Auditor
Shell
Total years of experience :13 years, 2 Months
Providing independent and objective assurance designed to improve the overall control framework of the organisation.
Leading audits to enhance and safeguard business value by protecting the organisation's people, assets, reputation and sustainability in relation to the organisation's defined goals and objectives.
Expert in auditing Critical Infrastructure / Industrial Automation and Control Systems / Operating Technology
• Leading risk-assessment efforts regarding trade compliance program development and assessing the state of compliance against applicable government sanctions through risk assessment
• Developing and monitoring programs to ensure compliance with regulatory and policy requirements in conformance with industry standards
• Translating Risk Appetite into key risks facing the organization and developing risk tolerance levels to serve as guides and limits for decision-making at every level
• Developing Key Risk Indicators (KRIs) to measure risk exposure over time. Further, tracking KRIs against Risk Tolerance levels and integrating them with related Key Performance Indicators (KPIs)
Enterprise Risk Management:
Improved business risk posture by (i) reviewing/setting up Governance Structure & Policies; (ii) performing Risk Assessment & Quantification; (iii) optimizing Risk vs Return profile; and (iv) Reporting & Monitoring
Regulatory Compliance, Data Privacy (GDPR), Legal and Regulatory Assessment :
Designed compliance risk strategies, policies and frameworks against applicable regulatory requirements (including existing and emerging data privacy requirements of different countries)
Led the development of enterprise risk management (ERM) framework to (i) monitor information security and data privacy risks and (ii) respond to these risks in a timely and consistent manner
Conducted Privacy Impact Assessments (PIAs) on products, services, devices, applications, and information repositories that process personal information
Oversaw and conducted information security and privacy awareness training for customers, suppliers and co-workers
Monitored and assessed compliance with laws, regulations and policies (including Data Privacy, Sanctions, Audit & Investigations, Information Management, and Export Compliance)
Conceptualized and developed Information Risk Radar to maintain a ‘watch-list’ of potential emerging risks
Risk Assessment and Mitigation
Risk Reporting
Application Risk & Control Assessment
IT Risk Management
Enterprise Risk Services
Enterprise Risk Services
• Developed, planned, and supervised the operations necessary for drilling oil and gas wells
• Worked with the Subsurface teams to implement the well design and delivery process, clearly identifying project scope, risks and associated
costs
• Developed the well design and operational procedures in accordance with company standards and implemented lessons learned from offset
wells
Petroleum Engineering