Senior Internal IT Auditor

Job Title/Position: Senior Internal Audit - IT

Reporting / Hiring Manager: Senior Director Internal Audit

Duration: Permanent with client

Location: Petaling Jaya, Selangor, Malaysia

Work Arrangement: Hybrid (2-3 days in the office)

Working Hours: Malaysia Hours

Overall years of experience: Any

Relevant years of experience: 4 years in IT Audit

Domain: Any

Skills:

• Possession of relevant certifications such as Certified Internal Auditor (CIA), Certified Public Accountant (CPA), Chartered Certified Accountant (ACCA) or Certified Information Systems Auditor (CISA).

Mandatory Skills:

• Experience working with a U.S. public company and understanding of PCAOB auditing standards, SOX compliance, and corporate governance practices.
• Power BI or similar. Familiarity with internal audit software, such as Workiva
• T risk frameworks (e.g., NIST, ISO 27001, COBIT).
• Azure Cloud and Azure Active Directory with experience auditing Microsoft Dynamics 365 F&O.

About Client:

With over 40 years of innovation, end-to-end platform is uniquely equipped to orchestrate, protect, and enrich data across its lifecycle, providing enhanced intelligence and actionable insights. Leading organizations in cloud services, entertainment, government, research, education, transportation, and enterprise IT trust to bring their data to life, because data makes life better, safer, and smarter and listed on Nasdaq (QMCO).

Job Summary:

The Senior Internal Audit IT will play a crucial role in supporting comprehensive audit programs, focusing on operational and compliance effectiveness, including adherence to the Sarbanes-Oxley Act (SOX), across the organization. This position involves actively participating in risk assessments, evaluating internal controls, and contributing strategic insights to improve processes and mitigate risks. With a solid understanding of audit principles, the Internal Audit IT Senior will assist in ensuring that audit practices are aligned with organizational goals and regulatory standards and will be involved in developing and executing audit plans, as well as in analyzing findings and providing recommendations.

We are seeking a highly motivated and experienced senior IT audit to join our dynamic team. In this role, you will play a critical role in assessing and enhancing IT controls and cybersecurity posture. You will execute IT audits, contribute to SOX compliance efforts, and provide valuable insights to management on key IT risks. Your efforts will be key in mitigating risks and ensuring ongoing compliance across the organization.

Job Responsibilities:

Responsibilities include, but are not limited to:

• SOX Compliance Support: Assist in overseeing SOX compliance by identifying risks and opportunities in financial reporting and IT processes. Support the development, implementation, and review of the testing plan for both IT and financial controls, including those related to Microsoft Dynamics 365 F&O and Azure Active Directory. Help assess control deficiencies and contribute to the management of tracking and reporting of status and results to both management and external auditors.
• IT-Focused Risk-Based Audit Execution: Perform risk-based audits with a focus on evaluating IT systems, infrastructure, and controls, particularly within Microsoft-based environments. Assess audit findings to uncover control deficiencies, security vulnerabilities, and operational inefficiencies, contributing to the development of practical and actionable recommendations for management. Draft audit reports for review by senior management and the Audit Committee of the Board.
• Cybersecurity Knowledge and Assessment: Evaluate organizational cybersecurity measures, including threat detection, incident response, and vulnerability management processes. Conduct audits aligned with cybersecurity frameworks such as NIST or ISO 27001, ensuring robust protection against emerging threats and compliance with security standards.
• Special Investigations and IT Project Support: Participate in special investigations and projects as directed by management, addressing known IT risks, internal control gaps, or reviews, such as identity and access management, cloud governance, or system implementation reviews.
• Risk Management Contribution: Offer insights and support in addressing IT-related organizational risks. Contribute to the development of solutions, focusing on integrating Enterprise Risk Management (ERM) principles with IT risk management strategies.
• Team Collaboration and Development: Work closely with audit staff on IT and integrated audits, reviews, and special projects. Assist in coaching and guiding team members for professional development, under the direction of audit leadership.
• Innovation and Process Improvement Initiatives: Contribute to enhancing audit efficiency by leveraging technology, suggesting innovative approaches, and improving processes through tools and data visualization.
• Relationship Building and Communication: Support the maintenance and strengthening of working relationships within the organization, particularly with IT teams. Provide clear, concise, and timely information, fostering a culture of collaboration and high-quality customer service.

