The Internal Controller and Risk Manager is responsible to ensure compliance with Internal Control and Risk Management , and will be in charge of monitoring, promoting and supporting the deployment of the Internal Control system and Risk Management process within your scope.
Design /implementation and effectiveness of the Internal Control system: Provide the 1st Line of Defense (operational management, process owners) with adequate support in the design, implementation and evolution of the Internal Control system. Provide expertise and insure the implementation of segregation of duties, access rights management, compensating controls, delegation of authority, transaction pre-approval process, security of payments etc. to ensure compliance with local regulation, AL Blue Book including the Internal Control Manual and cluster/ hub guidelines and procedures with particular attention on transforming projects (e.g. new ERP, BSC or other organizational changes…). Coordinate with other teams from 2nd & 3rd Line of Defense (Finance, Digital Security, International Trade Compliance, Internal and External Audit...) to design, develop, implement and monitor processes supporting internal control system, relying on IT and reporting controls
Internal Control assessment and reporting: Monthly reporting checks, follow up of Group KPI's and Key Controls as per Cluster requirements, report to the Cluster on a quarterly basis on IC action plans and Post audit action plans. Perform ERP control testing and control enhancement in order to streamline the internal control, removing redundant or non- effective controls. Evaluate IT general controls and access rights ensuring the respect of SOD principle and adequate controls relevant to the Information Systems environment. Coordinate the yearly Internal Control self-assessment campaign (Operational SAT on 26 core controls + 20 Key Questions). Evaluate the proper design and execution of controls through a testing program. Monitor the design, update and implementation of the Internal Control improvement Action Plan, to correct deficiencies identified through Self-Assessment, Internal & External audits, consistently with the yearly orientations and priorities communicated by Group/Hub/Cluster IC and ensure that the Internal Control assessments and objectives are presented to the Board at least once a year.
Internal Control promotion: Raise management and employee's awareness, provide training on Internal Control core controls and procedures within your organizational scope, Contribute to and benefit from IC network with other Entity/Cluster/Hub Internal Controllers, to share best practices and work on common projects. Promote best in class process and controls at all organizational levels
Contribute to build a dynamic ,updated, shared risk vision including the corruption risk and prioritization of actions that must be consistent with that risk vision. Coordinate the management process and all team meetings where risk map is updated, progress on mitigating action plans followed up and consolidating the RM package to be reported to the group RM. Supervises, challenges, consolidates the risk management updates.
Desired Skills and Experience
Knowledge and Know-how specific to the job
Learn how to get a job in any industry you want. Read 72 Hours to The Job You Love
Join our happy subscribers