The primary objective of this role is to act as a key team member to ensure that the internal audit function effectively contributes to CARSOME Group's overall governance, risk management, and operational efficiency, particularly in IT-related areas, while adhering to professional internal auditing standards.
Responsibilities
Assist in the development and execution of a comprehensive audit plan based on risk assessment, management's goals and objectives, and the requirements by the Board Audit Committee.
Identify potential IT audit related areas, assist with assessing the degree of inherent risk, and estimate the time and skills required to complete audit projects.
Evaluate the adequacy of design and effectiveness of IT controls and other areas of audits throughout the business cycle or during pre-project implementation.
Carry out risk assessments over technology infrastructure and components.
Develop audit programmes that address the objectives of the scope of work, and complete audit work papers and testing results that adequately support audit findings and work performed, in accordance with internal audit standards.
Undertake fieldwork and report supervisory role for junior team members.
Prepare draft deliverables including audit reports and presentation materials for Management or the Board Audit Committee's purview.
Perform data analytics to identify anomalies and trends, and summarise results of the exercise in a concise yet detailed manner.
Develop practical, innovative or value-added recommendations to address control weaknesses or improve operational efficiency and obtain management buy-in.
Perform investigations and prepare investigation reports for whistleblowing complaints or any other ad-hoc investigations under the purview of the Group Internal Audit Department.
Perform periodic follow-up on previous recommendations and draft the report for the Group Manager's review.
Ensure that key risks are effectively and timely communicated either from the audit or through continuous monitoring of emerging IT risks.
Support the Group Managers and/or the Group Head of Internal Audit in performing any ad-hoc tasks including assistance with the annual review of the audit universe and the preparation/revision of the Internal Audit Plan.
Requirements
A recognised degree in Information Technology, Computer Science, Business, or related disciplines.
Professional qualifications such as CISA, CRISC, CISSP, CIA, or other IT-related certifications would be an added advantage.
At least four (4) to six (6) years of IT-related internal audit experience (Big 4 preferred).
Experience in business ERP applications, databases, operating systems, and analytical tools.
Understanding of cloud networking, security, and cloud infrastructure technology is advantageous.
Willing to perform other operational-related audits.
Excellent written English and interpersonal skills.
Strong analytical mindset, attention to detail, and the ability to draw meaningful insights from data.
Approximately 30% of travelling will be required.
Seniority levelMid-Senior level
Employment typeFull-time
Job functionInformation Technology
IndustriesTechnology, Information and Internet#J-18808-Ljbffr