Senior Audit Manager- IT
Jordan Dubai Islamic Bank
Total years of experience :16 years, 6 Months
•Auditing IT Governance /IT Strategic Planning Practices and Assessing the Effectiveness of IT Performance, Capacity, Risk, and HR Management Practices. Moreover, Reviewing the IS Budget, Purchasing and Contracting Practices Using COBiT Framework.
•Auditing System Development Life Cycle (SDLC) from Feasibility Study, Requirements Gathering, Design, Development, Implementation, Testing and Post Implementation Review.
•Auditing Project Management Methodology & Life Cycle using Project Management Institute PMI Standards.
•Assessing the Effectiveness and Adequacy of Application, Database, Operating System, Storage Controls
•Assessing Applications Data Integrity and Business Rules ( System Logic) Reliability.
•Assessing the Effectiveness and Adequacy of Network Infrastructure Components Controls; Firewalls, Routers, Switches, Communication Lines, VPN, .. etc.
•Auditing Information Security Framework & Assessing Complince with ISO 27001 Standards.
• Auditing Business Continuity and Disaster Recovery Practices using BS25999 Standards.
•Auditing IT Service Delivery Management, Incident Handling, Change Management, Release Management, Help Desk Practices using ISO/IEC 20000-1:2011.
•Participate in the Preparation of the detailed IT audit plan that includes specifying Audit Universe and the scope of the audit work.
•Lead and perform the audit and prepare detailed working papers of the findings, auditee replies and auditors comments
•Supervise and participate in preparing and submitting audit reports in coordination with the audit team to ensure that the report is done in accordance with the set standards
•Participate in the investigation of highly classified / risky issues and problems to ensure solving them and preventing their occurrence in the future.
•Review the Central Bank and External Auditors reports and submit recommendations to the direct supervisor to take actions as directed.
•Actively participate in on-the-job training activities for employees.
•Participate in the identification and evaluation of the organization's IT related risk areas.
Certified by Business Continuity Institute
Project Management Professional PMP
Control Objectives for Information and related Technology COBIT
Certified Information System Auditor CISA