Job Purpose :
Establish a group-wide internal control system and enhance its design and operation.
Build a foundation for raising awareness of Risk Management and Compliance
Job Responsibilities :
- Lead and support internal control and compliance programs and projects.
- Contribute to initiatives by documenting internal controls, including business narratives, flowcharts, and risk control matrices, followed by controls testing.
- Evaluate and design policies and procedures, assisting group companies with implementation.
- Lead and support global programs such as Control Self-Assessment, Risk Control Matrix, and compliance-related activities.
- Perform independent reviews and analyses of business processes, IT general controls, and policies to improve operations, ensure compliance, and manage risks effectively.
- Prepare detailed reports and executive summaries for management.
- Address past review issues and support remediation action plans.
- Organize and conduct internal control and compliance-related training and communication sessions.
- Address non-compliance, manage fraud issues, and conduct investigations.
- Establish, communicate, and facilitate the use of appropriate ERM methodologies, tools, and techniques across the region.
- Lead and support the implementation of the ERM policy, framework, system, tools, and risk profile/register/reports.
- Assist in implementing ERM initiatives, such as monitoring Key Risk Indicators (KRIs).
- Promote a risk-aware culture through communications, workshops, training sessions, and formal/informal engagements.
- Develop monitoring methods to evaluate the performance of the ERM framework and ensure a comprehensive risk identification and improvement process.
- Establish and follow up on a framework for collecting and analyzing data and information.
- Proactively engage Risk Champions to monitor and report risks, build tools and processes, drive risk-informed decision-making, and enhance risk-informed execution.
Education & Experience :
- University degree in Business Administration, Accounting, Finance, or Law.
- Chartered Accountant, CPA, CFE, or CIA certifications preferred.
- Minimum of 13 years of experience in internal control and compliance, internal audit, ERM, or risk management, preferably in the industrial/manufacturing industry and/or a Big 4 professional firm.
- Excellent communication and facilitation skills.
- Strong project management skills, with the ability to work on multiple projects concurrently.
- Exceptional skills in analyzing data, preparing reports, and making presentations to management.
- Strong knowledge of internal controls and governance; ability to write and revise policies and guidelines, and maintain a Risk Register.
- Good understanding of the COSO framework.
- Proficient in Microsoft Office (Word, Excel, PowerPoint); analytical abilities using Excel are required.
- Fluency in English and Thai (reading and writing).
