129 Compliance Audit jobs in Malaysia

1.Plan and execute internal audits to assess internal controls, risk management, and compliance with company policies and regulations.
br>2. Identify process gaps and recommend improvements to enhance operational efficiency and control effectiveness.

3. Prepare audit plans, perform risk assessments, and develop testing procedures.

4. Document audit findings and work with stakeholders to implement corrective actions.

5. Support continuous improvement initiatives using Lean and other methodologies.

6. Ensure compliance with relevant laws, regulations, and industry standards.

7. Report key audit findings and performance metrics to senior management.

Job scope:

Support Regional Control activities for Asia-Pacific region.

These mainly encompass execution of internal audit activities, analyzing regional financials for management reporting and assisting in other regional support activities.

Internal audit activities

• Provide assistance on financial and compliance audit
• Support in risk assessment and development of audit plan.
• Assist in execution of audit procedures for subsidiaries of the Group in the Asia-Pacific region.
• Prepare reports and summaries of procedures performed.

Regional support activities

• Prepare management report on the results of companies in the Asia-Pacific region
• Support tax activities in the region

Requirements:

- Degree in Finance, Accountancy, Economics or related discipline

- Min 3 years in compliance &/or audit in a regional setting

- Open to candidates with external audit experiences & with some accounting operation experiences

- Require to travel frequently to countries such as USA, India and APAC region (Have to travel alternate month)

Interest applicants, pls email updated resume to

Jessie Hoe Huey Miin

CEI Reg No. R1103861

EA Lic: 99C4599

#J-18808-Ljbffr

1. Develop and implement a comprehensive continuous improvement strategy, focusing on process optimization, cost reduction, and operational efficiency.
2. dentify areas for improvement and lead cross-functional teams in process improvement projects. br>3. Utilize lean and methodologies to drive operational excellence.
4. Foster a culture of continuous improvement throughout the organization.
5. Plan and execute internal audits to evaluate the effectiveness of internal controls, compliance with policies, and adherence to regulatory requirements.
6. Prepare audit plans and programs, including risk assessments and testing procedures.
7. Document audit findings, provide recommendations, and work with stakeholders to implement corrective actions.
8. Ensure compliance with industry standards, laws, and regulations.
9. Generate detailed reports and presentations on audit and continuous improvement activities.
10. Communicate findings, insights, and recommendations to senior management.
11. Track and report on key performance indicators related to continuous improvement efforts.

At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.

We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways.

Are you curious about being part of our growth story while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.

• The execution of the overall IM Safety, risk and Security Policies, Procedures, Standards and Plans.

• The provision of on-going support to GSRS Advocate staff in the holistic delivery of the IM safety, risk and security requirements in assigned businesses.

• Assisting IM leadership in developing and implementing a coherent approach to safety, risk and security at a Regional level.

• Counselling business units on the management of safety, risk and security in line with IM Policies, expectations and protocols by providing the tools to deliver Group wide safety, risk and security solutions.

• Provide advice and support to management in the event of a security emergency and volatile periods such as civil unrests, terrorist attacks and kidnap. Deliver pre-emptive advice on risk reduction strategies for predicted periods of concern or during major events that could disrupt business.

• On a regional or area specific basis, work with businesses to ensure compliance with governmental safety and security statutory requirement, code, regulations or requirements.

• Provide advice on security design and strategy for implementation of technical security measures for current or proposed critical and major capital projects.

• Assisting the business in regular self and external assessment in order to develop and prioritise risk and mitigation strategies and provide assurance.

• Support the Commercial & Operational teams with customer facing audits relative to the GSRS core disciplines.

• Complete internal inspection and audits based on the GSRS core disciplines Internal Department Audits.

• External Certification Audits – Attend or support these as needed based on the ISO 45001 and 22301 certifications.

• Global Safety Risk & Security Support - Support the GSRS function and actively participate in advocate calls/meetings.

• Support the operations/site leaders to complete site level BCP documents, tests and fire drills on an annual basis (support, not complete) Management of the environmental systems, environmental licences and corporate responsibilities.

• Work with operations/site leaders to identify GSRS advocates to support the GSRS program (max 10% per week)

• Create and maintain the GSRS advocate program across all sites/countries/clusters.

• Drive compliance to the FM training program at site level.

• Monitor and support the execution of the GSRS annual planner.

• Support operations/site leadership in the capture, analysis and submission of critical GSRS information (security survey, GSRS advocate names and training).

• Support the management of injuries and safety measures required for the return of injured employees.

• Provide timely GSRS statistics and reporting KPI's as needed (aligned to global safety dashboard reporting).

Category: Risk Management

Iron Mountain is a global leader in storage and information management services trusted by more than 225,000 organizations in 60 countries. We safeguard billions of our customers’ assets, including critical business information, highly sensitive data, and invaluable cultural and historic artifacts. Take a look at our history here .

