Create Alert
Apply now »
Date:  26 Sept 2025
Req ID:  650
Location: 

Kuala Lumpur, Federal Territory of Kuala Lumpur, MY, 50470

City:  Kuala Lumpur
Entity Field:  Boost Bank Berhad

Information Technology (IT) Technical Audit Lead

Internal Audit function covers the audit practices, champion best practice in audit governance, developing audit plan, providing concise and insightful view of audit result to the Board Audit Committee/ Senior Management, performing data analytics of audit issues and prepare analysis summary for Board Audit Committee and Senior Management to help understand and better manage risks.

The candidate possesses a strong understanding of internal audit processes and IIA Standards, a comprehensive knowledge of internal audit framework as well as sound knowledge in internal controls, corporate governance, risk management and relevant authority rules & regulations.

The role will include supporting IT Audits in BoostBank (Digibank) and/or Boost Group Berhad to provide an independent assessment of the adequacy and effectiveness of IT internal controls and compliance of the businesses and Information Technology functions with regulations and internal policies.

The person in this role is future oriented, energetic, a team player and data-analytics-driven.

SCOPE & AUTHORITY

Audit Strategy

  • Support the Head of Internal Audit (HIA) on IT audit scoping and to address IT key risks identified in the detailed risk assessment. Audit planning process meeting regulatory requirements.
  • Support the HIA in the development of the IA Risk Assessment and IT Audit Plan.
  • Propose audits for coverage during the audit cycle based on the knowledge of the business and systems.
  • Carry out audit role in line with the Audit Charter and remain independent from management and free from interference.

Communications

  • Build good relationship with the business to facilitate execution of audit work, provide input/recommendations in improving the control environment and to keep updated with changes in the risk profile of the business.
  • Ensure communication of the overall audit opinion and the supporting findings/issues/root causes to all relevant stakeholders.
  • Monitor and escalate assigned audit issues and action plans and report overdue items to the appropriate business managers/stakeholders for resolution.
  • When acting as Team Leader:
  • Manage timely communications with auditees, including the audit notification, terms of reference and hold regular fieldwork discussions to ensure expectations are clear and that there are no surprises.
  • Facilitate the closing meeting with auditee management at the end of an audit.

Audit Process

  • Support the HIA by executing audit planning, fieldwork, reporting and issue tracking for work assigned in an efficient and effective manner such that the audit work meets the given budget, quality standards and timelines stipulated by the IA methodology.
  • Apply good understanding of IA methodology standards and practices in all areas of assigned IA activity.
  • To prepare audit documentation i.e. audit report/findings/recommendations, to the management with complete evidence and professionally written audit report for review.
  • To ensure audit working files are properly indexed, contains all relevant documents to ensure issues/observations highlighted are supported adequately with evidences and easily cross-referenced.
  • To propose value added recommendations for each audit risk identified during audit engagements to improve business operations, where possible apply risk matrix to identifying fit for purpose control solutions.
  • When acting as Team Leader:
  • Manage the on-the-ground working relationship with auditees to ensure that they understand the audit process. Ensure that expectations are clear for all parties to facilitate the smooth progress of the audit.
  • Provide clear guidance to team members, supervise and carry out a detailed review of the audit work to ensure that methodology requirements are adhered to in all areas of IA activity as well as raising team members’ awareness and understanding of the methodology.
  • Provide guidance on technical knowledge and management skills to team members to enable them to effectively deliver their assigned contributions for an audit.

Risk Assessment

  • Assist in the early identification and escalation of risks, issues and developments for reporting to the HIA.
  • Adopt an anticipatory approach to the assessment of risk through stakeholder engagement and the monitoring of the external environment to improve audit planning.
  • Attend meetings (e.g. Committees and Project meetings) when requested by HIA, to keep up-to-date on key business matters and to provide the right challenge to ensure risks are appropriately identified, discussed and timely remediation plans are put in place.

People and Talent

  • Demonstrate leadership and ability to motivate and guide audit team.
  • Ensure correct capacity planning for assigned audits so that the audit can fulfill the scope of an audit engagement effectively and efficiently.
  • Ensure that sufficient training including on-the-job training is received to develop expertise within the assigned area.
  • Support the HIA to proactively spot talent for IA.

Governance

  • Ensure compliance with the highest standards of regulatory conduct and compliance practices as defined by internal and external requirements.
  • Adopt the Bank’s and Group’s values and code of conduct in IA to ensure adherence with the highest standards of ethics and compliance with relevant policies, processes and regulations.

 

Key Stakeholders

  • Designated individual business key stakeholders, typically related to individual audit assignments.
  • Effective engagement and good relationship with regulators.

Other Responsibilities

  • Adopt Bank’s and Group’s brand and values.
  • Perform other responsibilities/ad-hoc (special) audit assignment or investigation as requested by HIA.

REQUIREMENTS

  • Have a minimum 7-10 years professional services assurance and IT auditing experience and a strong knowledge of internal control principles (e.g. COSO, COBIT, risk based auditing & etc.)
  • Good knowledge and background in local regulatory requirements and understanding in key risks involved.
  • Have working experience and sound understanding of digital financial services/ managed services/ advertising and their operations, relative risks and regulatory and other external factors facing the organization.
  • Possess a Bachelors' degree with major in Business Administration, Finance, Computer Science, MIS, or an equivalent education. CIA/ CISA/ SSCP/ CRISC/ CISSP or Big 4 experience is a strong merit.
  • Able to travel to neighboring countries within short notice.
  • Good communication skills, both written and verbal.
  • Self-motivated achiever, with ability to work with minimal direction.
  • Well versed with MS Powerpoint and data visualization tools (Power-BI, Tableau) for presentation materials to the Committee/ Management as well as for data analysis work.
  • Last but not least, we're looking for an inspirational team player/ leader who collaborates with audit team/ colleague. You’re positive, caring and values collaboration and teamwork.

Apply now »