The position of Assistant General Manager, Internal Audit (IT) reports to Head of Internal Audit.

    Role Summary

  • Support the Head of Internal Audit in all internal audit activities which would include audit planning, development of audit methodology, guidelines and policies and procedures.
  • Plan and manage internal audits for the corporate functions, projects, operations at the headquarters and the various country offices from both the IT and operational angles.
  • To assist the Head of Internal Audit to provide independent and objective assurance on internal controls and governance aspects of the organisation.
  • To provide advice to management via value added recommendation as to the closing of control gaps noted during the course of the audit or for process improvement opportunities.
  • To assist the Head of Internal Audit on the execution of any ad-hoc or investigative audits as and when the need arises.
  • To assist the Head of Internal Audit on all reporting obligations either to the Board, the Audit Committee or to Management.
  • To be able to communicate very well in both verbal and written form. This would apply to interacting with stakeholders, the Internal Audit team and in any written communications.
  • To be easily adaptable between working independently or collaboratively on a team, with various stakeholders, outsourced audit teams and on unstructured projects.

    Principal Accountabilities

  • Assist with the development of the annual internal audit plan before the commencement of the new fiscal year in tandem with the risk profile of the organisation.
  • Assist with the development of internal audit guidelines and manuals or the refresh of these documents as the need arises.
  • Development of audit work programs for each auditable area before the start of the field audit and determines scoping and procedures for all IT reviews.
  • Lead audit teams in conducting IT, operational, financial, compliance, system and/or ad-hoc audits on the various functions or subsidiaries within the Group. These audits will include assessing noncompliance to existing policy, control weaknesses as well as opportunities for improvement.
  • Assumes responsibility as project leaders for special audit projects and provides advisory and consulting services to management.
  • Performs statistical sampling to accomplish audit procedures where relevant in the most efficient way utilising IT tools such as ACL etc.
  • Provide the most viable IT solution for data crunching and analysis when there is a need to do on an investigative audit.
  • Performs trend analysis of transactions etc.
  • Provides advice on IT general controls as well as cybersecurity.
  • Tracking of recommendations and reporting on status of implementing recommendations by the action owners which will include follow up with the action owners on a periodic basis.
  • Assist the Head of Internal Audit in monitoring the departmental budget and also providing value added suggestions for improvement of efficiency and cost savings if appropriate.
  • Assist in the development of the quarterly reports to the Audit Committee.


  • Malaysians Only
  • Degree in Accounting / Finance / Commerce / Information Technology with in depth knowledge of finance functions including accounting, reporting, treasury, project accounting and cost control.
  • Membership of ISACA, Accountancy or other professional bodies.
  • Minimum 10 years related work experience in IS auditing, IS risk management and/or IT operations with at least 7 years as lead auditor/supervisory capacity.
  • Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP).
  • Experience in CAATs, preferably ACL. Experience with SAP.
  • Experience in Microsoft Windows, UNIX / LINUX server operating system setting and controls.
  • Good working knowledge in IS operations and controls.
  • Sound professional and technical understanding in security management including database and networking controls.
  • Basic programming.
  • Network set up implementation and security administration experience.
  • Database administrator experience.
  • Detail orientated but able to quickly grasp the big picture and look at issues from a strategic and business angle as well.
  • Excellent supervisory and mentorship skills and the ability to work effectively with people at all levels.
  • Excellent written and oral communication skills.
  • Excellent time management and organisation skills.
  • Able to travel.
Interested applicants, please contact us at:
Bumi Armada Berhad
Level 21, Menara Perak, 24 Jalan Perak, 50450 Kuala Lumpur