Required Skills and/or Experience:

• This list represents a combination of desired attributes, and no candidate may embody every skill listed. However, we encourage applicants who meet many, but not necessarily all, of the criteria to apply as we value diverse experiences and perspectives and are committed to considering a wide range of qualifications to identify the candidate who will best fit our team.
• Audit and IT Experience: Minimum 4 years of experience in IT audit, with experience auditing Microsoft Dynamics 365 F&O a strong plus.
• U.S. Public Company Expertise: Experience working with a U.S. public company and understanding of PCAOB auditing standards, SOX compliance, and corporate governance practices.
• Technology and Data Analytics Skills: Proficiency in data analytics for audits, with experience in tools like Power BI or similar. Familiarity with internal audit software, such as Workiva.
• Risk Assessment and IT Frameworks: Strong understanding of IT risk frameworks (e.g., NIST, ISO 27001, COBIT).
• Cloud and Identity Management Knowledge: Knowledge of cloud governance, access control, and identity management principles in Azure Cloud and Azure Active Directory.
• Stakeholder Engagement: Strong interpersonal and communication skills to work with diverse stakeholders including the IT function and external auditors.
• Analytical and Critical Thinking: Excellent analytical, critical thinking, and problem-solving skills.
• Continuous Learning: Commitment to continuous learning and staying current with emerging technologies and industry trends.

Preferred Qualifications:

• Professional Certification: Possession of relevant certifications such as Certified Internal Auditor (CIA), Certified Public Accountant (CPA), Chartered Certified Accountant (ACCA) or Certified Information Systems Auditor (CISA).

Educational Background:

• Bachelor’s degree in information systems, computer science, accounting, finance, business administration, or a related field. An advanced degree is a plus.

Job Title/Position: Senior Internal Audit - IT

Reporting / Hiring Manager: Senior Director Internal Audit

Duration: Permanent with client

Location: Petaling Jaya, Selangor, Malaysia

Work Arrangement: Hybrid (2-3 days in the office)

Working Hours: Malaysia Hours

Overall years of experience: Any

Relevant years of experience: 4 years in IT Audit

Domain: Any

Skills:

• Possession of relevant certifications such as Certified Internal Auditor (CIA), Certified Public Accountant (CPA), Chartered Certified Accountant (ACCA) or Certified Information Systems Auditor (CISA).

Mandatory Skills:

• Experience working with a U.S. public company and understanding of PCAOB auditing standards, SOX compliance, and corporate governance practices.
• Power BI or similar. Familiarity with internal audit software, such as Workiva
• T risk frameworks (e.g., NIST, ISO 27001, COBIT).
• Azure Cloud and Azure Active Directory with experience auditing Microsoft Dynamics 365 F&O.

About Client:

With over 40 years of innovation, end-to-end platform is uniquely equipped to orchestrate, protect, and enrich data across its lifecycle, providing enhanced intelligence and actionable insights. Leading organizations in cloud services, entertainment, government, research, education, transportation, and enterprise IT trust to bring their data to life, because data makes life better, safer, and smarter and listed on Nasdaq (QMCO).

Job Summary:

The Senior Internal Audit IT will play a crucial role in supporting comprehensive audit programs, focusing on operational and compliance effectiveness, including adherence to the Sarbanes-Oxley Act (SOX), across the organization. This position involves actively participating in risk assessments, evaluating internal controls, and contributing strategic insights to improve processes and mitigate risks. With a solid understanding of audit principles, the Internal Audit IT Senior will assist in ensuring that audit practices are aligned with organizational goals and regulatory standards and will be involved in developing and executing audit plans, as well as in analyzing findings and providing recommendations.

