Internal Audit Manager
Saudi Electricity Company
Total years of experience :17 years, 10 Months
• My main responsibility is to manage IT assurance engagements in order to provide independent, objective evaluations around the effectiveness of risk management practices, internal controls, governance processes and to address performance improvement opportunities associated with the design and operation of information systems and IT-enabled business processes.
• Successfully manage planning and conducting several IT risk-based audits and consulting engagements by understanding business objectives and ensuring the scope of the engagement is appropriately adjusted to reflect the areas of concern raised by management to identify and assess risks, appraise the effectiveness of their mitigating controls
• Prepare and present the final audit report on the adequacy and effectiveness of internal control structure, along with risk impact and practical recommendations to improve the effectiveness and efficiency of a control or process.
• My role involves leading and supporting a team of 4 staff, and evaluating them based on their performance.
• Develop planned and ad-hoc risk-based audit projects to provide the Sr. Management with objective assessments of the design and operating effectiveness of the Technology related internal controls over the financial reporting system in operation, in order to meet regulatory requirements of Sarbanes-Oxley (SOX) act.
• Identify and report on all significant technology related control weaknesses and made recommendations as needed in accordance with company policies and procedures.
• Work closely with process owners to review new process and systems initiatives from a controls perspective and systems design
• Communicate audit results and prepare written documentation/reports (IBM Open-pages) as it relates to SOX and other internal audit projects, disclose all deficiencies to senior management and worked with business process owners to remediate deficiencies.
• Interact with management to ascertain the progress of the improvement activities defined according to auditing results and provided periodic updates on the status of the outstanding audit findings.
• Execute IT audit controls testing (IT General controls and Applications Controls).
• Draft IT audit report and discuss audit findings and recommendations with client’s management.
• Complete key documents required to close audit findings and perform the required testing including the completion of test work papers.
• Use audit management system (teammate and my-client) to house audit programs and workpaper files which enable real-time exchange of information among members of the engagement team.
• Implement Oracle financial modules (General Ledger, Accounts Payable, Accounts Receivables, Fixed Assets and Cash Management) as a part of e-business suite steps in the multi-org setup.
• Assist in scoping the business requirements and recommending technical solutions.
• Involved in developing the implementation approach and managing the impact on all business areas.
• Participate in all aspects of managing the project from business analysis to plan management, stakeholder engagement and risk management.
• Develop Conference Room Pilot (CRP) tests at client’s location for further fine tuning of the system to ensure the client’s objectives are achieved.
• Develop training materials and deliver workshops / presentations to key and end users.