Teamleader Audit & Compliance
National Database & Registration Authority
Total years of experience :19 years, 10 Months
Participates on board meetings and audit committee meetings as focal person for Department. Administratively supervises and mentors 25 X IA staff located in the 08 X regions acting as a Team Leader; prepares and presents annual performance reviews and staff development plans. Furthermore my duties require me to actively participate as part of the Audit Department's Senior Leadership Team.
Conducting remote and onsite ICOFR Audits, domains covered are ITGC, Application and Revenue Assurance Controls.
Using sampling methodologies effectively highlighting the deficiencies and vulnerabilities discovered along with remedial actions.
Participates in complex IT, Internal Audits and Special Investigative Assignments. Utilizing independent judgment and discretion in different systems & operations including scheduling; processing; input/output systems flow, controls and edits; data storage; and security procedures. Audits applications, systems and programs to ensure that systems C.I.A triad exist. Reviews adequacy of proposed controls of new & morphed systems. Provide IS Security best practices advisory in ongoing projects. Ensures appropriate functionality and controls are in place within technical/functional/operational infrastructure, applications, and business processes.
Performed my duties in the largest telecommunication company in Pakistan; conducted the audits of multiple areas including ERP (SAP R/3), Telecommunication, Infrastructure, Networks and Databases. Analyzed data using CAATS (ACL, SQL, IDEA & MS Excel) to evaluate effectiveness of controls, revenue leakage, mediation and billing related validation and determined accuracy of reports, efficiency and security of operations. Devised controls for new or modified computer applications to prevent inaccurate calculations & data loss and to ensure discovery of errors. Conducted audits of IT operations and IT projects including analysis of business
Hired as the first ever IS Auditor in NADRA; devised audit programs and procedures for the NADRA country wide IT Infrastructure with team of Internal Audit and Technical Staff. Evaluated Information Systems, discover weaknesses and recommended improvements/necessary actions following the industry best practices. Introduced COBIT based framework for audit reporting in different domains. Successfully carried out first ever audit of Oracle E.B.Suite covering the functional and technical aspects. Conducted technical, administrative/operational and financial audit in NADRA 800+ regional offices for streamlining them to a NADRA benchmark standard. Perform periodic walkthroughs to validate process flows and control activities. Liaise with business owners in creation of Functional Business Requirement Documentation and User Acceptance Testing, as required & develop and execute IT audit engagements. Reviewed major System Development and Maintenance Projects.
As IT Security Compliance Officer, actively participated in:
• Development & delivery of Comprehensive Information Security.
• Protection of Information & Infrastructure from internal & external threats.
• Assurance to comply with statutory and regulatory requirements.
• Creation & maintenance of Incident Response System.
• Develop and implemented risk assessment program and risk universe.
• Deployment of threats related knowledge base.
• Identifying gaps, workarounds, and customization requirements.
Financial /Cost Accounting Economics Auditing Taxation
URL removed due to policy violation. Please contact support for further information.