Internal Audit Section Manager - GRC Business Owner
Alfanar Group
Total years of experience :23 years, 6 Months
- Participate in developing the Project charter in accordance to the IT, Business and Audit requirements and needs.
- Lead the change of the process design specially in the IT security to match the company policy and environment which apply more controls and eliminate bottlenecks in the process.
- Evaluating the outsourcing vendors work for adequate deliverables.
- Applying the best practice of the segregation of duties framework as Rule Set master data (Which Consider as GRC Brain), and align with our company practices and customization.
- Participate in developing the detailed blue print for the main implemented modules (ARA, ERM, ARM and BRM, Basis).
- Gain the detailed knowledge of the technical configuration and improve this knowledge with self studying and practicing.
- Evaluate the GRC performance and side effected on the SAP system, using testing approaches depending on different time.
- Testing the full cycle of GRC process with / without authorization and the integration test.
- Provide full training to the whole business owners and key users.
־ Develop the IT Risk Based Plan for 2011 audit (Identifying IT and security risks, related controls in place.
- Identify, Review and provide an independent assurance & recommendations for key controls associated with the implemented SAP project (5 Projects).
- Participate in testing the integration cycle to ensure the efficiency of processes’ control points.
- Providing recommendations for the effectiveness and efficiency of the system performance to enhance the control environment after go live phase; for the following SAP modules:
1- Supply Chain.
2 - Information Security.
3 - Finance.
4 - Manufacturing.
- Monitor system performance regarding users’ accesses and periodically report the outcomes to BOD.
- Sponsoring the (PR & PO) Release Strategy Matrix within supply chain which is considered as a key control all over the group.
- Participate in critical tasks such as establishing the authorization matrixes for Staff access control within Supply Chain modules (Material Management - Procurement, Inventory Management and Warehouse Management).
- A Member of the Steering Committee responsible for evaluating the new SAP project along the company.
־ Develop an Internal Audit Charter and Internal Audit Manual in addition to code of ethics.
־ Develop a flexible annual risk based audit plan using an appropriate risk- based methodology, including any risks or control concerns identified by management, and submit that plan to the Board of Directors for review and approval as well as periodic updates.
־ Provide an annual assessment on the adequacy and effectiveness of the organization's processes for controlling its activities and managing its risks to achieve the Group objectives in the areas set forth under the mission and scope of work.
־ Implement the annual audit plan, as approved, including as appropriate any special tasks or projects requested by management.
־ Report significant issues related to the processes for controlling the activities of the organization and its affiliates, including potential improvements to those processes, and provide information concerning such issues through resolution.
־ Coordinate with, and provide oversight of other control and monitoring functions (risk management, compliance, security, legal, ethics, environmental, external audit)
־ Issue periodic reports to the Board of Directors and management summarizing results of audit activities.
־ Periodically provide information on the status and results of the annual audit plan and the sufficiency of department resources.
־ Provide a list of significant measurement goals and results to the Board of Directors.
־ Assist in the investigation of significant suspected fraudulent activities within the organization and notify management and the Board of Directors of the results.
Achievement
I was able to discover & detect one fraud during my supervision to one audit assignment for one process in the operation which pertains a manipulation done by one Local Purchaser in the offers received from vendors for leasing cranes.
I was able to save approximately 1.5 m in the internet subscriptions expense for alfanar projects based on my audit report on one project that have been applied to all projects
־ Examination & Auditing of financial statement for Companies of different industries.
־ Preparing financial statements, footnotes, and auditors reports according to accounting frameworks (IFRS/EAS).
־ Analyzing financial trends, ratios and performing analytical procedures for evaluating overall financial statements.
־ Testing, evaluating internal controls structures for the clients and preparing Management letters on internal control weaknesses.
־ Perform different special assignments as requested by our clients which include (Book Keeping, Due Diligences, etc.)
־ Supervising and couching audit team and providing feedback on their performance to senior management.
־
Major Clients
־ Maridive (Marine & Oil Support Services)
־ International Cardiac Center (Health Care)
־ Alexandria Copenhagen (Dairy)
־ Worms Alex (Shipping)
־ Lord (Manufacturing)
־ NOSCO (Logistic)
Courses stadied and grades obtained during four years was 56. and duration of each term 15 week.