Job Description
- Evaluate adequacy and effectiveness of internal control over information technology to prioritize IT audit universe for annual risk-based IT audit plan.
- Perform IT audits and reviews of systems, applications, and IT processes by examining and evaluating the adequacy and effectiveness of IT internal control of GC and subsidiaries and the quality of performance in carrying out assigned responsibilities. These include internal control review on,
• Pre and post-implementation of system implementations or enhancements.
• IT security (e.g. network, operating system, data center, cybersecurity, etc.), including evaluating if security vulnerabilities are properly identified andmitigated. Coordinate the scope and performance of these reviews with businessunits and external security experts.
• Information general computing controls, IT governance process and IT management policies and procedures such as change management, business continuity planning/disaster recovery and information security to ensure that controls surrounding these processes are adequate.
• Access control, authorization, and segregation of duties (SOD) in applicable systems and environments.
• Configuration of applications to ensure that business automate controls are implemented as designed.
- Perform integrated IT audit with IA GC and Subsidiaries departments by including IT audit on application control with business audit team.
- Develop and implement a comprehensive IT audit program for evaluating the adequacy and effectiveness of IT internal control.
- Prepare working paper by examine IT internal controls, evaluate the design and operational effectiveness, determine exposure to risk.
- Identify the weaknesses in the company’s IT environment, such as systems network, business applications, etc., and provide recommendation to prevent security breaches in the technology.
- Maintain clear and complete IT audit documentations.
- Report progress, audit finding and recommendation to team lead.
- Prepare audit report, includes with findings and recommendations which are clearly communicated to and agreed by auditee.
- Follow up progress of recommendation implementation and verify related evidences.
- Apply project management tools i.e. TeamMate to execute audit project engagement and control quality and timeliness deliverable as well as ensure audit methodology is consistency applied and documented.
- Perform IT audit engagement in compliance with all applicable standards.
- Identify key control on IT systems and perform data analytics on evaluating internal control over information technology and propose IT detection rules for
continuous auditing.
- Perform data analytics and conduct Investigate on exception alert from IT detection rules.
- Support IA infrastructure team on configuration or automate control design in IT system to maintain accuracy of data source for data analytic of internal audit function.
Perform other duties as assigned
Internal Auditor/Senior Internal Auditor
Posting Start Date:
23/04/2026
Job Function:
Regulatory Affairs Management
Company:
PTT Global Chemical Plc.
Work Location:
Bangkok or Rayong
Job Summary
Formulate policies, strategic directions, standards for operation, control and improve the quality of internal audit work. To support the creation ofadditional value operational improvement and achieving the objectives and goalsof the line of work and the company, including the effectiveness of the supervision Governance, Risk and Internal Control and Compliance (GRC).
Job Description
- Evaluate adequacy and effectiveness of internal control over information technology to prioritize IT audit universe for annual risk-based IT audit plan.
- Perform IT audits and reviews of systems, applications, and IT processes by examining and evaluating the adequacy and effectiveness of IT internal control of GC and subsidiaries and the quality of performance in carrying out assigned responsibilities. These include internal control review on,
• Pre and post-implementation of system implementations or enhancements.
• IT security (e.g. network, operating system, data center, cybersecurity, etc.), including evaluating if security vulnerabilities are properly identified andmitigated. Coordinate the scope and performance of these reviews with businessunits and external security experts.
• Information general computing controls, IT governance process and IT management policies and procedures such as change management, business continuity planning/disaster recovery and information security to ensure that controls surrounding these processes are adequate.
• Access control, authorization, and segregation of duties (SOD) in applicable systems and environments.
• Configuration of applications to ensure that business automate controls are implemented as designed.
- Perform integrated IT audit with IA GC and Subsidiaries departments by including IT audit on application control with business audit team.
- Develop and implement a comprehensive IT audit program for evaluating the adequacy and effectiveness of IT internal control.
- Prepare working paper by examine IT internal controls, evaluate the design and operational effectiveness, determine exposure to risk.
- Identify the weaknesses in the company’s IT environment, such as systems network, business applications, etc., and provide recommendation to prevent security breaches in the technology.
- Maintain clear and complete IT audit documentations.
- Report progress, audit finding and recommendation to team lead.
- Prepare audit report, includes with findings and recommendations which are clearly communicated to and agreed by auditee.
- Follow up progress of recommendation implementation and verify related evidences.
- Apply project management tools i.e. TeamMate to execute audit project engagement and control quality and timeliness deliverable as well as ensure audit methodology is consistency applied and documented.
- Perform IT audit engagement in compliance with all applicable standards.
- Identify key control on IT systems and perform data analytics on evaluating internal control over information technology and propose IT detection rules for
continuous auditing.
- Perform data analytics and conduct Investigate on exception alert from IT detection rules.
- Support IA infrastructure team on configuration or automate control design in IT system to maintain accuracy of data source for data analytic of internal audit function.
Perform other duties as assigned
Education
Bachelor's Degree or higher Accounting, Finance, Management, Information Technology, Economics, Law, Political Science, Science or Engineering Certified Internal Auditor (CIA) Certified Professional Internal Auditor of Thailand (CPIAT) Certified Information Systems Auditor (CISA)
Experience
At least 5 years Internal audit or Management
-
Apply Now
-
Start applying with LinkedIn
-
Please wait...
Start applying with LinkedIn