Associate Director, SOX Auditor & Cybersecurity Risk (SOX ITGC)

Associate Director, SOX Auditor & Cybersecurity Risk (SOX ITGC)

ShopBack enables shoppers to discover the best prices and offers, pay easily, and get rewards for shopping. Our journey began in 2014 when co-founders Henry and Joel sparked the concept of earning Cashback while shopping online. The ShopBack Group has now grown to become the leading shopping, rewards, and payments platform in Asia-Pacific, with 45 million shoppers across 12 markets and more than half a million transactions powered for 20,000 partners daily.

To conduct IT audit, SOX ITGC testing, and cybersecurity risk management & assessment to give reassurance to management:

• Where the system of internal control is found to be adequate for achieving management objectives efficiently.
• Where information system assets are adequately safeguarded and properly protected.
• Where the management information available is sound and adequate for proper control.

Your Adventure Ahead

• IT Audit & SOX ITGC
• Collaborate with the Deputy Director of Internal Audit & SOX to:
• Perform SOX ITGC scoping by considering complex microservices architecture within the Company and develop SOX ITGC Risk Control Matrix (as well as subsequent annual update).
• Establish and develop IT Audit Programme and SOX ITGC Test Plan to conduct annual SOX ITGC testing (TOD & TOE) and IT audit assignment(s) according to approved Internal Audit Plan.
• Draft audit report and SOX ITGC deficiency with sufficient quality for review.
• Cybersecurity Risk Management & Assessment
• Collaborate with the Deputy Director of Risk & Compliance to:
• Develop group level IT risk profile in IT Risk Register by conducting IT and Cybersecurity risk assessment to identify, assess and monitor information and/or cybersecurity risks.
• Work closely with the cybersecurity/technology team to devise feasible solution(s) and develop protocols to mitigate potential risks.
• Others
• Keep abreast of the latest information and cybersecurity trends, requirements, and threats relating to FinTech, Artificial Intelligence, Big Data, Cloud Computing, etc.
• Respect the confidentiality of all information obtained in the course of audit work.
• Perform any other duties as instructed by the Head of Internal Audit & Corporate Governance.

Essentials to Succeed

• 10 years of solid IT audit & cybersecurity experience from big 4/reputable MNC.
• Thorough knowledge of all systems and technology used by the company, with up-to-date knowledge of relevant innovations.
• Ability to communicate effectively and articulate opinions independently.
• Ability to work independently, self-motivated while being a great team player.
• Professionally certified (e.g., CISA, CISSP, etc.) will be an added advantage.

ShopBackers' DNA:

• Grit: We tackle all challenges head-on, working together to solve problems and achieve success.
• Hunger: We value hard work and relentless drive.
• Speed: We move fast and have a bias for action, all to deliver maximum impact.
• Impact: We focus on results, always aiming for the best possible outcomes and timelines.
• Growth: We embrace a growth mindset, constantly striving to learn, improve, and excel in our roles.

What's in it for ShopBackers:

• Career progression paths and opportunities to take on greater challenges.
• Competitive compensation based on performance.
• Candid, open, and collaborative culture where feedback is valued.
• Work-From-Anywhere benefit to enable personal and professional thriving.