Shahul Hameed Mohamed Mohideen

OLI Academy & Training Institute, Pattukkottai
GRACE tasks Technology & Risk Management firm, Tamil Nadu, India


CEO - Industry standard Good practices (COBIT, ITIL, ISO, PMI, ISACA, IIA, IMA, BASEL, AML) based consultancy and training provider for Governance, Risk, Audit, Compliance & Excellence of Business Performance and Conformance.

Academic admission/study/examination centre for MADURAI KAMARAN UNIVERSITY's Directorate of Distance Education.

Professional Training centre for IT and Business performance and conformance.

Advisor to Dean of IT & Head of Quality Management Office

IT Advisory and Quality Management Systems implementation role.

IT programmes management & IT HR Performance Management

Education and Training on MBA and Certified Professional Qualification programmes such as ITIL, PMP, ISO27001, IT Governance, Management Accounting and Auditing etc.

Achieved academic accreditation of NCAAA (U.S.) with best remarks for IT organization.

Initially joined as Head of IT Governance, reporting to CIO (and dotted line reporting to DCEO and Risk Management Committee.

Since April 2009, assigned with additional responsibility for Risk Governance of Shared Services as
Head of IT Governance & Shared Services Risk and Compliance

Top Management accountability with reporting lines to CIO, DCEO and COO and Risk Management Committee.

Risk Management and Governance responsibility expanded to all IT departments, Banking Operations, Call centre, Information Security, Business Continuity Management. October 2007 to April 2010. Left after successful Saudisation of my responsibility area of concern.

As Head of IT governance under IT Group, initially reported to CIO and then reported to COO when the new COO took over the responsibility of IT under his direct control.
Communicated the corporate vision/standards, including establishing policies, procedures, standards, guidelines, and checklists for creating a control environment with regards to industry standard best practices, that covers:
▪ Clearly understood responsibilities and published RACI chart
▪ Information Security in light of ISO27001 standard
▪ Business continuity policy and plan and Project charter for initiating Disaster Recovery Site preparation and testing
▪ IT Policy manual in light of ITIL version 3 and COBIT rel 4.1 standard best practices
▪ Framework for IT group weekly meeting and reporting standards for group committees
▪ Created IT-BRM department and constantly verified and ensured that appropriate organization and relationship is established and maintained
▪ Metrics: KPI, KRI and score cards for senior management evaluation of performance and conformance to required regulatory compliance and risk management requirements
▪ Improvement of SDLC and project management, change management, incident management and configuration management processes.
Represented IT Group on IT and Projects Steering Committee and other committees, such as Investment, Strategy, IT architecture review, IT audit, and Group Operational Risk Management.
Enabled technological direction for the bank, and delivered revised architecture plans.
Obtained independent assurance; and oversaw IT portfolio governance, IT solutions development life cycle processes, Testing & Quality Assurance, and IT services lifecycle processes.
Continuously evaluated the IT functions and resources; for conformance to policies and regulatory compliance requirements, and performance against plans; providing quick action plans for corrective measures.

Oversaw IT operations for business units in the UAE, Bahrain, Qatar, Yemen, and, later, New York. Directed and supervised all IT and related technology functions and supervised five IT managers, a development manager and an information security officer.
• Shifted the UAE Sharjah IT operations centre to a new Dubai location and centralized the regional IT platforms; linked the IT centres of all countries \[UAE(8 branches), Qatar(2), Bahrain(3), Yemen (3)\] to the new site, and also linked the new centralized regional IT centre to Karachi HQ IT centre for Disaster Recovery and other network management control - reduced each country’s senior level IT management staff and each’s IT operators 50%, while adding only two operators at Dubai centre. Also reduced the load of six network administrators, and they were allocated to different roles including strengthening the service delivery and support responsibility.
• Provided consulting and technical support to the Banking Operations Management in establishing service oriented architecture (SOA) and business process reengineering (BPR); reduced consultancy costs 35%.
• Created and acted as secretary of the Security Committee; established the framework, policies and procedures for information security in light of ISO 27001:2005; put the stress on the operational risk management functions and implemented a business continuity plan, policies and procedures for the Middle East operations, saving the bank from the regulatory compliance issue and providing best practices for business operations.
• Completed regulatory compliance-related projects on time; created awareness programs and initial status reports to central bank for Basel II initiatives;
▪ Initiated and completed a major ATM card migration project to Visa Debit cards for UAE and then extended for Qatar and Bahrain, with EMV standard for issuer as well as acquirer.

• IT Manager (last 9 years), with responsibility for IT Governance, ensuring that Information and related Technology:
- is aligned with the business, enables the business and maximizes benefits
- resources are used responsibly and projects are managed efficiently
- related risks are managed appropriately.
• Until 2005, UAB was affiliated to Societe Generale, France. Hence, with this international exposure, enjoyed the best practices from one of the world largest bank. Additional joint responsibility along with head of operations for Operational Risk Management with dotted line reporting to Head of Risk at Societe Generale, Paris, includes: Establishing policies and procedures, BCP, Control Self Assessment, and conducting BASEL II training program.
• Liaison with external and internal audit missions including UAE central bank’s Risk based audit mission. Conducted Risk based audit for NSGB, Cairo (Societe Generale branch in Cairo)
• Assistant IT Manager (3 years: 1994-1996); Head of Department, Projects management & Development (3 years: 1991-1994). Analyst Programmer (3 years: 1988-1990) and Senior Computer Operator (3 years: 1985-1988).

Primary Responsibility:
1. Establishing IT Governance Policies, Procedures and Standards in accordance with the corporate policies and business objectives of the bank and guidelines from the board of directors.
2. Preparation of IT Budget and Programme Management.
3. Providing consultancy for operations management, internal control, operational risk management, and business continuity plan.
4. Envisioning, Planning, Developing, Stabilizing and Deploying the enterprise solutions to enable the business processes.
5. Acquisition, Implementation and Maintenance of IT resources. .
6. Delivery and Support of IT services, Monitoring and Control of IT processes.
7. IT & Operational Risk Management, Information Security Management, Disaster Recovery Plan and Procedures.
9. Training and development.

Supervision of Data Entry and Computer Operations; Preparation of management reports; Preparation of UAE Central Bank returns and Financial Statements; and coordination and support to external and internal audit missions.

Achievement:
Computerized the Accounting System and migrated the Data Entry Operations from Card punching system to Digital computing.

Managed Accounts, Sales, Cash and Bank Dealings.