Create the future with Affin! You too can make a difference.
We continuously innovate to transform our financial services landscape - making banking better and easier. Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. You too can make a difference.
JOB PURPOSE
Provide independent, objective assurance and consultative activities in accordance with the Audit Charter based on “The Standards for the Professional Practice Framework” as prescribed by the Institute of Internal Auditors, Regulators’ requirements and any other relevant standards.
JOB RESPONSIBILITIES
Assist the Group Chief Internal Auditor and Head, IT Audit in leading and providing guidance, supervision and assistance to audit team members in performing the audit assignments.
Assist the Group Chief Internal Auditor and Head, IT Audit in ensuring that audit assignments are carried out in accordance to the procedures/standards of the Bank and generally accepted Information Security audit standards and guidelines.
Perform audit reviews in accordance with the established audit objectives, scope, timeline and approach.
Review the adequacy of IT functions, processes, infrastructures and application systems to enhance the overall governance, risk management and controls across the entities under the Group.
Highlight relevant audit findings, risk implications, root causes and appropriate recommendations to address the control and performance gaps and document audit workings.
Write audit findings and reports to communicate the audit result and assessment to the Senior Management and the Group Board of Audit Committee (GBAC).
Attend to ad-hoc matters.
JOB REQUIREMENTS
Bachelor's Degree in Computer Science, Information Technology or equivalent qualification.
Possess IT professional certification/qualification in IT Security/Audit, e.g. CISA and CIA.
At least 8 years working experience in IT auditing or Security Administration.
Knowledge in System Development Life Cycle Methodology, Project Management Principles, COBIT Framework, Client/Server, LAN/WAN, Firewalls, Windows OS, Unix, AS/400, Oracle, Sybase, MS-SQL and ACL.
Knowledge in banking applications, IT risk and its associated controls and security.
Pro-active and result-oriented with good interpersonal and communication skills.
Strong analytical skills and quality conscious.
Good communication skills in English and Bahasa Malaysia – Both written and oral.
Able to work independently with minimum supervision.