Senior IT Internal Auditor

Penang Permanent MYR10,000 - MYR12,000 per year Work from Home or Hybrid
  • Opportunities for career advancement via internal educational initiatives
  • Prospects for advancement at an international level

About Our Client

This organization is a leader and pioneer when it comes to Medical Instruments. They're now focusing on upscaling their Malaysian operations by increasing the output and hence, will require several IT auditors to ensure everything is in order.

Job Description

  • Collaborate closely with internal audit teams to conduct integrated risk assessments, scoping, and testing programs aligned with COSO and COBIT frameworks.
  • Evaluate internal IT controls, assess their design and operational effectiveness, identify risks, and make value-added recommendations. Apply risk and control objective concepts to assess control design and develop test approaches for key controls.
  • Prepare comprehensive documentation demonstrating understanding of IT processes, key reports, identified risks, and control design, including Management Review Control requirements.
  • Perform thorough SOX 404 control testing to evaluate effectiveness, ensuring accurate deliverables and timely conclusions in compliance with US GAAP. Coordinate with process/control owners and external auditors for integrated financial statement audits.
  • Communicate control design deficiencies and operational issues to management, offering suggestions for risk mitigation or process improvement. Validate the resolution and implementation of corrective action plans with management.
  • Utilize data-driven approaches to analyze business processes, technology dependencies, and associated risks, designing audit procedures accordingly. Handle complex transactions or issues requiring in-depth evaluation and provide guidance to staff auditors, with experience in data analytics audit considered advantageous.
  • Simplify and communicate complex technical issues to relevant IT and non-IT business system owners.
  • Undertake additional duties, special projects, or a wide range of IT controls audits to meet evolving business objectives and identify process improvement opportunities.
  • Prepare concise internal audit reports and presentations outlining IT audit/advisory outcomes. Maintain regular controls compliance metrics reporting and tracking.
  • Stay updated on regulatory and IT compliance developments, integrating evolving best practices into compliance controls. Continuously enhance technical and project management skills through feedback, performance evaluations, mentoring, and maintaining professional development credits (CPE) as a subject matter expert in audit domains or specific areas.

The Successful Applicant

  • Possess a Bachelor's degree in Computer Information Systems, IT, or related field, with programming skills considered advantageous.
  • Demonstrate strong organizational, time-management, analytical, and communication skills, and the ability to work collaboratively or independently on projects.
  • Hold or be pursuing professional certifications such as Certified Information Systems Auditor (CISA), CISM, CIA, and/or CISSP, with additional training in security or cloud audit preferred. Continuously update skills to stay informed about relevant laws, regulations, and audit requirements.
  • Bring 5-8 years of hands-on IT audit experience, including expertise in IT SOX compliance, application and operating system audits, and testing ERP systems (e.g., Oracle EBS, Oracle Fusion). Experience in healthcare manufacturing is beneficial.
  • Possess strong knowledge of auditing standards, risk evaluation, internal audit program execution, and control frameworks (COSO, COBIT, ISO, PCAOB, NIST), with familiarity in NIST Cybersecurity Framework and cloud infrastructure risk management.
  • Experienced in auditing new system implementations (SDLC) for SOX control requirements and providing guidance for compliance enhancements.
  • Flexible schedule to collaborate with global audit teams and international Finance, Functional, and IT departments, with the ability to travel up to 25% of the time while maintaining confidentiality with sensitive information and addressing various technology and security challenges.

What's on Offer

  • Direct exposure to transformative CGM technology and engagement
  • Comprehensive and inclusive benefits package.
  • Opportunities for career advancement on an international level.
  • Access to professional growth through in-house learning initiatives and potential tuition reimbursement.
  • Engagement with an exciting and innovative industry leader dedicated to its employees, customers, and communities.
Prassath Jayakumar
Quote job ref
Phone number
+60 3 2302 4090

Job summary

What is your area of specialisation?
Healthcare / Pharmaceutical
Contract Type
Consultant name
Prassath Jayakumar
Consultant contact
+60 3 2302 4090
Job Reference
Work from Home
Work from Home or Hybrid

Diversity & Inclusion at Michael Page

We don't just accept difference - we celebrate it. We encourage applicants from all backgrounds to apply for this role and are committed to building inclusive, diverse workplaces where everyone can thrive. If you require any support or reasonable adjustments during the recruitment process, please let us know.