageous.