Job Openings at SIAO

Jobe Code: SIAOGRD008 

Job Objective

• To ensure implementation, documentation, assessment and monitoring of internal control framework, including key risks in order to ensure that the company has adequate controls to prevent unintentional and intentional errors in financial reporting, processes and business operations.

Reporting Relationships

• Functionally reports to: Board Risk and Audit Committee and Managing Director
• Administratively reports to: Managing Director

Duties & Responsibilities

• Oversee the management of market, credit, operational and other variants of risk that the institution may be exposed to by ensuring that controls are implemented to mitigate these risks.
• Coordinate with business units to implement controls considered adequate to mitigate risk.
• Coordinate with business units in the implementation of Risk and Control Self-Assessment (RCSA) and preparation of a risk register that covers all risks that the company is exposed to.
• Follow up with the business units on outstanding action items regarding controls noted during the RCSA and in the risk register.
• Perform a comprehensive risk assessment of the organization, at least, on a quarterly basis and report findings to the Senior Management and the Board Risk and Audit Committee
• Maintain a register for operational losses, near misses and potential losses and recommend action plans to prevent reoccurrence to the Senior Management and Board Risk and Audit Committee
• Monitor key risk indicators for all business units and report findings on a quarterly basis to the Board Risk and Audit Committee.
• Recommend risk appetite statements to Senior Management and the Board Risk and Audit Committee for further recommendation to the Board of Directors.
• Establish procedures for timely identification of emerging risks that may affect the business
• Deliver adequate and timely reporting on the internal control framework and control deficiencies to ensure appropriate communication, documentation, escalation to Management, and audit committee.
• Actively seek standardization and automation, apply and implement best practices for managing internal controls and deploy innovative technology where possible to enhance and continuously improve the design and operating effectiveness of the controls, documentation, assessment and review procedures.
• Lead the process for internal control reviews across the GRDS Units and branches.
• Actively engage with internal and external auditors to ensure consideration and resolution of all relevant risks and audit findings.  Perform annual walkthroughs over key financial processes (Financial Reporting, Fixed Assets, Intercompany, Inventory, Order-to-cash, Procure-to-Pay, Payroll, Pension, Tax, Treasury and IT).
• Propose constructive and practical improvements in terms of minimizing risks as a result of these walkthroughs and testing. Follow implementation on corrective actions.
• Perform data analytics procedures on purchases, and expense reports.
• Formulate policies and procedures to improve internal controls, compliance and efficiency.
• Develop and conduct adequate training and prepare related information material on the internal control objectives, approach, and methodology to colleagues on a regular basis to build knowledge and understanding of risks and control.
• Execute, document and report any ad-hocs audits or investigation as required by Senior Management.
• Designing and implementing an overall risk management process for the organisation, which includes an analysis of the financial impact on the company when risks occur.
• Risk reporting tailored to the relevant audience. (Educating the board of directors about the most significant risks to the business; ensuring business heads understand the risks that might affect their departments; ensuring individual Staff members understand their own accountability for individual risks).
• Explaining the external risk posed by corporate governance to stakeholders.
• Creating business continuity plans to limit risks.
• Conducting policy and compliance audits, which will include liaising with internal and external auditors.
• Any other duties as required by the Managing Director

Requirements

• Bachelor's Degree
• 8 - 10 years experience.

go to method of application »

Job Code: SIAOGRD008

Job Objective

• To ensure adequate control on IT operational processes, monitor and control access to information assets, to ensure adequate controls and prevent unintentional and intentional errors in financial reporting, processes and business operations.
• To identify, measure, manage and report risks. Helping to develop processes to better evaluate business-specific risk monitoring important as well as critical risk issues. Conducting risk and compliance assessments.

Responsibilities

• Compile Database Access control requirements, procedures, and monitoring compliance with them.
• Support Internal Auditors, Internal Control and Financial Control Team with their daily review on Accounts/Transactions.
• Create Schedule Jobs for monitoring GRDS's daily processes using Oracle and ACL.
• Develop Scripts/SQL queries for generating EOD/EOM/EOY reports.
• Application Testing, API Testing (Swagger, Postman, Azure Microservices etc.)
• Daily Application Server checks for unapproved Changes and its potential impact on security, capacity, release management and service continuity plans.
• Ensuring that controls are implemented to mitigate market, credit, operational and other variants of risk that the institution may be exposed to.
• Coordinate with business units to implement controls considered adequate to mitigate risk.
• Coordinate with business units in the implementation of Risk and Control SelfAssessment (RCSA) and preparation of a risk register that covers all risks that the institution is exposed to.
• Follow up with the business units on outstanding action items regarding controls noted during the RCSA and in the risk register.
• Monitor key risk indicators for all business units and prepare quarterly report.
• Establish procedures for timely identification of emerging risks that may affect the business.
• Be part of the process for internal control reviews across the business units, operations units and branches.
• Actively seek standardization and automation, apply and implement best practices for managing systems controls and deploy innovative technology where possible to enhance and continuously improve the design and operating effectiveness of the controls, documentation assessment and review procedures.
• Actively engage with external consultants during Enterprise-Wide Vulnerability Assessment and Penetration Testing VAPT and other IT audit engagements.
• Performing risk assessment: Analyzing current risks and identifying potential risks that are affecting the company.
• Ensure that controls that meet business requirements are embedded at all levels of System Development/Acquisition Life Cycle (SDLC).
• Ensure that changes within the organization are controlled to meet the business requirements of the organization.
• Ensure segregation of duties in all business systems and IT infrastructure by enforcing maker checker controls for greater accountability.
• Coordinate and collaborate with various departments within the organization to formulate, implement and disseminate company-wide policies and standards ensuring confidentiality, integrity and availability of information assets.
• Any other duties as required by the Head, Risk and Internal Control.

Skills & Qualifications

• A minimum of B.Sc. from a recognized university
• A minimum of three (3) years cognate experience in the financial industry (work experience in the Capital Market is an added advantage)
• Analytical with auditing and investigation skills
• Strong communication and interpersonal skills
• Strong policy and regulatory interpretation skill and implementation capability
• Attentiveness to details
• Ability to perform under pressure
• Strategic thinker with the ability to translate strategy into actionable plans