A&A: Director (IT Audit and Assurance)

At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve.

We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices.

Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals.

We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated, and everyone is recognised for their contributions.

• Play a major role in driving IT Audit & Advisory service to meet the target and also strengthen our service and team in order to serve our clients in various industries/sectors (e.g., Financial Services, Manufacturing, Automotive, Telecommunication, Life Style & Hospitality, Energy, Consumer Business, etc.)
• Actively identify specific demand from the business that aligns to enable the strategy, involve for advisory proposal development with tailor-made approach & client service mindset, and also manage the engagements, esp. for quality and timeliness of our deliverables
• Manage multitasks to drive concurrent engagements, prioritize respective engagement millstones, proper resource management to accommodate ad-hoc and workload volatility and constraints
• Lead / coach the team to provide both IT Audit Support to our Financial Audit team, and IT Advisory services to clients (e.g., IT General Control & Application Controls Review, IT Compliance Review, IT Governance & Security Audit, Third Party Assurance & Risk Management, Data Analytic for Auditing, etc.)
• Lead / coach the team, and demonstrate leadership roles and certain skillsets (e.g., sales & services, negotiation, project & resource management, problem-solving, communication & presentation, etc) to support our end-to-end processes of each engagement (e.g., engagement risk management, offering the service, planning/execution/reporting, billing to clients)
• Demonstrate strong knowledge and understanding of the client’s Business and IT environments, thorough understanding of Audit concepts and IT-related risks & controls
• Demonstrate strong knowledge of market trends, competitor activities, regulatory requirements, and Deloitte’s methodology, products and services to serve our clients
• Perform any other tasks or assignments

• Develop diverse, high-performing people and teams through new and meaningful development opportunities.
• Collaborate effectively to build productive relationships and networks.
• Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
• Align your team to key objectives as well as set clear priorities and direction.
• Make informed decisions that positively impact the sustainable financial performance and enhance the quality of outcomes.
• Influence stakeholders, teams, and individuals positively – leading by example and providing equal opportunities for our people to grow, develop and succeed.
• Lead with integrity and make a strong positive impact by energising others, valuing individual differences, recognising contributions, and inspiring self-belief.
• Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
• Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.

• Education background in Accounting and/or IT-related fields (e.g., Computer Engineering, Computer Science), MIS/AIS, etc)
• At least total 15 years of experience in IT GRC related fields, esp. for IT Audit & Advisory in Big4 firms or IT Audit / Risk Management / Compliance in other corporate companies (e.g., Financial Service, Telecommunication). Relevant profession certifications (e.g., CISA, CISSP, CRISC) is a must.
• Proven ability to manage multiple engagement concurrently, with focus on quality of deliverables and timeliness of the project
• High achievement drive, strategic thinking and planning, hands‑on mentality
• Experiences in review over IT process/general controls and application controls, incl. IT security configurations for each IT component (e.g., Operating System, Database, Network) is a must
• Strong understanding of Audit concept, relevant IT regulatory requirements (e.g., BOT, SEC, OIC, PDPA), IT‑related controls & standards (e.g., ISO27001, COBIT, ITIL, NIST)
• Experiences in using Data Analytic & Visualization tools would be advantage
• Verbal and written communication in both Thai and English