Senior Manager, It Risk Management & Controls (Bangkok Based)

About Agoda

Agoda is an online travel booking platform for accommodations, flights, and more. We build and deploy cutting-edge technology that connects travelers with more than 3.6 million accommodations globally. Based in Asia and part of Booking Holdings, our 6,000+ employees representing 90+ nationalities foster a work environment rich in diversity, creativity, and collaboration. We innovate through a culture of experimentation and ownership, enhancing the ability for our customers to experience the world.

Agoda is one of the world’s leading online hotel and accommodation booking platforms.

Founded in Asia and now part of Booking Holdings, Agoda offers travelers a fast, easy way to book hundreds of thousands of properties in almost every country on earth while developing new products at a rapid pace. In every department – from engineering to customer experience – Agoda provides an environment rich with creativity, collaboration, and experimentation allowing you to thrive in and to grow both yourself and Agoda.

The Opportunity and the team:

The Senior Manager of IT Risk and Controls is a critical role with a global scale. You will report directly to Agoda’s Head of Risk and Controls and lead a team of Specialists to act as a critical line of defense with respect to IT SOX compliance and broader risk management for Agoda overall. The scope of this role will include both tactical oversight of IT SOX compliance efforts day to day, as well as broader development of risk mitigation strategies for the organization as a whole.

Agoda is constantly expanding its reach through strategic innovations and data-driven experimentation. This allows us to stretch ourselves and get on (and in some cases, create) the next big waves. As a key stakeholder and enabler of the overall Agoda business, the Agoda Finance team must play a unique role in balancing risk management without stifling innovation and growth.

This role is about balance. To play this balancing role effectively, the leader we’re looking for is a curious, dynamic, and fast learner with strong business intuitions, who’s also able to spot potential risks as early as the design phase even of a new project/innovation. This leader must have the ability to gain trust from his/her various business partners to ensure a seat at the table, while also proactively put in measures to manage the associated risks. This is not a policing role, but rather one that is a team player that looks to the best outcome for everyone, including the company’s shareholders.

As the Sr. Manager of IT Risk and Controls, your business partners will span the entire range of functional areas such as Product, Information Technology, Marketing, Pricing, Partners Services, Customer Services, including various functions of the Finance team. In addition, you would be expected to navigate effectively up and down across various levels of management within departments to understand and (in many cases) assist with the IT control design framework to ensure overall SOX compliance and appropriate business risk management.

You will be a key contact person for our interactions with our parent company Booking Holdings International (BKNG). Supporting cross brand risk initiatives across the entire span of global operations. You will have regular interaction with peers both at BHI as well as at other Brands in the group including Booking.com and Priceline.

The successful candidate for this role would enjoy the immense amount of exposure including Senior Leadership Team members. In addition, you will let your people management skills shine through (and/or continue to develop them to the next level) through managing your own team of Specialists as well as influencing various business partners.

In summary, this is a perfect role for an ambitious leader who wants to master the in-and-outs of a fast-growing, innovative eCommerce company, whilst contributing a tremendous amount of impact in balancing the risks and growth of the company. Ability to see the big picture whilst also able to zoom in and out of (and manage) the details is critical.

This role is based in Bangkok, Thailand.

In this Role, you’ll get to:

• Assist in the implementation of, and ongoing compliance with the Booking Holding Group ERM Framework (Based around COSO 2017)
• Develop and deliver presentations, tailored to audience at various levels and business function regarding impact of internal controls, processes & business compliance
• Develop and maintain comprehensive documentation including flow charts, process narratives and risk and control matrices, segregation of duties matrices and any others required
• Identify controls that are currently in place, as well as any control gaps, based on identified risks
• Support Internal and External audit teams to ensure that remediation plans are effectively implemented on a timely basis
• Assist with documentation of processes by collaborating with process owners and control performers
• Ensure that M&A integration activity includes ensuring acquired companies adhere to group policies and procedures
• Analyze (and/or design) IT SOX controls supporting business processes and other compliance topics to identify risks and control weaknesses
• Define a risk screen that enables Agoda to properly analyze potential risk exposures for all new innovations; help design mitigation plans or controls mechanism
• Research and understand all relevant compliance regulations to ensure process owners are aware of anything that could impact them
• Support the chair to Agoda’s Risk Committee to develop agenda for Risk Committee meetings, develop issues log and incident reporting processes, coordinate across various risk functions at Agoda, e.g, ethics and compliance at Legal, privacy at Legal, security at IT, etc. to raise issues for Risk Committee’s attention
• Provide guidance and support to your business partners (e.g., process owners) in designing and implementing appropriate controls to strengthen the control environment and mitigate risks
• Work to mitigate and remediate identified deficiencies with the business in a timely manner
• Assist in defining the Enterprise Risk Management framework that suits Agoda’s needs; continue to adapt it to the evolving needs of Agoda
• Ensure that Agoda maintains an effective internal control environment, ensuring Agoda’s complete SOX compliance and avoiding unwarranted deficiencies
• Co-ordinate with audits for both Internal and External audit teams

What you’ll Need to Succeed:

• Certified Internal Auditor (CIA), Certified Information System Auditor (CISA), or similar designation highly desirable
• A minimum of Bachelor’s degree preferably in Accounting or Finance
• IT Sox Management experience highly preferred, E-commerce or travel industry experience a plus
• Proven success in improving risk management, preferably in a fast-moving tech environment
• Previous experience in a compliance, process, quality or risk control role; experience in setting up and operating Enterprise Risk Management a plus
• Strong Communication Skills with fluency in English (other languages a plus)
• Excellent knowledge of auditing various business operations and risk-based auditing attained through minimum of 10 years of progressive work experience
• Proficiency in MS Office (Word, Excel, PowerPoint) and Visio
• Expertise of ITGC concepts and understanding how they fit into the overall Control Landscape. In addition some experience managing IT Risk professionals either directly or via a project would be desirable
• Ability to work independently, productively and part of a team
• Thorough understanding of internal control concepts (especially SOX & COSO) and experience in applying them in various business areas/functions

It’s Great if you have:

• Professional “get it done” attitude and strong work ethics
• Good analytical skills with strong attention to detail
• High level of integrity is a MUST
• Process, problem solving and action orientated mindset
• Strong communication and relationship building skills
• Self-starter with strong sense of responsibility
• Superior influencing skills, particularly when without actual management authority
• Fast-learner
• Curious, creative and innovative, particularly in design proper controls without stiffening the business growth
• Curious, creative and innovative
• Quick thinker and confident in decision making
• Flexibility to adapt to an ever-evolving and dynamic work environment
• An eye to spot control risks with an intuition of risk prioritization

#hongkong #singapore #thailand #spain #madrid #barcelona #mumbai #newdelhi #london #newyork #bangalore #india #shanghai #jakarta #bali #tokyo #osaka #yokohama #hcmc #hanoi #dubai #abudhabi #istanbul #taipei #phuket #seoul #manila #kualalampur #rome #hungary #italy #france #dublin #ireland #budapest #hongkong #toronto #vancouver #4 #Risk#FIN

Equal Opportunity Employer

At Agoda, we pride ourselves on being a company represented by people of all different backgrounds and orientations. We prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation. Employment at Agoda is based solely on a person’s merit and qualifications. We are committed to providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics.

We will keep your application on file so that we can consider you for future vacancies and you can always ask to have your details removed from the file. For more details please read our privacy policy .

To all recruitment agencies: Agoda does not accept third party resumes. Please do not send resumes to our jobs alias, Agoda employees or any other organization location. Agoda is not responsible for any fees related to unsolicited resumes.