Vice President, Asia IT Internal Audit - Singapore - SOMPO HOLDINGS (ASIA) PTE. LTD.

SOMPO HOLDINGS (ASIA) PTE. LTD.

Verified Company

Singapore

2 weeks ago

Posted by:

Wei Jie

beBee Recruiter

Description

Responsibilities include:

Performing a variety of IT Internal Audits, completing audit fieldwork testing to assess the design and operating effectiveness of IT processes and related controls, within agreed timelines (with a strong delivery focus).
Overseeing and guiding the delivery IT Audits across Sompo Asia entities, working in collaboration with local Internal Audit teams within these entities.
Delivery of IT Internal Audit files in line with Internal Audit methodology, populating the work performed within Team Mate (an Internal Audit system). Drafting clear IT Audit Reports, containing IT Audit Issues with SMART remediation plans. Proactive tracking of the remediation of open IT Audit Issues across Sompo Asia entities.
Collaboration with IT Management stakeholders (CIO's and CISOs) to perform ongoing continuous monitoring of IT controls and update Sompo Asia IT Risk Assessments. Feeding this IT control analysis into the annual IT Audit Plans for Sompo Asia entities.
Collaboration with IT External Audit teams across Sompo Asia entities.
Promoting the alignment of Sompo Asia IT controls with Asia IT Regulatory requirements, IT Industry Frameworks, and Standards. Promotion of a positive work environment by demonstrating key attributes such as a strong work ethic, office presence, accountability, agility, and selfimprovement.

Desired Skills & Experience

10+ years relevant IT Audit experience. Big 4 experience a plus.
Working knowledge, skills, and experience in the principles and practices of technology, IT industry trends, IT Governance controls, IT General Controls (including IT Service Management), Cybersecurity controls (including network security), and IT infrastructure controls (including Cloud).
Strong ability to build longterm collaborative working relationships with senior IT management.
Strong written and verbal English communication skills, and presentation skills.
Proactive, delivery focus, taking accountability for the delivery of Sompo Asia IT audit work in accordance with the IT audit plan.
Experience in standard Institute of Internal Auditors (IIA) audit methodology (audit planning, fieldwork, and reporting), with an attention to quality to meet methodology requirements with mínimal review.
Certified Information Systems Auditor Certification (CISA) required.
Certified Information Systems Security Professional Certification (CISSP) and/or Certified Internal Auditor Certification (CIA) preferred.
Working knowledge of IT industry frameworks (including COBIT, NIST, ITIL) and IT Industry standards (such as ISO 27001, the Information Security Standard, and ISO 27017, the Cloud Security Standard, etc.).
An understanding of Asia country IT regulations such as the:
Monetary Authority of Singapore (MAS), Technology Risk Management (TRM) IT control requirements.
Bank Negara Malaysia (BNM), Risk Management in Technology (RMiT) policy requirements.
Indonesian Financial Services Authority (Otoritas Jasa Keuangan
OJK) IT control requirements.
Thai Office of Insurance Commission (OIC) IT control requirements.
Chinese National Administration of Financial Regulations, (NAFR) and Ministry of Public Security (MPS) IT control requirements.
Indian Insurance Regulatory and Development Authorities (IRDAI) IT control requirements.
Willingness to travel to Sompo Asia office locations to assist with onsite audit fieldwork (approx. 20% of time).
Experience with Team Mate (or similar audit systems) a plus.