IT Internal Control
- SOX
- IT Risk & Security
**About The Company**: Our client one of the biggest Unicorn companies with overseas presence are looking for IT Internal Control Manager
**Key Responsibilities**:
- To enhance internal controls across IT systems, platforms, and processes
- Positioned as a trusted advisor to the business, the person will offer insights and best practice recommendations on optimizing IT controls, emphasizing automation and standardization.
- Collaborating with diverse departments, this role ensures that controls such as ITGC, ITAC, and ITELC not only align with business objectives but also fortify data integrity and cybersecurity, while upholding SOX IT-related compliance.
- Lead the assessment of IT Control Environment and framework
- Evaluate and update IT controls, cybersecurity protocols, and compliance processes in line with SOX ICOFR guidelines.
- Analyse IT processes & controls to identify key IT risks, lapses, or potential enhancements across business operations.
- Advocate and drive the transition towards automated controls to boost efficiency.
- Lead coordination in remediating IT audit issues in collaboration with operations and technology divisions.
- Analyze and design IT SOX controls supporting business processes and other compliance topics to identify risk and control weaknesses.
- Manage SOX-specific IT activities, ensuring up-to-date documentation like system flowcharts and risk control matrices.
- Develop and provide IT control training to bridge organizational knowledge gaps, keeping teams abreast of compliance benchmarks.
- Work to mitigate and remediate identified deficiencies with the business in a timely manner.
- Promote the use of SOX control & risk management tool to PICs and assist PICs in managing control development effectively on the tool. ?
**Requirements**:
- Bachelor's degree in computing related majors with IT audit qualifications preferred.
- A minimum of 8 years in IT audit and control roles, encompassing IT control management, cybersecurity, IT audit, and operational management.
- Prior experience in Big 4 IT auditing is required.
- Over 6 years of expertise in SOX-oriented IT audit & controls.
- Certified Internal Audit (CIA), Certified Information System Auditor (CISA), or similar certifications highly desirable. Thorough understanding of internal control concepts, especially SOX and COSO frameworks.
- Comprehensive understanding of ITGC & ITELC best practices, cybersecurity protocols, and associated regulations.
- Capable of managing and prioritizing multiple IT projects.
- Excellent communication abilities for effective interactions with internal and external parties. ?