เงื่อนไขการค้นหา

ทักษะ:

Data Analysis, Risk Management, Compliance

ประเภทงาน:

งานประจำ

• Perform audit work in accordance with internal audit policy and professional standards, and complete assignments in an efficient manner.
• Perform the planning, fieldwork, and reporting phases of the audit process by providing input during the audit process for determining scope, objectives, testing procedures, and audit recommendations.
• Use data analysis tools (queries/program/visualize) to automate audit testing and develop techniques for continuous auditing.
• Assessing and communicating information technology control elements to mitigate IT risks regarding the confidentiality, integrity and availability of business information.
• Analyze the results of audit testing/data analysis performed and communicate best practices, identify areas for improvement and provide effective recommendations and audit conclusions.
• Provide consultation, advice, and related services to add value and improve SCB Group's risk management, control, and compliance processes.
• Knowledge, Skills, and Competency Bachelor's or higher in Accounting, Finance, MIS, Data Science, Computer Science, Statistics, similar field, or equivalent practical experience.
• Good concept of internal control; able to recognize significant control issues and exposures in emerging situations.
• Strong understanding and experience of IT internal controls and risk-based auditing (COBIT).
• Good knowledge of IT risk management, security and control and a clear understanding of the relationship between technology and business risk.
• Experience of auditing web applications and services, network, operating system, and database security.
• Experience of using cybersecurity and industry frameworks and standards such as NIST CSF, ISO 27001/2, PCI DSS, COBIT, and ITIL.
• Experience with SQL or similar data querying language.
• Experience programming in Python code strongly preferred.
• Experience in visualization tools such as Power BI, Tableau, Qlik; Power BI preferred.
• Self-motivated with the ability to manage multi-task.
• Ability to work independently under limited supervision and complete assignments timely.
• Strong communication skills through data visualizations, written and oral presentations.
• Ability to work effectively in a team environment and across all organizational levels, where flexibility, collaboration, and adaptability are important.
• CIA, CPIAT, CISA preferred.
• We're committed to bringing passion and customer focus to the business. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.

ทักษะ:

Oracle, SAP, Compliance, English

ประเภทงาน:

งานประจำ

• Handle IT Internal audit work assigned by the audit managers to achieve the AAP.
• Carry out special / investigation audit assigned by the audit manager.
• Identify and allocate tasks, co-ordinate, monitor and consolidate the work of the audit team.
• Ensure conformity with Internal Audit Manual in all phases of the audit process.
• Document, evaluate and test systems and controls to assess the adequacy and effectiveness of internal controls, compliance with policies and procedures, reliability, and integrity of information, safeguarding of assets and etc.
• Attend entry conference with auditee s management to discuss on the audit process and audit work.
• Develop and discuss findings, recommendations, and timelines for corrective action with responsible personnel of auditee.
• Attend exit meeting with auditee s management to discuss on the audit findings identified during audit.
• Prepare and finalize the draft audit report after audit work and submit to audit manager for review.
• Discuss with GCAE and Audit Managers for major risks or audit findings identified during audit.
• Track the follow up process to ensure timely dispatch of audit reports to auditee and obtaining reply from auditee on the implementation status of recommendations.
• Prepare and preserve the various documentations for audit work such as working papers, audit program, supporting evidence, permanent file, current file, circulars, minutes, office memo and etc. for audit manager s review.
• Bachelor s degree or higher in IT, or related fields.
• More than 3 years experience in external or internal "IT audit" and related.
• Preferably proficient in Oracle or any other related Accounting System. Working knowledge in Auditor; highly proficient with ERP configurations e.g. SAP and Oracle. Ability to apply best practices of one ERP system in other ERP systems.
• Able to work to upcountry or overseas.
• Certifications such as CISA or CIA or CPA or CPIAT will be advantage.
• Good command of English and computer software (MS word, Excel, Power point).
• Good analytical, problem-solving and consulting skill.
• Ability to work independently with high responsibility.
• Knowledge of IT auditing policies, standards, and procedures, and financial recordkeeping procedures, laws, regulations, and standards.
• Understand complex operations from a broad perspective.
• Ability to work effectively with any others, to supervise and train employees, to include organizing, prioritizing, and scheduling work assignments.
• Working independently without closely supervisor.
• Ability to provide technical guidance, training, and coaching to end users.
• Ability to persuade and influence others, to motivate others and promote teamwork and mentor any others, and to provide effective feedback.
• CP AXTRA | Lotus's
• CP AXTRA Public Company Limited.
• Nawamin Office: Buengkum, Bangkok 10230, Thailand.
• By applying for this position, you consent to the collection, use and disclosure of your personal data to us, our recruitment firms and all relevant third parties for the purpose of processing your application for this job position (or any other suitable positions within Lotus's and its subsidiaries, if any). You understand and acknowledge that your personal data will be processed in accordance with the law and our policy. .

