Associate - ETRC (Governance, Risk and Compliance) (Petaling Jaya)
As the pace of digital continues to accelerate, organizations are expected to make faster decisions and move from ideation to revenue with speed. In the race to harness emerging technologies faster than the competition, organizations are sidestepping the IT function and neglecting governance, which can lead to significant costs, risks and diminished value of IT investment. It is becoming ever more apparent to Board members and senior management alike that emerging technology risk is one that must be understood and managed effectively.
At KPMG’s ETRC, we help our clients to bridge the gap between company leadership and the increasingly complex requirements being placed on companies by regulators and international standards alike. We help our clients to establish a strong governance and compliance framework that embraces disruptive technologies and encourages innovation while ensuring risks are identified and managed. We believe this is a critical success factor for any organization to survive and thrive in this digital era.
- Work closely with the Director and Associate Director to deliver exceptional work and assist in managing day-to-day operations matter
- Deliver regulatory/industry standard compliance assessments, risk control assessments and supply chain & third-party security assessments, including the identification of areas for improvement, development of remediation action items and providing awareness training
- Support the team in various cyber risk related engagements including security strategy, policy and architecture, information privacy and governance, certification and compliance, business and technology resilience and security testing
- Assist to gather information to help the Manager and Associate Director to communicate technical engagement findings in business terms to senior management
- Identify performance improvement opportunities for internal team and clients
- Play a role in continuously assessing staff/security system capabilities to meet business demands.
- Able to develop and revise policies, processes and procedures to provide a standard security practice and increase team effectiveness
- Collaboration with other KPMG service lines to identify synergies in offerings
- Build and maintain relationships with existing and prospective clients, and develop / improve your network of business contacts
- Remain up-to-date on the latest cybersecurity threats, vulnerabilities and regulatory requirements relating to existing and emerging technologies such as Blockchain, Artificial Intelligence (AI), Internet of Things (IoT) and Cloud Computing
Qualifications and Education requirements
- A recognized university degree in technology, engineering, or business studies with information systems major/minor from an accredited college / university along with deep interest in technology risk, security and IT governance will be considered
- Professionally qualified preferred (e.g. CISSP, CRISC, CISA, CISM, CGEIT, PMP or other relevant qualifications)
- Relevant experience in technology audit, risk management, regulatory compliance
- Experience working in the Big Four is an added advantage
- Excellent written and verbal communication skills in English
- Able to document technical information for executive level reporting and presentation
- Strong interpersonal skills with a demonstrated ability to gain the confidence and respect of senior level executives
- Strong client services orientation and accustomed to taking an active role in executing client engagements
- Strong analytical and management skills
- Strong technical knowledge in operating systems, networking, applications, and a good understanding of security issues
- Independent, self-motivated, organized, and results oriented individuals capable of handling multiple tasks and achieving tight deadlines
- A client centric mind-set, understanding of IT within a Business context is desirable
For further information, and to apply, please visit our website via the “Apply” button below.
Candidates must be resident in Malaysia, or have the right to work in Malaysia.