Rangsima Thongdee

Experience

• 

  SGV-Na Thalang Co., Ltd.

  Nov 1991 - Feb 1994

  Assistance Auditor

  Audit of Financial statementsObtain and analyze internal control structureSupervise assistances in audit team to properly perform audit

• 

  Export-Import Bank of Thailand

  Feb 1994 - Feb 1998

  Senior Staff of Audit Division

  Prepare annual audit plan and audit program for operation audit and for computerized auditObtain and analyze organization structure, internal control structure and work flowAudit the bank’s operation including credit analysis, banking operation, accounting, financial and other operationsSupervise operation and computerized audit staffs in the Division

• 

  Export-Import Bank of Thailand

  Sept 2000 - May 2002

  Senior Staff of Audit Division responsible for IT Audit

  Prepare Strategic and Annual IT Audit based on the result of risk assessment on IT Governance including general computer control and application control.Conduct Open meeting with the Auditee to communicate the audit objectives and to acknowledge their expectationUnderstand and identify the control objectives, risk and control activitiesPrepare Audit Program, conduct audit and prepare audit report using risk-based approachCommunicate finding and audit recommendation with the AuditeeFollow-up their improvement Show less

• 

  Ernst & Young Office Limited

  May 2002 - Aug 2002

  Assistant Manager

  Conduct Audit Plan with Financial Auditor to conclude IT audit scope over general computer control review (GCR)Conduct Preliminary Meeting with Client to gain understanding their environment e.g., Policy and Procedure, IT Organization, Logical and Physical Control, etc.Perform Walkthrough to confirm our understandingIdentify key control in significant area impacting confidentiality, integrity and availability of financial informationReview the control effectivenessPrepare Management Letter including the observation, implication and recommendation and Meeting with Management to clarify the issues and obtain their response Show less

• 

  Post Publishing Public Company Limited

  Oct 2002 - May 2007

  Assistant Chief Audit Executive

  Assist Chief Audit Executive in variety of assignments including assurance and consultant services. The audit assignments are emphasized on the effectiveness and efficiency of the operations with the supporting of information systems.With regard to assurance services, prepare audit program for each assignment, e.g. Information System Audit, Financial Audit, Operation Audit and etc. with risk-based approach. Lead, coach and train team in conducting audit including understand and identify the control objectives, risk and control activities. The audit procedures are prepared and adjusted according to the risks and controls identified during the audit fieldwork. Communicate finding and audit recommendation with the audit’s client. Follow-up their improvement. Internal Audit Division also aliases management in various matters as requested. This is including in the consultant services. Examples of consult projects are as follows: o Providing advice on various policies drafted, o Providing advice on Risk Management Framework to apply with the company Special Project, such as co-sourcing with Pricewaterhouse Coopers in reviewing IT risks and controls on high level, preparing annual and long-term audit plan and auditing the effectiveness of control procedures of IT Operations, Backup and Recovery, and Physical Security. Show less

• 

  CIMB Thai Bank Plc.

  Jun 2007 - Apr 2011

  Professional Practices and Subsidiaries Audit Section Head

  1. IA Development Team• Revise and improve Internal Audit Process and Procedures by embedding TeamMate Audit Management Software and data analysis tool, ACL (Audit Command Language),• Implement TeamMate Audit Management Software to suit department, and its clients, i.e. management and auditee, covering the audit risk assessment and planning, engagement execution, knowledge sharing and archiving past audit results. The activities include: o Design the configuration setting and relevant library, templates o Develop customized manual o Arrange the training, support users as well as encourage its usage• Develop Internal Audit Department’s knowledge based2. Internal Audit Service for Subsidiary Company• Manage internal audit staff to cope with high risk audit universe areas with risk-based audit year plan, covering both assurance and consulting services, as deemed appropriate,• Supervise and coach internal audit staff to execute audit engagement aiming to extend their focus areas from operating risks, particularly relevant to external and internal rules and regulation to wider coverage of COSO-Enterprise Risk Model,• Deliver audit report to Audit Committee and concerned management and follow-up for the improvement. Show less

