IT Internal Audit

1. Audit review & Follow up (70%)
• Coordinate & conduct independently IT risk-based review to provide independent and objective assurances on business operation & IT environment (IT systems, applications, and infrastructure).
• Apply appropriate review approach to take account of IT risks & controls:
+ Evaluate the effectiveness and efficiency of IT general controls and application controls;
+ Identify risk, vulnerability and weaknesses of Company's control framework;
+ Perform testing according to the Audit Program specified;
+ Assess the compliance with SBV's regulation, Group and internal policies.
• Provide advice, recommendation to improve any gap or weakness of IT general controls and application controls framework identified during the review or consulting activity/control designed to add value organization's operations.
• Continuously monitor and follow-up mediation plan to ensure all recommendation, corrective action properly & timely implemented.
2. New project/System Advisory (10%)
• Involve in the implementation of new processes and systems of the Company to provide an independent view to management of the quality and effectiveness of the projects upon assignment.
3. Reporting & Others (20%)
• Conduct adhoc review, risk assessment, data analysis, annual audit plan, and other tasks as Head of Internal Audit assigned.
• Contribute to development of the team through exchanging knowledge & experience with team members.
• Be responsible for reports related to IT Audit. Ensure the report timely be provided to SBV/Group or relevant divisions/departments (if any).