Iron Mountain helps lower cost and risk, comply with regulations, recover from disaster, and enable digital and sustainable solutions, whether in information management, digital transformation, secure storage and destruction, data center operations, cloud services, or art storage and logistics. Please see our Values and Code of Ethics for a look at our principles and aspirations in elevating the power of our work together.

If you have a physical or mental disability that requires special accommodations, please let us know by sending an email to See the Supplement to learn more about Equal Employment Opportunity.

Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law.

To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement, CLICK HERE

Requisition: J0087067

#J-18808-Ljbffr

Kuala Lumpur, Federal Territory of Kuala Lumpur, MalaysiaRisk Management Advisor

Job Description:

Client: A subsidiary of a leading oil and gas exploration and production company.

Type of hiring: 1-3 years Contract

Responsibilities:

• The Advisor, Risk Management is in charge of coordinating Enterprise Risk Management processes to ensure that risks at all levels are fully handled and in accordance with corporate policy, regulations, guidelines, and international standards.
• Consolidate departmental risk assessments into the PLS level and collaborate with the PLS/G Section to the Corporate Office.
• Carry out the risk management plan to assist PLS/G with GRC objectives.
• Consider the commercial implications of business choices involving Production Sharing Contracts.
• In charge of the commercial, business development, and risk management functions, as well as the development of assigned projects and businesses.
• Maintain an enterprise-wide view of risks related to Corporate Direction in the businesses, i.e. E&P, related businesses, and other businesses in which the company invests, as well as recommend mitigation strategies to manage the risk to keep it within the acceptable level per clause (2), and to continuously monitor, assess, and improve the mitigation strategy in response to any changes in the business environment.
• Assist the Risk Management Function in assessing key risks and advising on other potential risks that may have an impact on the Company's continuous and efficient risk management in comparison to leading companies, as well as assign tasks related to company risk management for the Risk Management Function to perform.
• Report key risk and results of risk management to Management on a regular basis, and promptly notify all parties involved of any significant risk management events to Corporate.

Qualifications:

• University degree (or similar qualification) in Business Administration or Finance, preferably with MBA qualifications.
• Minimum 10 - 12 years experience in the upstream petroleum industry, including first-hand experience with strategic planning.
• Familiarity with management accounting for business-performance measurement, setting and revisiting financial and operating targets, identifying key value drivers, and with analysis methods and tools to support business decision-making.
• Experience with Production Sharing Contracts.
• Exposure to oil and gas exploration, development, and production activities in an operating environment.
• Strong interpersonal and communication skills and demonstrated leadership abilities.
• Proficient in the English language.
• Working knowledge of Microsoft Office e.g. Words, Excel, and PowerPoint
• Only local residents will be considered.

#J-18808-Ljbffr

At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That's why we need smart, committed people to join us. Whether you're looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.
We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways.
Are you curious about being part of our growth stor?y while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.
+ The execution of the overall IM Safety, risk and Security Policies, Procedures, Standards and Plans.
+ The provision of on-going support to GSRS Advocate staff in the holistic delivery of the IM safety, risk and security requirements in assigned businesses.
+ Assisting IM leadership in developing and implementing a coherent approach to safety, risk and security at a Regional level.
+ Counselling business units on the management of safety, risk and security in line with IM Policies, expectations and protocols by providing the tools to deliver Group wide safety, risk and security solutions.
+ Provide advice and support to management in the event of a security emergency and volatile periods such as civil unrests, terrorist attacks and kidnap. Deliver pre-emptive advice on risk reduction strategies for predicted periods of concern or during major events that could disrupt business.
+ On a regional or area specific basis, work with businesses to ensure compliance with governmental safety and security statutory requirement, code, regulations or requirements.
+ Provide advice on security design and strategy for implementation of technical security measures for current or proposed critical and major capital projects.
+ Assisting the business in regular self and external assessment in order to develop and prioritise risk and mitigation strategies and provide assurance.
+ Support the Commercial & Operational teams with customer facing audits relative to the GSRS core disciplines.
+ Complete internal inspection and audits based on the GSRS core disciplines Internal Department Audits.
+ External Certification Audits - Attend or support these as needed based on the ISO 45001 and 22301 certifications.
+ Global Safety Risk & Security Support - Support the GSRS function and actively participate in advocate calls/meetings.
+ Support the operations/site leaders to complete site level BCP documents, tests and fire drills on an annual basis (support, not complete) Management of the environmental systems, environmental licences and corporate responsibilities.
+ Work with operations/site leaders to identify GSRS advocates to support the GSRS program (max 10% per week)
+ Create and maintain the GSRS advocate program across all sites/countries/clusters.
+ Drive compliance to the FM training program at site level.
+ Monitor and support the execution of the GSRS annual planner.
+ Support operations/site leadership in the capture, analysis and submission of critical GSRS information (security survey, GSRS advocate names and training).
+ Support the management of injuries and safety measures required for the return of injured employees.
+ Provide timely GSRS statistics and reporting KPI's as needed (aligned to global safety dashboard reporting).
Category: Risk Management
Iron Mountain is a global leader in storage and information management services trusted by more than 225,000 organizations in 60 countries. We safeguard billions of our customers' assets, including critical business information, highly sensitive data, and invaluable cultural and historic artifacts. Take a look at our history here.
Iron Mountain helps lower cost and risk, comply with regulations, recover from disaster, and enable digital and sustainable solutions, whether in information management, digital transformation, secure storage and destruction, data center operations, cloud services, or art storage and logistics. Please see our Values and Code of Ethics for a look at our principles and aspirations in elevating the power of our work together.
If you have a physical or mental disability that requires special accommodations, please let us know by sending an email to See the Supplement to learn more about Equal Employment Opportunity.
Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law.
To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement, CLICK HERE
**Requisition:** J0087067

