Internal Control Officer at SIAO

Job Code: SIAOGRD008

Job Objective

• To ensure adequate control on IT operational processes, monitor and control access to information assets, to ensure adequate controls and prevent unintentional and intentional errors in financial reporting, processes and business operations.
• To identify, measure, manage and report risks. Helping to develop processes to better evaluate business-specific risk monitoring important as well as critical risk issues. Conducting risk and compliance assessments.

Responsibilities

• Compile Database Access control requirements, procedures, and monitoring compliance with them.
• Support Internal Auditors, Internal Control and Financial Control Team with their daily review on Accounts/Transactions.
• Create Schedule Jobs for monitoring GRDS's daily processes using Oracle and ACL.
• Develop Scripts/SQL queries for generating EOD/EOM/EOY reports.
• Application Testing, API Testing (Swagger, Postman, Azure Microservices etc.)
• Daily Application Server checks for unapproved Changes and its potential impact on security, capacity, release management and service continuity plans.
• Ensuring that controls are implemented to mitigate market, credit, operational and other variants of risk that the institution may be exposed to.
• Coordinate with business units to implement controls considered adequate to mitigate risk.
• Coordinate with business units in the implementation of Risk and Control SelfAssessment (RCSA) and preparation of a risk register that covers all risks that the institution is exposed to.
• Follow up with the business units on outstanding action items regarding controls noted during the RCSA and in the risk register.
• Monitor key risk indicators for all business units and prepare quarterly report.
• Establish procedures for timely identification of emerging risks that may affect the business.
• Be part of the process for internal control reviews across the business units, operations units and branches.
• Actively seek standardization and automation, apply and implement best practices for managing systems controls and deploy innovative technology where possible to enhance and continuously improve the design and operating effectiveness of the controls, documentation assessment and review procedures.
• Actively engage with external consultants during Enterprise-Wide Vulnerability Assessment and Penetration Testing VAPT and other IT audit engagements.
• Performing risk assessment: Analyzing current risks and identifying potential risks that are affecting the company.
• Ensure that controls that meet business requirements are embedded at all levels of System Development/Acquisition Life Cycle (SDLC).
• Ensure that changes within the organization are controlled to meet the business requirements of the organization.
• Ensure segregation of duties in all business systems and IT infrastructure by enforcing maker checker controls for greater accountability.
• Coordinate and collaborate with various departments within the organization to formulate, implement and disseminate company-wide policies and standards ensuring confidentiality, integrity and availability of information assets.
• Any other duties as required by the Head, Risk and Internal Control.

Skills & Qualifications

• A minimum of B.Sc. from a recognized university
• A minimum of three (3) years cognate experience in the financial industry (work experience in the Capital Market is an added advantage)
• Analytical with auditing and investigation skills
• Strong communication and interpersonal skills
• Strong policy and regulatory interpretation skill and implementation capability
• Attentiveness to details
• Ability to perform under pressure
• Strategic thinker with the ability to translate strategy into actionable plans