Internal Control Manager

About The Position

Requirements

• Bachelor’s degree in Finance, Accounting, Business Administration, or related field
• Strong understanding of internal control frameworks, risk management, and compliance standards
• Proficiency in English
• Ability to lead projects, routine/non-routine risk assessment, internal control agenda and influence cross-functional teams
• Strong analytical and problem-solving skills
• Critical thinking and well understanding of risk and control concept
• Excellent communication and stakeholder management abilities
• High integrity and commitment to ethical standards
• Ability to communicate to senior leadership at MU, OU, Region, and Corporate level
• Ability to prepare and communicate decks to explain complex control issues and proposals to senior leadership
• Be able to work independently and under pressure
• Good interpersonal, organization, and problem solving skills
• Attention to details and strong commitment
• Minimum 8 years in internal controls, audit, or risk management within FMCG or multinational companies
• Experience of preparing and presenting to senior leaders
• Experience of SAP control concepts, including SoD, configurable controls
• Experience in IT General Controls

Nice To Haves

• CPA, CIA, or equivalent certification preferred

Responsibilities

• Control & Compliance – GCS & Supporting SOX BSR Requirements
• To lead implementation and sustainment of the PepsiCo Internal Controls Framework (GCS4.0), embed risk awareness and control consciousness as well as strengthen proportional ownership within the Market Unit (MU)
• To lead on development and roll out of Schedule of Authority for Vietnam Foods
• To develop GCS training materials, conduct GCS, SOA, and related policies training at least on an annual basis
• To facilitate Business Process Executives/Process Owners/Sub-Process Owners on an end-to-end risk assessments including fraud risks, updating control documentation, executing, monitoring and reporting the testing results for financial reporting controls classification, reviewing segregation of duties conflicts and ensuring the sufficient mitigating activities, coordinating audits, and ensuring timely remediation of control gaps
• To provide supervisory to the Business to support on the control transition of new Internal Control project especially on operation/compliance controls
• To conduct Control Capability Self-Assessment (CCSA) on an annual basis based on GCS4.0
• To partner with Region Internal Control/ Global Internal Control to lead on the self-test and independent testing plan for financial reporting controls classification as well as partner with relevant control and process owners to ensure testing is timely executed, results are shared with relevant management and any control deficiencies are timely remediated with proper root cause analysis
• To partner with relevant legal, IT and Business Process Executives/Process Owners/Sub-Process to understand the data classification within their function, labelling requirements and security protocols
• To perform an independent testing at least on an annual basis to evaluate control effectiveness and recommend for improvement
• To partner with IT/Global Internal Control to drive a strong governance over legacy applications (e.g., IT General Controls)
• To review and approve segregation of duty conflicts in SAP
• To act as a key liaison between business units, region teams, and auditors to ensure robust internal controls, regulatory compliance, and a strong governance culture across all processes
• Enterprise Risk Management (ERM)/ Non-routine risk assessment:
• To act as local Risk Governance Lead and strengthen non-routine risk assessment process for Vietnam Foods; ensure key emerging risks are identified at least on a semi-annual basis, facilitate discussions and record minutes/actions
• To summarize and share emerging risks insight to the team at least on a semi-annual basis
• To provide Enterprise Risk Management training/refresher to key management at least on an annual basis
• Automation and Simplification:
• To partner with IT and Business on driving the automation initiatives and process simplification to create efficiency
• To benchmark key risks and process controls across different markets and continue on streamline and harmonization of controls
• Documentation:
• To partner with Business to ensure the supporting documents for self-testing, independent testing, GCS Self-Assessment are properly maintained for audit trials based on local document retention requirements or Region Data Retention Policy (if any)
• To partner with business to conduct periodic reviews of process documentations to ensure the up-to-date (e.g., standard operating procedures, flowchart, Test script)
• Others:
• To maintain an up-to-date Schedule of Authority
• To support local compliance and ethics in certain compliance work e.g., speak up investigation
• To act as a point of contact for the audit e.g., corporate audit team, external auditors and coordinate with the business to support the audit requirement as well as prepare audit remediation tracker and follow up with action owners
• To provide advisory to the business related to GCS and related policies
• To update on the control testing results and internal control highlights/ opportunities in the pre-close representation letters
• To prepare other ad-hoc reports related to control on need basis
• To support Region/Global control initiatives