Nisreen Jaouni

1. Senior IT Governance officer-Compliance (Jordan Kuwait Bank: May 2010-Present)

Detailed Tasks Assigned: ⇨ Implementation of IT Procedures and Policies according to COBIT, ISO, ITIL, PCI and other Standards,
⇨ Study the requirements of information system departments' governance standards to be adopted in alignment with the requirements and objectives of Information System department and ensuring the implementation of such standards in the IT policies and procedures.
⇨ Preparation of Job Descriptions for all IT Sections
⇨ Evaluation of various flows and processes and compose enhancement over them,
⇨ Continuous Improvement - periodical reviews over IT Procedures,
⇨ Collaborate with other departments: Risk Management, Internal Audit, etc
⇨ Ensure maintenance of appropriate audit documentation for purposes of recommendations on IT systems,
⇨ Assess the SLA (Service Level Agreement) with third parties and external vendors
⇨ Assist in the evaluation of Audit findings and implementation of corrective actions and needed responses,
⇨ Follow up external and internal audit Reports,
⇨ Identifies potential areas of compliance vulnerability and risk,
⇨ Provide reports on a regular basis and as directed or requested, to keep the senior management informed of the operation and progress of compliance efforts,
⇨ Develop IT Library according to the adapted standards.
⇨ PM Officer (Project Management Office- PMO)


Projects & Tasks Assigned: Project/ Task Brief Description
IT Roadmap
⇨ IT and Business Alignment (LINKING BUSINESS GOALS TO IT GOALS
⇨ Gap Assessment
⇨ Set to-be organizational chart
⇨ Set to-be Application landscape
⇨ Set IT Roadmap

IT Department Assessment Study
⇨ Determine the current state of IT department and evaluate level of maturity and performance of IT Capabilities components (People, Processes, Technology)
⇨ Gaps Identification: Identify gaps in IT capabilities (People Processes and Technology)
⇨ To-Be State: Develop a set of recommended solutions to close gaps, improve performance and Keep up with shifting technology

IT SMART Objectives development
⇨ Develop SMART objectives per each IT job role
⇨ Develop Job description for IT department
⇨ Develop IT succession planning (Backup Roles)

IT Dashboard ⇨ Build up IT dashboard based on IT Key Goal Indicators
BANKS-Core Banking System
Stage I: Project Management Office Track leader
⇨ Risks, Issues and Gaps Management
⇨ Change Management
⇨ Create and Manage implementation readiness checklist
⇨ UAT- Verify IT Controls are implemented

PCI-DSS
Project Manager
⇨ Mange PCI-DSS Implementation Project,
⇨ Create Data Flow Diagrams (DFDs) for Cards department's operational procedures,
⇨ RTM Management (Remediation Tracking Matrix)

COBIT Project Manager Continuous improvement over all existing IT operational procedures.
ISO 27001 Project Manager Continuous improvement over all existing IT security procedures.

IT Auditor/IT Consultant February 2007-April 2010 TAGITI Amman-Jordan

IT Auditor\Consultant (Talal Abu Ghazaleh Group: Jan 2007- April 2010)

Detailed Tasks Assigned: Country Name and brief description of the project
Jordan
Al Manaseer Group: * Verify Application and general computer controls
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access and security controls regarding financial processes

Jordan
Jordan Trade Facilities Co. (JTF): * Verify Application and general computer controls
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access and security controls regarding financial processes

Jordan
Miyahuna: * Verify Application and general computer controls
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access and security controls regarding financial processes

Jordan
Al Nisr Al Arabi Insurance: * Verify Application and general computer controls
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access and security controls regarding financial processes

Jordan
Talal Abu Ghazaleh Group: * Perform an IT Audit for whole Talal Abu Ghazaleh Group
* Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* planning and performing audits of information systems and related processes
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verifying IT access controls

Jordan
IT Absolute: * Study key functions of the software at work by observing and interacting with operating personnel during work.
* Verify access control in application software
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Assess computing needs and system requirements.
* Verify access controls regarding financial processes

Jordan
Jordan Phosphate Mines Company: * Find out what software asset the company has by Scanning all software being used by the company
* Understand Microsoft Volume Licensing
* Verify licenses and document the compliance
* Establish software use policy.

