DEPUTY MANAGER/MANAGER, INFORMATION TECHNOLOGY AUDITOR

Join us as an IT Auditor to ensure strong IT governance, assess risks, and enhance system controls that support organisational excellence.

To lead the development and execution of the organisation’s IT Audit Framework and IT Audit Plan, ensuring effective IT governance, risk management and internal controls across all technology platforms. This role provides independent assurance on the security, reliability and compliance of IT systems, infrastructure and digital transformation initiatives to support the organisation’s strategic objectives, operational efficiency and regulatory compliance.

• Assist the Head of Internal Audit in designing and implementing the IT Audit Framework to align with the IIA Standards, COBIT and relevant regulatory requirements.
• Contribute to the development of the Annual IT Audit Plan, ensuring coverage of critical IT risks and alignment with the organisation priorities.
• Conduct risk-based IT audits covering IT governance, information security, IT operations, digital initiatives, data privacy and business continuity.
• Evaluate the effectiveness of IT general controls (ITGC), application controls and cybersecurity measures.
• Assess the risks associated with digital transformation projects, fintech adoption and system implementations.

• Plan, perform and report on IT audits with clear, insightful and practical recommendations.
• Monitor and follow up on management's corrective action plans.
• Support integrated audits (with operational and financial auditors) where IT risks intersect with business processes.

• Provide proactive advice on IT risk and control considerations for new projects, systems and policies.
• Stay updated on emerging technologies (AI, cloud computing, data analytics, cybersecurity) and assess their impact on risk exposure.
• Build strong working relationships with IT management and key stakeholders while maintaining independence and objectivity.

• Bachelor’s degree in Information Technology, Computer Science, Information Systems, Cybersecurity or related field.

• Professional certifications such as CISA, CISM, CISSP, CRISC or equivalent will be an added advantage.

• Minimum 5 years of IT audit, IT risk management, cybersecurity or technology assurance experience.
• Hands‑on knowledge of ITGC, application controls, cybersecurity frameworks and data governance.
• Experienced in preparing and presenting IT audit reports to the Board Audit Committee.
• Effectively communicates audit findings, risks and recommendations for informed decision‑making.
• Strong understanding of IT risks, controls and regulatory requirements.
• Excellent analytical, problem‑solving and communication skills.
• Ability to translate complex IT issues into clear actionable insights for non‑technical stakeholders.
• High integrity, independence and a continuous improvement mindset.

The Credit Counselling and Debt Management Agency, or commonly known as Agensi Kaunseling dan Pengurusan Kredit (AKPK), is an agency set up by Bank Negara Malaysia in April 2006 to help individuals take control of their financial situation and gain peace of mind that comes from the wise use of credit.

AKPK offers the following services to individuals, free of charge:

• Financial education on the responsible use of money and credit management skills.
• Advice on financial management.
• Debt management programme to assist consumers to regain financial control.

VISION

AKPK envisions to be a trusted and leading authority in financial wellness, empowering a financially resilient society and contributing to national socio‑economic goals.

MISSION

AKPK’s mission is to empower the community―households and SMEs―to be financially resilient via customer‑centric financial education, advisory and debt management services.

Kuala Lumpur City Centre, Kuala Lumpur, MY