Munaaf Mohammad

Being 2IC to the Chief Internal Audit Officer, key responsibilities include:
- Preparing Strategic and Annual IA Plan and execution schedules, Developing IA’s annual KPIs and its
monitoring;
- Leading integrated risk-based Technology audits from the planning stage to finalization and managing IA staff
to ensure quality deliverables;
- Preparing and Executing Technology Audit Framework based on Internal Standards (NIST, ISO) and executed
across Core IT/Network reviews.
- Support CIAO in preparing AC Pack and its Presentation to the AC during AC meetings;
- Led establishment of QAIP inline with IPPF and facilitated internal and external QARs;
- Active participation in development and periodic updates of the key IA governing documents (AC Charter, IA
Charter, IA Manual, Fraud Whistleblowing policy)
- Involved in Preparation/first review of audit papers for Boards and Audit Committees and attend board
meetings to present papers/findings as appropriate.
- Engaged in major business/Strategic Initiatives and played a consulting role wherever applicable, though
maintaining the independence of the Internal Audit Function.
- Manage centralized Analytics team to provide data mining and analytics services towards complex analytic
problems/big data analysis in support of product/function audit teams
- A key member of the Internal Audit leadership team, in the management, training, and professional development
of internal audit staff.
- Actively participate with IA Vendors for Proposal initiations, negotiations for Project/Resource engagements.
- Further support CIAO in key IA activities including:

Lead the execution of the audit process (primarily as auditor-in-charge), including performing the IT Audit
fieldwork and mentor associate members.
- Performed risk-based internal audit activities for the FHG and its subsidiaries.
- Plan, lead and performed IT and operational audits and special projects along with resolving complex business
issues.
- Evaluated IT controls and systems under development and provide advice on internal controls. Follow up on
previous audit concerns and issues.
- Developed audit programs based upon assessed risks, internal controls, bank policy/procedures, and applicable
legal and regulatory requirements.
- Prepared Audit reports of audit results for distribution to Bank management and the Audit Committee of the
Board of Directors