At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain. We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways. Are you curious about being part of our growth story while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation. The execution of the overall IM Safety, risk and Security Policies, Procedures, Standards and Plans.

The provision of on-going support to GSRS Advocate staff in the holistic delivery of the IM safety, risk and security requirements in assigned businesses.

Assisting IM leadership in developing and implementing a coherent approach to safety, risk and security at a Regional level.

Counselling business units on the management of safety, risk and security in line with IM Policies, expectations and protocols by providing the tools to deliver Group wide safety, risk and security solutions.

Provide advice and support to management in the event of a security emergency and volatile periods such as civil unrests, terrorist attacks and kidnap. Deliver pre-emptive advice on risk reduction strategies for predicted periods of concern or during major events that could disrupt business.

On a regional or area specific basis, work with businesses to ensure compliance with governmental safety and security statutory requirement, code, regulations or requirements.

Provide advice on security design and strategy for implementation of technical security measures for current or proposed critical and major capital projects.

Assisting the business in regular self and external assessment in order to develop and prioritise risk and mitigation strategies and provide assurance.

Support the Commercial & Operational teams with customer facing audits relative to the GSRS core disciplines.

Complete internal inspection and audits based on the GSRS core disciplines Internal Department Audits.

External Certification Audits – Attend or support these as needed based on the ISO 45001 and 22301 certifications.

Global Safety Risk & Security Support - Support the GSRS function and actively participate in advocate calls/meetings.

Support the operations/site leaders to complete site level BCP documents, tests and fire drills on an annual basis (support, not complete) Management of the environmental systems, environmental licences and corporate responsibilities.

Work with operations/site leaders to identify GSRS advocates to support the GSRS program (max 10% per week)

Create and maintain the GSRS advocate program across all sites/countries/clusters.

Drive compliance to the FM training program at site level.

Monitor and support the execution of the GSRS annual planner.

Support operations/site leadership in the capture, analysis and submission of critical GSRS information (security survey, GSRS advocate names and training).

Support the management of injuries and safety measures required for the return of injured employees.

Provide timely GSRS statistics and reporting KPI's as needed (aligned to global safety dashboard reporting).

Category: Risk Management Iron Mountain is a global leader in storage and information management services trusted by more than 225,000 organizations in 60 countries. We safeguard billions of our customers’ assets, including critical business information, highly sensitive data, and invaluable cultural and historic artifacts. Take a look at our history

here

. Iron Mountain helps lower cost and risk, comply with regulations, recover from disaster, and enable digital and sustainable solutions, whether in information management, digital transformation, secure storage and destruction, data center operations, cloud services, or art storage and logistics. Please see our

Values

and

Code of Ethics

for a look at our principles and aspirations in elevating the power of our work together. If you have a physical or mental disability that requires special accommodations, please let us know by sending an email to See the Supplement to learn more about Equal Employment Opportunity. Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law. To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement,

CLICK HERE

Requisition:

J0087067

#J-18808-Ljbffr

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia Risk Management Advisor Job Description:

Client:

A subsidiary of a leading oil and gas exploration and production company. Type of hiring:

