IT Audit Manager

Standard Chartered
Kuala Lumpur, my
Competitive Salary
Feb 22, 2021
Feb 24, 2021
Contract Type
Full Time
About Standard Chartered

We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East. To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good. We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base. Job Purpose
  • To manage all assigned technology related audit work in support for Malaysia ASEAN and South Asia (ASA) region.
  • The assessment and support will include the Country and Regional coverage. Opportunity to apply skills more broadly in support of our dynamic ASEAN and South Asia (ASA) region.
  • The role will include supporting IT audits in ASA region remotely and possibly travel as needed.
  • To provide an independent assessment of the adequacy and effectiveness of IT internal controls and compliance of the Businesses and Information Technology functions with regulations and internal policies.
  • To ensure IT related audit activities in the country are executed as required by local regulator and provide assurance to the country management on regulatory audit requirements are met.
  • To contribute towards IT audit risk assessment by highlighting issues through good stakeholder communication to improve audit planning.
  • The Role Responsibilities Audit Strategy
  • Support CHOA on IT audit scoping and to address IT key risks identified in the detailed risk assessment. Audit planning process meeting regulatory requirements.
  • Support the CHOA in the development of the GIA Risk Assessment and appropriate IT audit plan for the team.
  • Propose audits for coverage during the audit cycle based on the knowledge of the business.
  • Carry out audit role in line with the Audit Charter and remain independent from management and free from interference.
  • Communications
  • Build good working relationships with the business to facilitate execution of IT audit work, help improve the control environment and updated with changes in the risk profile of the business.
  • Conduct/ attend regular meetings with assigned business stakeholders.
  • Provide assigned stakeholders (approved by CHOA) with regular value adding reports and updates on risk trends, emerging risks and GIA's opinion on the state of the control environment.
  • Ensure communication of the overall audit opinion and the supporting findings/ issues/ root causes to all relevant stakeholders.
  • Monitor and escalate audit issues, action plans and report overdue items to the appropriate Team Manager/ CHOA for escalation to the appropriate business manager resolution.
  • When acting as Team Leader:Timely communications with auditees throughout the audit planning fieldwork and reporting.This is to ensure expectations are clear and that there are no surprises at the end of an audit.Ensure timely escalation of delays in conformance with GIA methodology timelines, to both auditee management and GIA management.
  • Develop an external network through participation in external and professional forums.
  • Audit Process
  • Support the Team Manager/CHOA by executing end to end IT audit work, meeting the audit budget, quality standards and timelines as required by GIA methodology.
  • When acting as Team Leader:Manage working relationship with auditees for better understanding of audit process for smooth progress of the audit.Provide clear guidance to team members, supervise and carry out a detailed review of their audit work to ensure that methodology requirements are adhered.Proactively engage the Team Manager to ensure that audit deliverables meet quality standards and timelines required by the GIA methodology.Provide guidance on technical knowledge and management skills to team members to enable them to effectively deliver their assigned contributions for an audit.
  • Risk Assessment
  • Assist in the early identification and escalation of risks, issues, trends and developments for reporting to the CHOA.
  • Regularly review Country related MI and reports to keep up to-date with key trends within the business.
  • For assigned audits, engage with the Team Manager on the status of rollout and effectiveness of the Operational Risk Type Framework.
  • Attend country business meetings for better understanding on key business matters, provide the right challenge to ensure risks are discussed and remediated timely.
  • Budgets/ Costs
  • Effectively manage T&E costs within the allocated budget for audit engagements where assigned as Team Leader (or Team Manager).
  • Identify and implement opportunities for costs savings and optimal productivity of assigned audit engagements.

  • People and Talent
  • Demonstrate leadership and ability to motivate and guide audit team members.
  • Influence change within the business.
  • Ensure correct capacity planning for assigned audits so that the audit team can fulfil the scope of an audit engagement effectively and efficiently.
  • Facilitate the development of direct reports to grow them in their careers.
  • Provide on the job training and recommend formal training for direct reports or audit team members to support the GIA activity.
  • Support the CHOA to proactively spot talent for GIA.
  • Governance
  • Ensure compliance with the highest standards of regulatory conduct and compliance practices as defined by internal and external requirements.
  • Adopt the Group's values and code of conduct in GIA to ensure adherence with the highest standards of ethics and compliance with relevant policies, processes and regulations.
  • Key Stakeholders
  • Designated individual business key stakeholders, typically related to individual audit assignments.
  • Effective engagement and good relationship with local regulators.

  • Other Responsibilities
  • Adopt Here for Good and the Group's brand and values.
  • Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures where relevant.

  • Our Ideal Candidate
  • Experienced internal auditor, technology practitioners with core technology audit skills.
  • Strong knowledge of country's local regulatory requirements. Possess good understanding in key IT risks in the Bank. Ability to commit to 10% to 20% business travel
  • Experience in banking industry with risks and controls focus.
  • Ability to objectively analyse and apply information, "thinking out of the box" where necessary, in supporting the planning, fieldwork or reporting of results of internal audit engagements.
  • Demonstrates ability to work independently and seek guidance when needed.
  • Strong communicator with ability to communicate clearly and effectively, both orally, in writing and excellent report writing skills.
  • Highly credible with Senior Management to instil trust and obtain information that improves GIA understanding of risks in the business.
  • Demonstrates understanding of and commitment to the Banks core values.
  • Self-motivated achiever with ability to drive vision and believes in developing talents across the team.
  • Strategic thinker with sharp analytical and problem-solving skills to support business
  • Confident and courageous to raise concerns and issues in a proactive and professional manner.
  • Ability to collaborate with different stakeholders within and outside audit.
  • Nimble learner who can learn and understand things quickly and easily.
  • Preference given to candidate with data analysis capability using data analytics tools.
  • Professional IT Audit certification is preferred.