Integrated Audit Specialist - IT & Operational Audit

Who We Are

Suntory is a global leader in consumer-packaged goods, renowned for producing and distributing a uniquely diverse portfolio of beverages, premium spirits, beer, wine, and wellness products throughout the world. With a history dating back to 1899, we are driven by a profound purpose: To inspire the brilliance of life, by creating rich experiences for people, in harmony with nature. At Suntory Beverage and Food, we boldly move forward together to realize the dreams of becoming a world-leading next-generation global beverage company, always together with Seikatsusha – you are an important part of this and here’s how your role helps us win.

About your role

Reporting to the VP of Internal Audit, this role supports the Regional Internal Audit function by assessing the effectiveness of business operations, internal controls, IT security, and risk management practices across the organisation. The position combines traditional operational audit expertise with cybersecurity knowledge to provide comprehensive assurance over both business processes and digital risk areas.

What You'll Do

• Plan, execute, and report on operational and cybersecurity audits in line with Suntory’s Internal Audit methodology and risk priorities.
• Conduct end-to-end reviews of key business processes—including supply chain, finance operations, sales & marketing, procurement, and manufacturing—alongside assessments of IT controls such as network security, ITGC, access management, cloud security, application controls, disaster recovery, and incident response.
• Evaluate the effectiveness of internal controls, process design, and compliance with Suntory policies, regulatory requirements, and cybersecurity frameworks.
• Perform risk-based thematic reviews, support special investigations, and assess third-party cybersecurity risks and vendor control environments.
• Collaborate with IT and cybersecurity teams to understand system architecture, identify potential vulnerabilities, and strengthen digital risk management.
• Provide practical recommendations to enhance business controls, cybersecurity resilience, and enterprise risk mitigation.
• Prepare clear audit reports and communicate findings effectively to both technical and non-technical stakeholders.

What You need to be successful

Education & Experience

• Degree in Accounting, Finance, or related field.
• Professional certifications such as CIA or CISA preferred.
• Additional certifications (CRISC, CISSP, ISO 27001 Lead Auditor) are advantageous.

• Minimum 5 years of experience in internal audit, operational audit, IT audit, or cybersecurity.
• Experience in both business process reviews and IT/cybersecurity assessments.

Functional / Technical Skills

• Strong understanding of internal controls, risk management, business processes, and cybersecurity principles.
• Knowledge of IT control environments, access management, and system governance.
• Good understanding of IFRS and risk & control frameworks.
• Willingness to travel up to 30% to support audit assignments across markets.

Our DEI Commitment

At Suntory, we recognize that diverse knowledge, perspectives, and backgrounds contribute to our collective success. We are committed to fostering a diverse, equitable, and inclusive workplace where all individuals can bring their whole selves to work every day, regardless of race, color, religion, gender identity or expression, sexual orientation, age, or any other protected characteristic.

Our recruitment and selection processes are designed to highlight what Suntory offers as an employer while allowing candidates to share their unique skills and experiences. We understand that career trajectories vary, and if you believe your experience/background can benefit our team, we encourage you to apply. We endeavor to make our interview process as inclusive as possible and offer reasonable accommodations as needed. Together, we can cultivate a workplace where everyone can thrive and propel our mission of Growing for Good.