1-3 years Contract Responsibilities: The Advisor, Risk Management is in charge of coordinating Enterprise Risk Management processes to ensure that risks at all levels are fully handled and in accordance with corporate policy, regulations, guidelines, and international standards. Consolidate departmental risk assessments into the PLS level and collaborate with the PLS/G Section to the Corporate Office. Carry out the risk management plan to assist PLS/G with GRC objectives. Consider the commercial implications of business choices involving Production Sharing Contracts. In charge of the commercial, business development, and risk management functions, as well as the development of assigned projects and businesses. Maintain an enterprise-wide view of risks related to Corporate Direction in the businesses, i.e. E&P, related businesses, and other businesses in which the company invests, as well as recommend mitigation strategies to manage the risk to keep it within the acceptable level per clause (2), and to continuously monitor, assess, and improve the mitigation strategy in response to any changes in the business environment. Assist the Risk Management Function in assessing key risks and advising on other potential risks that may have an impact on the Company's continuous and efficient risk management in comparison to leading companies, as well as assign tasks related to company risk management for the Risk Management Function to perform. Report key risk and results of risk management to Management on a regular basis, and promptly notify all parties involved of any significant risk management events to Corporate. Qualifications: University degree (or similar qualification) in Business Administration or Finance, preferably with MBA qualifications. Minimum 10 - 12 years experience in the upstream petroleum industry, including first-hand experience with strategic planning. Familiarity with management accounting for business-performance measurement, setting and revisiting financial and operating targets, identifying key value drivers, and with analysis methods and tools to support business decision-making. Experience with Production Sharing Contracts. Exposure to oil and gas exploration, development, and production activities in an operating environment. Strong interpersonal and communication skills and demonstrated leadership abilities. Proficient in the English language. Working knowledge of Microsoft Office e.g. Words, Excel, and PowerPoint Only local residents will be considered.

#J-18808-Ljbffr

The Head of Risk Management is responsible for leading PayNet’s enterprise risk strategy, with a dual focus on internal risk exposure and risks arising from the broader financial ecosystem. This includes managing threats introduced by participants, vendors, shared infrastructure dependencies, and emerging systemic risks that may impact PayNet’s operations, reputation, or service and system availability.

Responsibilities

Strategic Risk Leadership

• Lead the Risk Management Division, formulating and executing a comprehensive risk strategy that encompasses both internal enterprise risks and external ecosystem risks.
• Identify and assess emerging risks that may impact PayNet's strategic direction or long-term sustainability.
• Serve as a key advisor to senior leadership and the Board on emerging risk trends, systemic vulnerabilities, risk appetite & tolerance capacities, and risk resilience & mitigation priorities.

Enterprise and Operational Risk Management

• Oversee the identification, evaluation, and mitigation of internal risks across business lines, systems, infrastructure, and key processes.
• Establish and maintain risk management systems and tools, including Governance, Risk & Compliance systems, risk & control registers, scenario models, and key risk indicators that reflect both internal controls and ecosystem dependencies.
• Drive root-cause analysis of risk events and implement lessons learned to prevent recurrence and strengthen controls.

Business Continuity and Crisis Management

• Lead PayNet’s enterprise efforts in business continuity management (BCM), crisis preparedness, and recovery planning, including key considerations on sector-wide dependencies and real-time payment operations.
• Collaborate closely with the Technology and Cyber Security teams to anticipate and evaluate emerging threats—including cyber disruptions, coordinated fraud attacks, technology failures, and reputational shocks—and design appropriate mitigation strategies.
• Collaborate with internal compliance, technology, product, and operational teams to ensure risk frameworks are robust and forward-looking.

Ecosystem and Interconnected Risk Oversight

• Identify and monitor risks introduced by PayNet’s ecosystem—banks, e-wallets, merchant acquirers, third-party processors, etc. — whose risk could potentially directly or indirectly impact the reputation and resilience of PayNet’s services.
• Develop frameworks to assess the risk profiles of participants and 3rd party providers, including incident spillover, concentration risks, and interdependencies.
• Engage proactively with ecosystem stakeholders to strengthen shared resilience, service continuity, and coordinated risk responses.

Risk Culture and Capability Building

• Champion a risk-conscious culture across the organization, embedding accountability and ownership at all levels.
• Build and mentor a high-performing risk team, equipping them with tools and methodologies to support advanced risk analytics, monitoring, and reporting.
• Promote continuous improvement in risk processes through automation, data-driven insights, and strategic alignment with business priorities.

Qualifications

• Bachelor’s degree in Risk Management, Finance, Business Administration, or a related field; Master’s degree preferred.
• 10+ years of experience in risk management, with significant experience in a leadership role.
• Strong knowledge of risk management frameworks, regulatory requirements, and industry best practices.
• Proven ability to lead large-scale risk management initiatives and manage cross-functional teams.
• Excellent communication, leadership, and strategic thinking skills.
• Risk assessment and mitigation
• Regulatory compliance
• Team leadership
• Strategic planning

Hiring organization

Payments Network Malaysia (PayNet) 200801035403 (836743-D) is Malaysia's premier payments network and central infrastructure for financial markets.

We innovate, build and operate world-class payment systems and financial market infrastructures that safely, reliably and efficiently enable the functioning and development of Malaysia's financial system as well as the economy as a whole.

Bank Negara Malaysia is PayNet's single largest shareholder, with eleven Malaysian financial institutions as joint shareholders

#J-18808-Ljbffr