Assistant Vice President, Gcad

**Advisory Assignment**
- Responsible to ensure the accuracy and completeness of the information obtained for audit planning purposes via Audit Planning Memorandum.
- Analyze data from the data sources / data points as information feeds to micro-risk assessment for all risk factors on annual audit plan
- Lead and execute advisory assignments including developing internal advisory scope, performing internal advisory procedures and preparing advisory memo/reports reflecting the results of the work performed.
- Develop and update the advisory programs, maintain quality of advisory documentation and active participation in project continuous improvement initiatives.
- Report control weaknesses, risk implications and provide value-add recommendations for improvement.
- Ensure recommendations are clearly communicated and agreed by management and advisory memo/report is issued promptly.
- Ensure advisory work complies with acceptable advisory standards and within stipulated time frame
- Ensure documentation/working papers are accurately and appropriately developed, TeamMate is used effectively and that internal advisory standards are met in carrying out all advisory assignments
- Involve in ensuring recommendations are clearly communicated and agreed by management and advisory report is issued promptly. Assist in preparing a portion of the Advisory report. Review the audit observations and incorporate the context in the observations.
- Present to Management Committees and Management during key Audit Meetings

(Note: For Team Leader role, to manage all aspects of audit assignments, including providing supervision and guidance to team members as well as on-the-job training)

**Administrative & Development**
- Develop and update the advisory programs, maintain quality of advisory documentation and active participation in internal advisory continuous improvement initiatives
- Provide on-the-job training / coaching and assist the Section Head in other training and development needs
- Assist the corporate assurance management with periodic reporting to the Audit Committee and relevant Senior Management Committee and development of the annual advisory plan. Ensure compliance with relevant regulatory requirements and adherence to the Group & GCAD P&P

**Collaboration and other responsibilities**
- Communicate and interact with Management (Dept Head & Section Heads) across the GCAD organization
- Manage the GCEO-4 across the Organisation Carry out any other responsibilities/tasks as assigned by the TA Department Head or Section Head from time to time

Coverage
- Cybersecurity
- Cybersecurity Technologies (Endpoints, Networks, Cloud)
- Cybersecurity Operations and Functions
- Identity and Privilege Access Management
- Cybersecurity Governance, Risk and Compliance
- Cyber Defense and Security Incident and Response
- Application Security Controls and Practices
- IT Infrastructure
- Operating System (Wintel, Middleware and Mobile OS)
- Servers and Virtualization
- End User Computing
- Databases and Storage
- Data Center and Facilities Management
- Network
- IT Service Management
- IT Asset and Configuration Management
- Incident and Problem Management
- Release and Change Management
- Availability and Capacity Management
- IT Resiliency
- Disaster Recovery
- Backup and Restore
- Business Continuity Management
- Cloud Services
- IaaS, PaaS and SaaS
- Banking Applications
- Public facing systems
- Payment Systems
- Digital Banking
- Mobile Application
- Emerging technologies
- Robotics and Artificial Intelligent
- Big Data and Data Analytic
- E-Wallet
- Internet on Thing (IoT)

Portfolio
- GT Information & Technology
- Cyber Security
- GT IT Service Management
- Group Data
- Group IT Governance, Risk and Compliance
- CISO Office
- Group Business Applications
- Third Party (Technology Principals and Cloud services)
- Regulators (Malaysia and Other Countries)
- Other countries, offices & subsidiaries
- CIMB NIAGA and CIMB THAI
- CIMB SG, CIMB HK, CIMB SH, CIMB VN & CIMB PH
- Touch N Go