IT Controllership specialist

Job Description

• To monitor the state of IT compliance with regulatory requirements and internal policies that affect the Information Technology Risk management and compliance, and develop a compliance program to address potential gaps
• To serve as liaison to internal auditors, external auditors, Bank of Thailand auditors and other regulators mandates (i.e., PCI, SEC, ISO27001, etc.) regarding documentation and review of information compliance
• To partner with IT Management to develop and implement appropriate controls to ensure that IT compliance is being effectively maintained
• To oversee generally in issue summary review, the process of issue tracking and closure, and closing meetings in order to maintain a full understanding of emerging IT issues
• To facilitate reporting of IT compliance status for IT Management
• To provide advisory and consultation to IT users on IT regulation and compliance requirements.
• To oversee and steer the IT General Control (ITGC) program regarding SOX Compliance
• To establish and enforce standardized and repeatable enterprise Data Leakage Prevention (DLP) governance and framework including DLP incident response processes
• To maintain Data Leakage Prevention (DLP) system
• To provide the direction and advisory on Information system control monitoring(i.e., monitoring the log over critical operating systems, applications, databases, and reviewing the access control log over restricted IT physical areas, etc.)
• To ensure security controls over critical high privilege management are adequate and functioning as intended within the operating systems, applications, and databases
• Be responsible for Liaise with IT Risk owners to develop risk-based assessments, and establish risk response programs and reporting processes according to Bank's Risk Management Policy and Framework

• Bachelor's or master's degree in Information Technology, Computer Management, or related fields.
• Minimum of 10 years of experience in Information Technology in Banking /Financial industries.
• Minimum of 3-5 years of managing experiences IT audit activities and supporting compliance requirements in Banking/Financial Industries
• Experience in relevant local and international security standards and best practices such as ISO 27001, NIST, COBIT, COSO, PCI DSS, ISO 27001/2, ITIL, and SOX Compliance.
• Good written and verbal communication and presentation skills