Job Responsibilities;

• Participate in the development of IT Audit Programs within assigned areas, covering IT security, applications, and IT processes (e.g., network infrastructure, operating systems, data centers, SAP, and retail systems). Assess whether security risks and vulnerabilities are properly identified and mitigated. Coordinate audit scope and effectiveness with business units and external IT/security specialists.

• Contribute to the design of detailed audit testing procedures in alignment with the approved Audit Program, including the definition of audit scope, sample sizes, audit activities, working papers, and audit timelines.

• Execute audit assignments as assigned by supervisors, performing detailed testing in accordance with established audit methodologies and procedures.

• Review and consolidate audit results, working papers, and supporting evidence prepared by team members in order to analyze audit findings and determine whether further audit procedures or expanded testing are required.

• Evaluate and analyze audit findings, including root causes and risks, and provide recommendations for improvement. Prepare and consolidate audit reports for submission to management for review and consideration.
  

Job Specification;

• Bachelor’s degree or higher in Management Information Systems, Information Technology, Computer Science, or other related fields.

• At least 5 years of experience in internal auditing, with a focus on IT audit, IT security controls, or IT-related assurance functions, or other relevant experience (e.g., information security, IT risk and control, IT governance, or IT quality assurance).

• Strong leadership skills, with the ability to work effectively as part of a team and adapt to changing work environments.

• Strong analytical and systematic thinking skills.

• Proactive and innovative mindset, with the ability to initiate improvements.

• Effective communication and coordination skills.

• Proficiency in computer applications, including MS Office and SAP ERP.

• Professional certifications such as CISA, CISSP, CISM, or other relevant technical certifications will be considered an advantage.
  

Working location: The Mall Ramkhamhaeng (Headquarter)