Job Title Group Head, Internal Audit, Risk and

Compliance

Department Internal Audit, Risk and Compliance
Unit N/A
Reports to (Direct) Reports to (Indirect)
Board of Directors Group Chief Executive Officer
Direct Reports Indirect Reports
● Risk and Internal Control Manager
● Compliance Manager
● Audit Manager

N/A

Internal Interactions External Interactions
●
Heads of Departments

● Regulatory Bodies
● External Auditors
● Consultants

Job Summary
The Group Head, Internal Audit, Risk and Compliance has overall responsibility for the Internal Audit, Risk
& Compliance function. The position is responsible for ensuring internal audit, risk management, and
compliance activities are closely aligned with global best practices in executing the duties across the
Company’s business and financial operations. The role holder will work to ensure roles, responsibilities, and
results are efficiently coordinated and optimised within the organisation.
Scope and Responsibilities
Internal Audit
 Lead Internal Audit’s change initiatives by implementing action plans related to risk assessment and
annual audit planning, audit execution, audit reporting, audit staff recruiting and development, audit
technology, and Board reporting.
 Oversee the execution of individual audits defined in the audit plan ensuring the highest level of service
quality and client satisfaction.
 Obtain approval of the risk-based annual audit plan from the Board.
 Issue all Internal Audit reports ensuring the reports are clear, concise, identify root causes with practical
solutions, and ultimately provide value to management.
 Meet regularly with the Board to report the status of Internal Audit’s ongoing monitoring activities,
educate/inform the Board of emerging risks and/or exposures (whether internal or external to the
company) that should be considered, and serve as a “thought leader” with respect to risk management
and internal control best practices.
 Manage the process to track, follow-up, and ultimately close all open audit issues leveraging the Board, if
necessary.
 Oversee Internal Audit’s participation in critical business and technology initiatives and projects
ensuring that the audit’s perspective is effectively voiced, and appropriate controls are designed and
implemented on a proactive basis.

 Maintain audit technology platform leveraging support from the information systems group as needed.
 Coordinate the activities of external auditors including how best to leverage the work performed and
results produced from Internal Audit’s work.
 Actively participate in executive management meetings and/or committees to ensure that Internal Audit
is well-informed of key business developments that could have an impact on audit priorities and/or
plans.
 Ensure that Internal Audit is performing its work in accordance with established professional standards
and remain abreast of emerging trends and best practices that can be incorporated into the function.
Risk Management and Compliance
 Facilitate development of an appropriate risk strategy and appetite of the organisation.
 Lead the annual risk assessment and planning process to develop the risk-based audit plan and ensure
the plan is responsive to and aligned with Mandilas’ risk profile.
 Proactively inform senior management of significant risks or exposures related to internal controls,
compliance, and/or governance requiring prompt attention.
 Facilitate continuous identification and periodic assessment of business risks in the operating
environment and update the risk registers.
 Monitor and report on key risk indicators (KRIs) and implementation of risk mitigation strategies.
 Design and implement an Internal Control Framework.
 Manage and oversee internal control activities.
Others
 Maintain the whistleblowing channels of the Company and provide periodic reports to the Board.
 Conduct investigations on reported cases of fraud and misconduct and prepare investigation reports.
 Work with Human Resources to develop and implement a sanctions grid.
 Work with business functions to identify process gaps arising from weak or inadequate business process
documentation.
 Create and implement policies to maintain a sound ethical culture within Mandilas.
 Serve as the key point person on all regulatory exams and other third-party audits.
 Ensure company-wide policy/procedure/regulatory compliance.
 Maintain an efficient working relationship with relevant external auditors and regulators e.g. SON, etc.
 Make recommendation for policy amendments based on emerging issues/risks.
 Monitor and evaluate the performance of team members.
Skills and Competencies
Technical Behavioural
Business process and control analysis Leadership and people management
Policy and regulatory knowledge interpretation and
application Stakeholder management
Audit planning, execution & reporting Communication (verbal and written)
Enterprise risk management
Project management

Policy and regulation implementation
Compliance monitoring
Financial Reporting
Education and Experience

Education

 Bachelor’s degree in accounting, Finance or any
other related field.
 Relevant postgraduate degree and or
professional qualifications such as CIA, QIAL,
ICAN, CRMA, ACA, ACCA etc.

Experience

 Minimum of ten (10) years’ relevant experience
with at least three (3) years’ internal audit
experience at managerial level.