ROLE SUMMARY
The Manager - Business audit is responsible for leading and executing risk-based audits across the bank's core business functions. This role requires a unique blend of expertise in Traditional Banking (lending, deposits, operations) and Digital Banking (automated onboarding, digital banking activities). The incumbent will ensure that business processes are efficient, compliant with Bank of Thailand (BOT) regulations, and resilient against the risks of a virtual banking environment.
KEY RESPONSIBILITIES
1. Integrated Audit Planning
- Support the Head of Internal Audit in developing a dynamic, risk-based audit plan that covers both legacy banking risks and modern digital operations.
- Align audit strategies with the bank's strategic objectives and the specific regulatory requirements of the Bank of Thailand (BOT).
- Continuously research and integrate emerging trends in Fintech and Virtual Banking into the audit methodology.
2. Audit Execution & Business Assurance
- Lead and manage end-to-end audits of business units, including Retail Banking, Wealth Management, and Digital Product Development.
- Assess the effectiveness of internal controls within the Three Lines of Defense (3LOD) model.
- Evaluate the automation of business rules, ensuring that digital decision-making engines (e.g., automated credit scoring) operate fairly and accurately.
- Conduct special investigations into suspected misconduct or sensitive matters as requested by the Audit Committee.
3. Strategic Advisory & Compliance
- Act as a trusted advisor to business owners on internal controls, corporate governance, and process optimization.
- Ensure all business activities adhere to Thai banking laws and the latest BOT notifications.
- Foster a culture of integrity, professional skepticism, and continuous improvement across the organization.
QUALIFICATIONS
- Professional Experience: Minimum 57 years of experience in internal/external audit within the financial services industry.
- Proven track record in auditing traditional banking products while demonstrating a strong grasp of digital transformation.
- Education & Certification: Bachelor's or Master's Degree in Accounting, Finance, or Business Administration.
- Professional certifications such as CIA or CPA are highly preferred.
- Digital & Regulatory Acumen: In-depth knowledge of BOT regulations regarding risk management and internal controls.
- Understanding of digital-specific risks such as e-KYC, AML/CFT in digital channels, and API-driven business processes.
- Soft Skills & Mindset: Fast Learner: A proactive growth mindset with a passion for staying updated on new technologies and evolving regulatory landscapes.
- Strategic Thinker: Ability to provide value-added recommendations that go beyond simple checklist compliance.
- Communication: Exceptional presentation skills in English and Thai.
KEY PERFORMANCE INDICATORS (KPIs)
- Audit Plan Execution: Timely completion of the annual audit plan, ensuring coverage of both high-risk traditional and digital business areas.
- Regulatory Compliance: Zero significant findings from the BOT regarding business control failures during licensing or routine inspections.
- Remediation Oversight: Achieving a high rate of timely closure for audit recommendations by business units.
Innovation in Audit: Implementation of at least one new audit technique or tool per year (e.g., Data Analytics) to improve audit coverage.
