The Responsibilities of the Role: -

• The role is accountable to the Manager - of IRC for the provision of risk management, internal audit including information security (ISO27001) audits and compliance related support within Scicom Group. This includes a range of risk management, internal audit and compliance related activities as well as other ad-hoc tasks as may be required.
• To conduct internal audits including information security (ISO27001) audits, follow up audits and ad-hoc audits and ensure adequate documentation of audit work performed for review by Manager – IRC.
• To review draft QMS documents from operations and shared services and provide constructive feedback to ensure adequacy of processes and controls in place to address risks as well as alignment to other processes across Scicom.
• Coordinating, preparing and delivering presentations and workshops to employees within Scicom Group and management on compliance and risk management activities.
• To handle the management of Quality Management System (QMS) related matters.
• Liaison with ISO representatives within Scicom, including SES access control management of ISO representatives.
• Exercise responsibility for the provision of accurate, professional and timely compliance and internal audit related services within Scicom Group, including risk and compliance management, internal control frameworks, systems and processes business continuity management.
• To work with operations teams to manage the end-to-end external certification such as ISO, ISMS, SCP, etc.
• Proactively contributes establishment, delivery and maintenance of an efficient and effective risk management, audit and compliance framework and related policies, practices and processes.
• Conduct any other special reviews and ad-hoc assignments and any as may be required to support the operation of IRC.

The Requirements for the Role: -

• Bachelor's degree or professional qualification (CISA, CIA, ACCA MIA, CPA and/or other IT audit related professional qualification).
• Minimum 3 years of IT audit or compliance related working
• Knowledge and experience in ISO 27001 Information Security Management System internal audit and ISO 9001 Quality Management System internal audits is mandatory.
• Knowledge and experience in investigative audit and/or enterprise risk management framework will be an added advantage.
• Good communication skills, report writing, analytic & interpersonal skills
• Demonstrated experience in executing internal audit programs including fieldwork, reporting, review through to sign-off completion.
• Proven experience in contributing to the review and continues improvement of compliance frameworks, policies, practices and processes.
• Experience in undertaking complex assignments that have a wide-ranging impact on organizational objectives.
• Ability to manage and motivate self, work collaboratively in a team environment and across the organization, contribute to a culture of teamwork and take a shared responsibility for achieving results.
• Demonstrated customers focus with an emphasis on building relationships with all levels of staff and management, managing conflict effectively, understanding and meeting needs, negotiating positive outcomes and providing a value-added service.

The Package: -

• Attractive Salary: Up to RM8,000 per month depending on experience level
• Performance Related Allowance on a half-yearly basis.
• 15 days Annual Leave.
• 14 days Medical Leave.
• Medical and hospitalization insurance coverage.