Information Systems Audit Manager

Company Description

Aboitiz Foods is an integrated regional food and agribusiness company dedicated to creating a high-performance culture anchored on our time-honored values of Integrity, Teamwork, Innovation, and Responsibility. Through the collective strengths of our subsidiaries, Pilmico and Gold Coin, we believe in sustainably feeding Asia’s growth from mill to meal. 

We are constantly improving and optimizing our processes by integrating the value chain around Asia. We leverage our sector expertise and capabilities to deliver quality every time. With our world-class technology and culture of constant innovation, we devote ourselves to serving you better.

At Aboitiz Foods, we embrace change and inspire innovation, leading the way in food and agribusiness solutions. Join us as we shape the future of food in Asia and build a culture where, together, we nourish the future.

https://www.aboitizfoods.com/

Job Description

The INFORMATION SYSTEMS AUDIT MANAGER effectively directs, leads and manages the information systems and technology-related audits of the Food Group including its operations and/or governance; provides reasonable assurance on the effectiveness and efficiency of controls, governance and risk management processes of business units, subsidiaries and affiliates applying applicable industry standards; and partners with the various Strategic Business Units (SBU) in enhancing/improving current business performance and future competitiveness.

Key Responsibilities: 

Audit/Risk-Management/Compliance

• Audit Planning: Develop and execute a risk-based annual internal audit plan, considering key control areas, regulatory requirements, and industry best practices.
• IT Audit Engagement :Lead the delivery of complex technology, application, infrastructure, and security audits, project / program audits and integrated audits and assess compliance with company policies, procedures, relevant regulations, and industry standards. Typical audit topics are wide ranging and may include Cloud, AI, IT governance and cybersecurity amongst others.
• Risk Management: Perform detailed testing, documentation, and analysis of processes, transactions, and systems to identify control deficiencies, process gaps, and potential risks.
• Reporting and Communication: Prepare clear and concise audit reports, highlighting observations, recommendations, and management responses, for presentation to senior management and the Audit Committee.

Business Process Improvement

• Evaluate the adequacy of process design and the effectiveness of controls in meeting business and control objectives.

Business Partnering

• Collaborates with various stakeholders across the business to add value, enhance decision-making processes, and contribute to overall organizational success

Continuing Education & People Development

• Keep abreast of regulatory changes, industry standards, and emerging information technology risks relevant to the industry by attending trainings, forums and/or conferences and assess their impact on the company's internal controls and audit approach.

Administrative

• Take part in special investigations where necessary and report to the Audit Committee with the highest level of confidentiality

Qualifications

• A bachelor’s degree in computer science, information systems, accounting, finance, or other related fields is typically required.
• Seven (7) years IT-related experience, of which minimum 5 years IT audit experience and three (3) years of supervisory or project leadership experience
• Familiarity with auditing widely used server, platform, database and end point technologies (e.g. Windows server, SQL server, Unix/Linux, SAP, etc.)
• Advanced knowledge of the Standards (ISPPIA) and audit frameworks (COBIT, COSO).
• Well-versed in the use of MS Office (Excel, Word and Power Point Presentations) and familiar with Computer Aided Auditing Tools (CAATs), preferred but not required.
• Licenses/ Certifications:
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certified Risk and Information Systems Control (CRISC)
  • Certified Internal Auditor (CIA)
  • Certified Information Systems Security Professional (CISSP) or other equivalents.

Additional Information

#LI-CG1