About PayNet
At PayNet, your work doesn't just move money, it moves a nation. We make every payment count toward Malaysians shared prosperity by powering the platforms millions use every day, from DuitNow and FPX to MyDebit and JomPAY. Our systems keep Malaysia's digital economy running securely, seamlessly, and inclusively, whether you're tapping, transferring, paying bills, or expanding a business.
If you're excited about creating impact at a national scale and shaping how Malaysia pays, connects, and progresses, you'll fit right in.
About The Internal Audit Division
Safeguarding trust and integrity. Led by Senior Director, Internal Audit Division delivers independent and intelligent assurance that strengthen governance, controls and resiliency, anticipates risks and enables responsible innovation.
Summary Of Responsibility
Continuously improving technology controls, governance and risk management to help safeguard information assets as well as ensuring integrity, security and availability of IT infrastructure/systems
Key Responsibilities
- Lead and/or independently undertake audits as part of the audit plan to provide independent assurance on internal controls, systems and processes
- Evaluate and assess effectiveness of governance, risk management and internal controls over technology systems, infrastructures, processes and operations
- Provide value added recommendations and opportunities for improvements to internal controls to safeguard organisation resources, promote organisational growth, ensure compliance to regulations and improve operational effectiveness/efficiency
- Communicate clearly audit results and recommendations to the management/Board as well as ensure timely issuance of report
- Validate remediation actions and perform post-audit verification for audit observation closure to ensure sustainable fixes/remediation of root-cause
- Develop/maintain quality and timely audit documentation i.e. audit programmes and work papers that support audit conclusions and in accordance with the internal audit methodology
What will make you successful
Must-have
Technical/Functional Expertise
- Experience in cyber security and/or cloud security
- Experience in database/datalake operations/security and/or DevSecOps practices
Candidate able to relate these knowledge and industry/best practices to assess adequacy of risk management and controls implemented
Soft skills
- Strong critical and analytical thinking for thorough/in-depth analysis
- Communication/presentation skills to be able to communicate and deliberate audit results
Advantage To Have
- Payment systems knowledge
- Related experience in large audit/consultancy firm
- Data analytics tools and skills
- Experience in ISMS, COBIT, PCI DSS or any other relevant IT standards
