• Mandatory of Bursa Malaysia’s Listing Requirements
• Strengthens governance and accountability
• Identifies process inefficiencies and control weaknesses
• Supports risk-based decision-making
• Increases stakeholders’ confidence

We deliver end-to-end internal audit services tailored to your organizational structure, industry, and risk profile:

1. Annual Internal Audit Planning

• Develop risk-based internal audit plans aligned with your business strategy
• Stakeholder engagement to identify key risk areas
• Audit calendar preparation and prioritization

 

2. Operational & Compliance Audits

• Evaluate internal controls across departments (e.g., finance, procurement, HR, IT, etc.)
• Assess compliance with internal policies, laws, and Bursa/SC guidelines
• Recommend practical, action-oriented improvements

 

3. Risk Assessment & Control Evaluation

• Identify and assess enterprise-wide risks
• Evaluate effectiveness of control mechanisms
• Advise on mitigating controls and risk response strategies

 

4. Corporate Governance & Regulatory Reviews

• Assess adherence to Malaysian Code on Corporate Governance (MCCG)
• Review board and committee structures, charters, and disclosures
• Assist with Section 17A MACC Act (adequate procedures)

 

5. Follow-up Audits

• Monitor and report on implementation status of past audit recommendations
• Assist management in tracking risk mitigation progress

 

6. IT & Cybersecurity Audits

• Evaluate IT general controls (ITGC)
• Review data security, system access controls, and business continuity planning
• Support compliance with PDPA, AMLA, and eKYC where applicable

 

7. Special / Ad-hoc Audits

• Investigation audits for fraud, misconduct, or whistleblower claims
• IPO readiness audits or control maturity assessments
• ESG & sustainability compliance audits

• Independent, objective insight for board and audit committees
• Risk-based, business-aligned approach
• Practical recommendations that enhance operations efficiency and effectiveness
• Reports that assist in executive decisions and regulatory reporting
• Assurance that risk management and governance practices are working as intended

• Public-listed companies across sectors: manufacturing, property, construction, fintech, logistics, trading, F&B, automotive and more
• Group structures with multiple subsidiaries or regional operations
• Audit Committees looking for strategic, risk-focused assurance

We ensure full alignment with:

• Bursa Malaysia Listing Requirements
• Malaysian Code on Corporate Governance (MCCG)
• MACC Act (Section 17A Corporate Liability)
• Securities Commission Malaysia (SC) Guidelines
• Industry-specific regulatory standards

Our audit team is led by highly experienced professionals, including Dato’ Josephine Low, Head of Risk Management and Internal Audit at L&Co PLT.

With over 25 years of senior management and audit experience—including roles as Chief Internal Auditor and Chief Executive Officer—Dato’ Josephine has deep industry insights and practical knowledge that enable her to help businesses identify risks, improve efficiency, and ensure full compliance.

 

Her areas of expertise include:

• Internal Auditing, Risk Management & Section 17A Corporate Liability
• ESG Implementation
• IPO Preparation & Internal Control Review
• PDPA, AMLA & eKYC Compliance and Reviews
• HRDF Accredited Trainer

 

She brings strong strategic insight into governance, risk and control, helping businesses enhance resilience and sustainable development. She also supports organizations in establishing whistleblowing programs, fraud prevention systems, and ethical governance frameworks.