Senior Executive, Quality and Risk Assurance

Job Summary

To lead the development, implementation, and continuous improvement of the internal audit quality assurance framework, risk-based audit methodology, and departmental governance practices. This role is responsible for ensuring alignment with professional standards, driving audit excellence, and enhancing risk awareness across the division. The Deputy Director provides strategic oversight on quality reviews, risk assessment processes, and performance monitoring to support effective decision-making and uphold the integrity and credibility of the Audit & Assurance Division.

Job Responsibilities

Quality Assurance and Continuous Improvement

• Lead the development, execution, and periodic review of the Division's Quality Assurance and Improvement Program (QAIP) to ensure alignment with IIA Standards and regulatory expectations;
• Conduct internal quality reviews and facilitate external quality assessments to evaluate the effectiveness and conformance of audit activities;
• Identify opportunities for process improvement, and drive implementation of enhancements in audit methodology, tools, and practices to support continuous improvement across departments

Risk Management Framework & Methodology

• Facilitate the development, maintenance, and execution of the Division's risk-based audit planning framework, ensuring alignment with MCMC's strategic objectives and risk appetite;
• Facilitate the annual risk assessment process to inform audit priorities and ensure coverage of key strategic and operational risks;
• Provide guidance to departments in embedding risk considerations in audit planning and execution

Governance, Policy & Methodology

• Maintain and enhance audit policies, procedures, templates, and manuals to ensure consistency, compliance with professional standards, and effective execution of audit engagements;
• Lead periodic reviews and updates to the Division's audit methodology to ensure relevance, consistency, and robustness;
• Support governance initiatives and act as custodian of divisional SOPs and key operational documents

Performance Monitoring & Reporting

• Monitor divisional performance against KPIs, audit plan progress, and quality metrics, providing regular updates to the Head of Division;
• Oversee timely and accurate reporting on quality reviews, risk themes, and divisional performance, including dashboards, trend analyses, and root cause reviews;
• Coordinate the consolidation of reports and inputs for Audit & Risk Committee (ARC), Commission and other internal stakeholders

Audit Issues Follow-up and Monitoring

• Oversee the follow-up process on audit recommendations to ensure timely and effective implementation of agreed management action plans;
• Maintain a centralized database of all follow up issues including the agreed management action plans and the timeline;
• Provide regular updates on issue remediation status to ARC;
• Liaise with the departments to validate closure of audit issues based on evidence and auditor verification

Investigation and High-Sensitivity Reviews

• Lead or support high-sensitivity and confidential reviews, including whistleblower cases, fraud investigations, or management-initiated special reviews;
• Ensure reviews are conducted with strict confidentiality, due process, and adherence to internal protocols;
• Prepare high-quality, evidence-based reports and ensure timely escalation of critical findings to senior management and relevant authorities;
• Coordinate with legal, HR, and other relevant functions where necessary to ensure appropriate case handling and resolution

Stakeholder Engagement and Advisory

• Provide expert guidance to audit teams on quality assurance, methodology, and risk related matters;
• Serve as liaison with external auditors, assessors, and regulators during reviews or assessments of audit functions;
• Foster engagement with internal stakeholders to promote awareness of audit standards, risk principles, and governance expectations

Audit Secretariat Function

• Assist in the Audit & Risk Committee (ARC) Secretariat task particularly on the meeting administration, documents, material and meeting records as per meeting procedures guideline
• Assist in maintain accurate records of ARC discussions, resolutions, and follow-up actions to ensure accountability and effective governance

Learning, Development, and Knowledge Sharing

• Lead capacity-building and training efforts on audit quality, methodology, and risk-based approaches within the Division;
• Facilitate knowledge sharing and dissemination of best practices to strengthen audit execution and consistency;
• Keep abreast of emerging trends in audit, risk, and quality assurance to guide continuous improvement

Others

• Perform other responsibilities as assigned by the Head of Audit & Assurance Division, to support overall divisional objectives and strategic initiatives

Qualifications & Work Experience

1. Candidate must possess at least a Bachelor's degree in Accounting, Finance, Business Administration, Economics, Information Systems, or a related discipline from a recognized institution or other related qualification from reputable university;
2. Master's Degree in a relevant field is an added advantage;
3. Holds a Chartered Member of IIA (Member of IIA) or Certified Internal Auditor (CIA) or Certified Risk Management Professional (CRMP) or Chartered Accountant (Member of MIA)
4. Minimum of 5 to 7 years experience in internal auditing, quality assurance, risk management with demonstrated expertise in audit quality management and risk assessment and control evaluation
5. Strong understanding of audit methodologies, risk assessment methodologies, quality assurance process and quality improvement techniques
6. Strong fundamental and knowledge in internal audit standards and risk management framework
7. Proven leadership skills and supervision, as well as the ability to work independently
8. Possess good writing and communication skills in Bahasa Melayu and English
9. Familiarity with the functions and regulations of the Malaysian Communications and Multimedia Commission is a plus
10. Demonstrated experience in handling high sensitivity assignments, ARC secretariat functions, and enterprise-wide audit issue monitoring

Technical Competencies

1. Internal Audit Methodology: Strong knowledge and application of risk-based audit approaches, audit frameworks, and IIA Standards (IPPF). Able to lead reviews of audit processes and methodologies
2. Quality Assurance and Improvement Program (QAIP): Ability to plan, execute, and report on quality assurance reviews to assess conformance with internal standards and drive continuous improvement initiatives
3. Governance, Risk & Control (GRC): Deep understanding of corporate governance principles, risk management practices, and internal control frameworks. Able to assess and enhance governance mechanisms
4. Issue Tracking and Audit Follow-up: Skilled in managing audit issue databases, evaluating evidence for closure, and tracking resolution status across departments and functions
5. Audit & Risk Committee Secretariat Function: Proficient in coordinating ARC deliverables, curating reports, reviewing submissions, and advising on key risk and audit matters for senior stakeholders
6. Regulatory and Compliance Knowledge: Familiar with regulatory expectations, compliance requirements, and public-sector audit considerations. Able to assess and interpret new guidelines impacting audit scope
7. Investigation and Special Reviews: Competent in handling sensitive or high-impact special reviews and investigations, including root cause analysis and confidential stakeholder engagement
8. Audit Tools and Systems: Proficient in using audit management systems (e.g., Teammate, Pentana), issue tracking tools, and document collaboration platforms (e.g., CONVENE, SharePoint)
9. Stakeholder Engagement and Advisory: Strong interpersonal skills to communicate audit findings, lead discussions with senior management, and provide consultative advice on governance and control issues
10. Policy and SOP Development: Experienced in drafting, reviewing, and updating internal audit policies, SOPs, and frameworks to strengthen operational consistency and quality

Behavioral Competencies

1. Integrity and confidentiality
2. Leadership and supervisory
3. Teamwork and collaboration
4. Professional Skepticsm
5. Stakeholder management
6. Analytical thinking and detailed oriented
7. Problem solving
8. Adaptability

Candidate must be willing to work in Cyberjaya.

Permanent position with six-month probation period