Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. Here, you don’t just stay at the forefront of the industry – you can make a difference too.
JOB SUMMARY
The role is responsible for monitoring, coordinating, and reporting audits (Internal and external) conducted for the Bank’s Technology Services department and reporting the audit findings to relevant management. All Technology Services audit findings are monitored closely until closure. The incumbent is also needs to manage and act as the key point of contact for Regulatory Audits, e.g., Internal and External, by reviewing the adequacy of management response, progress, and timely closure of audit findings for the Group Technology. Communicating findings from audits to technology management teams and recommending changes based on audit results and identify potential gaps in business processes and the associated data.
JOB RESPONSIBILITIES
Technology Audit
Coordinate, monitor, track and report for audits (Internal & External) conducted for the Bank’s Technology Services department.
Sanity check for each document before sharing it with the auditors to ensure the correct information is conveyed as per the RFI by the auditors
Understand the process and procedure to ensure the identified gaps are being addressed.
Follow through on the progress of remediation audit findings within the target timeline
Provide weekly/ monthly updates to the Management/ IT Ops meeting on audit matters
Create and maintain an audit tracking for all the potential gaps identified by auditors and ensure that all identified gaps are accounted for
Update/ escalate to the management directly if there is any delay in obtaining the required RFI.
Coordinator for GRC SharePoint and Group Technology (Audit Section) SharePoint.
Perform annual/ quarterly audit review (via dumpsec).
Assisting business with any audit matters related to Group Technology
Ensure all audit findings are well-managed and completed timely.
Identify legal, regulatory and contractual requirements and organizational policies and standards related to information systems to determine their potential impact on the business objectives.
Identify potential threats and vulnerabilities for business processes, associated data, and supporting capabilities to assist in evaluating enterprise risk.
Monitor risk and communicate information to the relevant stakeholders to ensure the continued effectiveness of the enterprise’s risk management strategy.
Identify and report IT internal controls based on the compliance matrix.
Coordinate the development and ongoing maintenance of other IT policies and procedures.
Ensure that all IT policies and procedures are compliant with regulatory requirements.
Manage and act as a key contact point for all Internal/ external audits and regulatory audits. Facilitate document submission for audits and tracking of closure of audit findings.
Any special assignment, including ad hoc assignments, as and when directed by the Head of Governance Risk and Compliance.
JOB REQUIREMENTS
Bachelor’s Degree in Computer science, IT, MIS or related fields.
Having relevant professional qualifications (e.g., CISA).
More than 3 years of relevant experience in IT Audit.
Knowledge of basic audit standards and processes, systems design, system operations, end user computing technologies, and audit software