Jordan
Special Systems: * Study key functions of the software at work by observing and interacting with operating personnel during work.
* Verify access control in application software
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Assess computing needs and system requirements.
* Verify access controls regarding financial processes

Jordan
Ministry of Information and Communication Technology (MoICT): implement a new system "a national tourism statistics system", as part of its e-government strategy architecture.
* Review and understand the business strategies
* Analyze current and future Stakeholders needs.
* Understand the existing business model.
* Assess the New solution opportunities, and define solution Strategies

Jordan
Jordan Kuwait Bank: * Conduct IT auditing and identify the Maturity level regarding IT controls and Governance.
* Implement CoBIT framework
* Conduct Gap Analysis study and IT Audit to acquire adequate knowledge on internal operations and internal controls to check compliance with COBIT domains.
* Assess current policies, vision and mission of the IT direction, in addition to available human, financial, technological and information resources.
* Identify weak and strong areas regarding compliance with CoBIT, through defining a maturity model for IT governance and security management

Jordan
Ministry of Tourism and Antiques: * Define current MoTA information system elements, data sources and integration requirements; and understand MOTA current IT situation, software, hardware and human resources.
* Identify the Gaps between the current situation and desirable situation

Jordan
First Investment Group: * Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* planning and performing audits of information systems and related processes
* Study key functions of the software at work by observing and interacting with operating personnel during work.
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access controls regarding financial processes

Jordan
Sherco Brokerage Co.: * Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* planning and performing audits of information systems and related processes
* Study key functions of the software at work by observing and interacting with operating personnel during work.
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access controls regarding financial processes

Jordan
Trans Jordan for Financial Services: * Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* planning and performing audits of information systems and related processes
* Study key functions of the software at work by observing and interacting with operating personnel during work.
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access controls regarding financial processes

Jordan
Ajyad for Securities: * Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* planning and performing audits of information systems and related processes
* Study key functions of the software at work by observing and interacting with operating personnel during work.
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verify access controls regarding financial processes

Jordan
Talal Abu Ghazaleh Group: * Perform an IT Audit for whole Talal Abu Ghazaleh Group
* Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* planning and performing audits of information systems and related processes
* identify the potential risks associated with the business activity/function served by the application and handled these Risks
* Verifying IT access controls

Jordan
Ministry of Water Authority of Jordan: * Perform audits on organizational IT policies, standards and procedures and provide recommendations on their adequacy
* Execution of audit processes, including definition of audit scope and objectives, project plan, detailed control evaluation, test activities, issue resolution, and report activities for assigned audits
* Study key functions of the software at work by observing and interacting with operating personnel during work.
* Understand the business function/activity that the software serves.
* identify the potential risks associated with the business activity/function served by the application and handled these Risks

Jordan
Egyptian Arab Land Bank: * Investigate thoroughly the various aspects of the information technology operations and functions at the bank.
* Carry out an in-depth and comprehensive functionality and security audit of the bank's Information Technology.
* Identify weaknesses in controls and opportunities for improvement.
* IT strategy setup
* Audit of hardware, software, and communication systems
* Assessment of IT organization and personnel
* Submit detailed report of findings and recommendations

Jordan
Petra Jordanian Mobile Telecommunication Company Ltd. (MobileCom):
Design and implement COBIT framework for IT direction and governance for the IT department.

2. System Analyst (Ipsos State: 2006 July- Jan 2007): Detailed Tasks Assigned: ⇨ Interact with the customers to gather and document requirements
⇨ write technical requirements from the business requirements document
⇨ Perform system testing


Marketing Activities: ⇨ Market the IT consulting Services for different kind of organizations and corporations in addition to banking sector.
⇨ Customer Relationship Management System (CRM)
⇨ Preparing different marketing and sales Literatures.

Events and Workshops: ⇨ Banking Solution (Microsoft Innovation in Banking): held by Microsoft
⇨ Open Source Software: held by USAID, Savvytec and Red Hat
⇨ Software Asset Management: held by Microsoft
⇨ Enterprise Resource Planning: held by Microsoft

Title of Position Period Organization Location
Senior IT Governance Officer - Compliance (Manage IT Governance Department) May 2010-Recent Jordan Kuwait Bank Amman-Jordan

System Analyst July 2006-Jan 2007 Ipsos Stat Amman-Jordan