In today's rapidly evolving financial services landscape, internal auditors must embrace change to stay relevant. As highlighted by the organisers of the inaugural Bank Audit Conference 2024, the future of internal audit depends on agility, innovation, and a proactive approach to emerging risks. Auditors are key players in ensuring compliance with strict regulations governing data protection as well as cybersecurity. They must adapt and leverage technology to effectively assess and monitor adherence to these standards.
Wednesday, 6 March 2024
Strengthening Resilience: Integrating Cybersecurity and Data Security within the Internal Audit Framework
- Internal Audit Landscape for Banking Sector
- AI and Cybersecurity - what should Internal Audit look out for?
- Combating Data Breaches - addressing data security risks in your organisation
- Internal Audit Modernisation
Speakers:
- Tang Hong Wee, Director, Deloitte Malaysia
- Karthik Sundar, Director, Deloitte Malaysia
- Chua Kim Hong, Director, Deloitte Malaysia
- Jayner Tan, Senior Manager, Deloitte Singapore
Thursday, 7 March 2024
Ensuring Regulatory Compliance: The Vital Role of Internal Auditing
- How Internal audit functions help to adhere to regulatory frameworks
- Effectiveness of internal auditing in ensuring compliance
- Governance and risk management
Moderator:
- Justin Ong, Financial Services Industry Leader, Deloitte Malaysia
Speakers:
- Datuk Mohd Nasir Ali, Chairman, Independent Non-Executive Director, Minority Shareholders Watch Group
- Mohd Zabidi Md Nor, Director, Banking Supervision, Bank Negara Malaysia
- Sahlawati Mustafa, General Manager, Regulatory Services Division, Federation of Investment Managers Malaysia
- Anthony Fernandez, General Manager, Intermediaries, Intermediary and Fund Supervision
Speakers Profiles
Justin Ong, Risk Advisory Leader, Deloitte Malaysia
Justin is the Financial Services Industry Leader and Risk Advisory Leader of Deloitte Malaysia, based in the Kuala Lumpur office. In his role, he enjoys engaging with key stakeholders in the financial services ecosystem (regulatory bodies, industry players, and talents) by bringing the latest news and advice to achieve a progressive, sustainable, and resilient future.
Over the past decades, he has worked with more than 50 regulatory bodies and financial services institutions in the regions, across Asia Pacific (i.e., Malaysia, Singapore, Thailand, Indonesia, Cambodia, Myanmar, Laos, Vietnam, Hong Kong, Australia), Europe, and Africa. He supported Boards and C-suites in their transformation program, focusing on digital, governance, risk management, compliance, and audit related matters.
In addition, he is an active volunteer in CFA Institute and CFA Society Malaysia, where he has served in various leadership positions since 2015.
Tang Hong Wee, Director, Deloitte Singapore
Hong Wee is a Director with the Risk Advisory practice of Deloitte. He has over 12 years of working experience in the field of IT audit and internal audit in various industries.
During his time in Deloitte, Hong Wee has also been exposed to various Technology Review, Governance, Risk and Control (GRC) and Data Analytics projects. Hong Wee has been involved in multiple IT audit and advisory projects for integrated resort clients, public sector clients, financial Institutions, and MNCs, with a specialisation in SAP audits. In some of these engagements, Hong Wee has also assisted the Internal Audit teams with the development of IT audit plans, as well as Risk Assessment frameworks.
Jayner Tan, Senior Manager, Deloitte Singapore
Jayner is a Senior Manager with the Risk Advisory practice of Deloitte. Based in Singapore, she has more than 11 years of experience in the field of IT audit and has served various industries namely public, financial, gaming, telecommunications, aviation, and education in the country. Her key areas of expertise include IT controls assurance, business cycle reviews, which includes logical, data computation, application and operating system reviews, etc.
Jayner specialises and serves the government public sector client in Singapore and manages the FY16 to FY23 IM8 / IM(ICT&SS), where Deloitte Risk Advisory was engaged by GovTech Singapore to perform the IM8 audit on a total of more than 80 government agencies to evaluate their compliance against the IM8 Policies, Standards and Circulars. In a year away from Deloitte, Jayner was an Internal IT Auditor for a financial services institution, performing IT audits for IT systems.
Karthik Sundar, Director, Deloitte Malaysia
Karthik is a Director with the Risk Advisory practice of Deloitte, known for his expertise across industries like oil and gas, healthcare, and financial institutions. He specialises in strategic cyber security, system architecture planning, and technology analysis, enhancing cyber resilience and operational efficiency. Karthik has led critical projects, including penetration testing and red team assessments for major Malaysian entities, and has developed frameworks for cyber threat response and identity management.
His work in aligning IT and OT system architectures with business goals, coupled with his ability to bridge technical and executive teams, makes him a key player in cyber security and technology strategy. Karthik's leadership ensures the delivery of customised technology solutions and drives significant improvements in security protocols and system architecture.
Chua Kim Hong, Director, Deloitte Malaysia
Kim Hong is a Director with the Risk Advisory practice of Deloitte. He has more than 18 years of experience in risk and control assurance review, serving clients from various industries such as banking and insurance. His key areas of expertise include IT audit, data analytics, and regulatory compliance reviews, e.g. Bank Negara Malaysia RMiT.
Thought Leadership
Internal Audit 4.0
Our updated IA 4.0 framework brings three new features to the forefront. By aligning IA’s outcomes with the organisation’s purpose, helping accelerate organisational change and learning, and further embracing digital, we believe IA can upgrade and maximise its impact and the value it delivers.
Continuous Control Monitoring & Data Analytics
As the landscape of IA evolves with the adoption of continuous control monitoring and data analytics, the internal auditor of the future will become fully data-enabled. AI and machine learning are being used to detect risks and automate process outcomes testing, strengthening the third line.
Risk Management in Technology
In the digital age, financial institutions encounter common challenges such as cyber threats, data security and privacy, third-party risk management, cloud adoption security, and compliance fatigue. Adopting a holistic approach to Risk Management in Technology is crucial for developing robust defenses and safeguarding assets.
Climate Risk Management
Internal audit has a role to play in responding to this surge in demand for better transparency. Understanding the individual components of climate risk and where they intersect is crucial in understanding the unique requirements for examining the veracity and completeness of reporting.