Ahmad Al Tawalbeh

Manage DnA Compliance portfolio, which include but not limited to: Vulnerabilities and Patching management, Config violations management, SNOW VR and SNOW CC support, DR, BCP, Incident Management, Currency report.

Builds effective professional relationships with business groups, internal/external stakeholders, and trust with regulators.
Analyses and reports on compliance data, and related data to gain insights on regulatory risk.
Identifies, assesses, effectively challenges, and oversees the satisfactory resolution of issues,
including ensuring adequate management remediation plans and validation.
Analyzes and reports compliance information to Compliance and business/group
management.
Advises first line of defense management and employees on compliance matters.

Operates effectively within a high stress environment with constantly changing expectations and regulatory & audit scrutiny.
Provides specialized consulting, analytical and technical support.

Guide technical staff (SMEs) and customer management teams through Global GTS IT Risk
Management Process. Ensure quality control is maintained through the process life cycle. SME
for assessing risks and producing risk letters.
• Perform risk assessments for old and new emerging risks by collaborating with SMEs and
customer management teams.
• Assist customer management teams with documenting and managing client IT risks using
IBM Open Pages software.
• Work with Account teams and SMEs on IT Risk Advisory Letters set to expire, update risks
ready for communication with client. Prepare new IT Risk Advisory Letters for emerging new
risks.

Performed multiple roles related to delivery of governance, security, and compliance for IBM
clients. Led development and implementation of policies and security programs, multifunctional
teams, and or project plan delivery.
• Provided subject matter expertise in areas such as logical and physical access management,
information security, incident management, issue / risk management, audit readiness, and
compliance for multiple client accounts.
• Maintained compliance by executing health checks on multiple clients midrange systems
(Windows, UNIX) using BigFix tool and for all types of storage systems on mainframes using
TRT tool.
• Supported NA Audit Focal team with internal and external IBM audits.
• Opened violation tickets for all valid deviations using IBM ticketing system (CIRATS / SIM)
and assigned tickets to Platform teams.
• Hands-on experience with common compliance standards such as SOX, SOC2, PCI-DSS, ISO,
GDPR, security frameworks (ISO 27001, NIST), and general security concepts.
Coordinated and completed projects on time within budget and scope to meet organizational
objectives. Oversaw all aspects of projects; set deadlines, assigned responsibilities, and
monitored / summarized progress of projects.
• Developed credibility and established relationships with customers.
• Designed and planned projects. Trained and supervised staff.
• Implemented strategies and discipline in areas of scheduling, quality control, communication
management, and cost control.

Implemented, managed, and maintained IT systems and networks. Maintained system efficiency and network / system security.
Planned, coordinated, and implemented network security measures for clients to protect data, software, and hardware.
Developed and tested disaster recovery policies and procedures for clients.
Developed and maintained scripts, including batch, VB Scripts, and PowerShell.
Ensured design of the system enabled all components to work properly together to serve the Development team.
Analyzed and troubleshot problems reported by system users and documented issues.
Installed, configured, and maintained various types of off-the-shelf and custom-developed applications.

Coordinated and completed projects on time within budget and scope to meet organizational objectives. Oversaw all aspects of projects; set deadlines, assigned responsibilities, and monitored / summarized progress of projects.
Developed credibility and established relationships with customers.
Designed and planned projects. Trained and supervised staff.
Implemented strategies and discipline in areas of scheduling, quality control, communication management, and cost control.