We are seeking a highly motivated and experienced senior IT audit to join our dynamic team. In this role, you will play a critical role in assessing and enhancing IT controls and cybersecurity posture. You will execute IT audits, contribute to SOX compliance efforts, and provide valuable insights to management on key IT risks. Your efforts will be key in mitigating risks and ensuring ongoing compliance across the organization.

Job Responsibilities:

Responsibilities include, but are not limited to:

• SOX Compliance Support: Assist in overseeing SOX compliance by identifying risks and opportunities in financial reporting and IT processes. Support the development, implementation, and review of the testing plan for both IT and financial controls, including those related to Microsoft Dynamics 365 F&O and Azure Active Directory. Help assess control deficiencies and contribute to the management of tracking and reporting of status and results to both management and external auditors.
• IT-Focused Risk-Based Audit Execution: Perform risk-based audits with a focus on evaluating IT systems, infrastructure, and controls, particularly within Microsoft-based environments. Assess audit findings to uncover control deficiencies, security vulnerabilities, and operational inefficiencies, contributing to the development of practical and actionable recommendations for management. Draft audit reports for review by senior management and the Audit Committee of the Board.
• Cybersecurity Knowledge and Assessment: Evaluate organizational cybersecurity measures, including threat detection, incident response, and vulnerability management processes. Conduct audits aligned with cybersecurity frameworks such as NIST or ISO 27001, ensuring robust protection against emerging threats and compliance with security standards.
• Special Investigations and IT Project Support: Participate in special investigations and projects as directed by management, addressing known IT risks, internal control gaps, or reviews, such as identity and access management, cloud governance, or system implementation reviews.
• Risk Management Contribution: Offer insights and support in addressing IT-related organizational risks. Contribute to the development of solutions, focusing on integrating Enterprise Risk Management (ERM) principles with IT risk management strategies.
• Team Collaboration and Development: Work closely with audit staff on IT and integrated audits, reviews, and special projects. Assist in coaching and guiding team members for professional development, under the direction of audit leadership.
• Innovation and Process Improvement Initiatives: Contribute to enhancing audit efficiency by leveraging technology, suggesting innovative approaches, and improving processes through tools and data visualization.
• Relationship Building and Communication: Support the maintenance and strengthening of working relationships within the organization, particularly with IT teams. Provide clear, concise, and timely information, fostering a culture of collaboration and high-quality customer service.

Required Skills and/or Experience:

• This list represents a combination of desired attributes, and no candidate may embody every skill listed. However, we encourage applicants who meet many, but not necessarily all, of the criteria to apply as we value diverse experiences and perspectives and are committed to considering a wide range of qualifications to identify the candidate who will best fit our team.
• Audit and IT Experience: Minimum 4 years of experience in IT audit, with experience auditing Microsoft Dynamics 365 F&O a strong plus.
• U.S. Public Company Expertise: Experience working with a U.S. public company and understanding of PCAOB auditing standards, SOX compliance, and corporate governance practices.
• Technology and Data Analytics Skills: Proficiency in data analytics for audits, with experience in tools like Power BI or similar. Familiarity with internal audit software, such as Workiva.
• Risk Assessment and IT Frameworks: Strong understanding of IT risk frameworks (e.g., NIST, ISO 27001, COBIT).
• Cloud and Identity Management Knowledge: Knowledge of cloud governance, access control, and identity management principles in Azure Cloud and Azure Active Directory.
• Stakeholder Engagement: Strong interpersonal and communication skills to work with diverse stakeholders including the IT function and external auditors.
• Analytical and Critical Thinking: Excellent analytical, critical thinking, and problem-solving skills.
• Continuous Learning: Commitment to continuous learning and staying current with emerging technologies and industry trends.

Preferred Qualifications:

• Professional Certification: Possession of relevant certifications such as Certified Internal Auditor (CIA), Certified Public Accountant (CPA), Chartered Certified Accountant (ACCA) or Certified Information Systems Auditor (CISA).

Educational Background:

• Bachelor’s degree in information systems, computer science, accounting, finance, business administration, or a related field. An advanced degree is a plus.