• 

  CIMB Thai Bank Plc.[

  May 2011 - Dec 2015

  Professional Practices Section Head

  • Develop and implement the Internal Audit policy, procedures and templates• Accomplish Macro Risk Assessment (MRA) and coordinate with team heads in preparing annual audit plan as well as monitor the progress of audit plan• Prepare business plan, budget and training plan for the division with input contributed from team heads• Prepare information/presentation/reports/minutes of meeting for Internal Audit Division Head to present/submit to Management, Audit Committee, Group Audit Committee, Group Internal Audit Division, regulators, external auditors, etc. • Be a member of Audit Management Committee reviewing audit observations and rating.• Design and perform the quality assurance of audit work• Implement, upgrade, maintain and provide user support for the electronic paperwork system (TeamMate Audit Management software)• Central storage of Internal Audit Division’s MIS and reports• Coordinate with other internal auditors, and Group Internal Audit• Perform role and responsibility of Designated Compliance Officer for the Division o Prepare and update Compliance Matrix, a registration of regulatory requirement over Internal Audit Division o Sample review the audit operations to ensure complying with the regulatory requirement o Update regulatory requirement and brief DCO meeting with Compliance Department to all audit staff o Coordinate in reporting the non-compliance issue, if any. o Coordinate with Compliance Department • Perform role and responsibility of Departmental Risk Officer for the Division o Draft and brain storm with Team Heads in executing Risk and Control Self Assessment of Internal Audit Division o Coordinate in reporting the Division’s loss event and KRI o Coordinate in executing Operational Risk Management’s exercise• Perform role and responsibility of Departmental Continuity Coordinator for the Division o Maintain and update the Division’s BIA and BCP o Coordinate in the BCP and call tree test Show less

• 

  CIMB Thai Bank Plc.

  Jan 2016 - Oct 2016

  Professional Practices Department Head

  • Develop and implement the Internal Audit policy, procedures and templates• Accomplish Macro Risk Assessment (MRA) and coordinate with team heads in preparing annual audit plan as well as monitor the progress of audit plan• Prepare business plan, budget and training plan for the division with input contributed from team heads• Prepare information/presentation/reports/minutes of meeting for Internal Audit Division Head to present/submit to Management, Audit Committee, Group Audit Committee, Group Internal Audit Division, regulators, external auditors, etc. • Be a member of Audit Management Committee reviewing audit observations and rating.• Design and perform the quality assurance of audit work• Implement, upgrade, maintain and provide user support for the electronic paperwork system (TeamMate Audit Management software)• Central storage of Internal Audit Division’s MIS and reports• Coordinate with other internal auditors, and Group Internal Audit• Perform role and responsibility of Designated Compliance Officer for the Division o Prepare and update Compliance Matrix, a registration of regulatory requirement over Internal Audit Division o Sample review the audit operations to ensure complying with the regulatory requirement o Update regulatory requirement and brief DCO meeting with Compliance Department to all audit staff o Coordinate in reporting the non-compliance issue, if any. o Coordinate with Compliance Department • Perform role and responsibility of Departmental Risk Officer for the Division o Draft and brain storm with Team Heads in executing Risk and Control Self Assessment of Internal Audit Division o Coordinate in reporting the Division’s loss event and KRI o Coordinate in executing Operational Risk Management’s exercise• Perform role and responsibility of Departmental Continuity Coordinator for the Division o Maintain and update the Division’s BIA and BCP o Coordinate in the BCP and call tree test Show less

• 

  Ayudhya Capital Services Co.,Ltd.

  Nov 2016 - Jan 2018

  Vice President Internal Audit
• 

  Bumrungrad International Hospital

  Feb 2018 - now

  Division Director, Corporate Internal Audit