ประเภทงาน:

งานประจำ

• Assist and or Lead the full audit cycle of business audits and communicate findings and areas for improvement to the ExCom/ Ops Com and the board audit committee.
• Be an agent for change by delivering quality audit reports with practical, effective and actionable recommendations, agreed with management, and aligned to the company s strategy, including digital transformation, CX and innovation.
• Conduct follow up reviews to ensure effective remediation of audit findings and positive improvement and impact to the control environment.
• Assist the development of the three-year audit plan and the annual plan by performing risk assessments with 2nd line, ExCom/ Ops Com, and other key stakeholders.
• Prepare papers for monthly ExCom/ Ops Com, and monthly Group reporting.
• Promote innovative and technology driven auditing techniques through the use of data analytics and other automated auditing tools.

ทักษะ:

ISO 27001, Compliance, Assurance, English

ประเภทงาน:

งานประจำ

• Develop and support internal audit strategies within the cyber security domain, which involves protecting computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.
• Implement work standards to achieve desired outcomes and report findings to top management as a Cyber Security Auditor.
• Identify potential cyber security risks and convince organizational stakeholders to adopt comprehensive actionable recommendations.
• Act as a liaison with internal auditors, external auditors, Bank of Thailand auditors, Electronic Transactions Development Agency auditors, and other regulatory bodies (e.g., ISO 27001, PCI DSS, etc.) to ensure documentation and information compliance.
• Provide assurance and advisory services to ensure that IT Management plans, organizes, and directs appropriate IT governance, risk management, and control processes.
• Liaise with IT risk owners to develop risk-based assessments and establish risk response programs and reporting processes according to the Risk Management Policy and Framework.
• Bachelor's or master s degree in Computer Engineering, Computer Science, Information Technology, or related fields.
• Experience in relevant local and international security standards and best practices such as ISO 27001, NIST, COBIT, COSO, PCI DSS, and ITIL.
• Experience in IT Governance, Risk Management, and Control Processes (IT GRC), Project Management, Lead Auditor/Lead Implementer, or similar roles is preferred.
• Professional certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), and CRISC (Certified in Risk and Information Systems Control) are advantageous.
• Technical expertise in cyber security auditing.
• Proficiency in English.
• At least 3 years of experience in information security management, information risk management, IT audit management, ICT security, cloud security, or related fields.

ประสบการณ์:

2 ปีขึ้นไป

ทักษะ:

Financial Reporting, Compliance, Risk Management

ประเภทงาน:

งานประจำ

• Perform an independent audit engagement to evaluate the core business activities and operation systems as per approved annual audit plan. the evaluation aims at fact finding, impact of those fact findings, recommending actions to improve effectiveness and efficiency of all operations, ensuring the reliability of financial reporting, safeguarding of assets, compliance with laws and regulations.
• Provide consulting service supporting the risk management, good internal control and governance process.
• EDUCATION.
• Bachelor degree or higher in Accounting, Engineering, Computer Science/IT or related fields.
• EXPERIENCE.
• 3 - 5 years experience in Accounting, Engineering, Computer Science/IT or related fields.
• Working experience in auditing or IT would be an advantage.
• Professional certifications such as CIA, CISA, CPIAT would be an advantage.
• Able to leverage data analytics tools to make the data-driven decision would be an advantage.
• Have a strong communication, good planning, good organizing and good leadership.