Management Manager
Resume:
Afzal Ahad
*** ******** ***** . ***********, ** 60440
Tel: 630-***-**** . Email: *******@*****.***
IT Audit Manager
Expertise in Auditing for Operations, Finance, and IT
Manufacturing . Engineering . Oil and Gas . Healthcare
Auditing expert with 11 years of experience achieving operational,
financial, and IT compliance for companies in manufacturing, healthcare,
energy, and professional-service sectors. Expert at identifying control
weaknesses, resolving discrepancies, and preparing audit reports for Board
Audit Committee and management. Fluent in English, Hindi, and Urdu.
Permanent U.S. resident.
. Special expertise in SOX compliance, SEC reporting, Enterprise Risk
Assessment, COSO/COBIT/ITIL control frameworks, and auditing of ERP
systems (Oracle and SAP).
. Strong accounting background and currently pursuing CPA.
. Detailed and thorough work ethic with exceptional references from
managers and clients.
CORE COMPETENCIES
Project Management SOX and IT Control Testing Regulatory Compliance
Internal and External Business Process
auditing Auditing Budget Planning Improvement
Enterprise Risk Management Change Management Team Leadership
IT Security Compliance SAP and Oracle Financials
Business Risk Mitigation
PROFESSIONAL EXPERIENCE
TD BANK, Toronto, Canada Presently
TD Bank, America's Most Convenient Bank , is one of the 15 largest
commercial banks in the United States with more than 23,000 employees and
deep roots in the community dating back more than 150 years.
IT Audit (Contractor)
Planed, managed, and performed IT Application and Infrastructure audits.
Developed IT Audit test plan and templates. Interviewed, documented, and
validated IT change and problem management processes. Performed risk
assessments, identified key control activities, and recommended process
improvements.
. Evaluated existing change and problem management processes, internal
controls, and related risk.
. Increased usefulness of IT internal Audits by overhauling testing
strategies
. Advised management on IT governance risk and compliance issues.
SANMINA-SCI CORPORATION, Huntsville, AL 2008-2009
Leading Electronics Manufacturing Services (EMS) company with approximately
$7.2B sales and 38,000 employees.
Manager IT Internal Audit
Managed IT Internal Audit department. Planed, managed, and performed global
SOX IT audit and training for risk management and IT governance. Developed
IT Audit plan and built IT internal audit team. Interviewed, documented,
and validated processes for business, financial, and IT systems. Performed
risk assessments, identified key control activities, and recommended
process improvements. Audited Oracle Financials ERP accounting system.
. Overhauled the Risk and Control Matrix (RACM) to update risk ranking
for SOX controls. Significantly reduced size of testing samples based
on KPMG guidelines for SOX Audit.
. Cut projected auditing costs for 2010 by approximately $100K annually
and simultaneously saved management time.
. Increased usefulness of IT internal Audits from 40% to 70% - based on
assessment of independent, external auditor - by overhauling testing
strategies.
. Collaborated closely with external auditing firms including KPMG for
Sanmina external audit and PricewaterhouseCoopers as SOX consultant.
DELOITTE & TOUCHE, Toronto, Canada 2004-2007
Leading professional services organization. Approximately $26B annual
revenues and 169,000 employees.
Senior Consultant
Led internal and external auditing, risk, governance, and compliance
projects. Managed project budgets, staffing, and final deliverables.
. Personally developed sales leads that resulted in more than $50K
business for D&T. Contributed to team-selling efforts that brought in
over $2M during 2004-2007.
. Achieved exceptional recommendations from D&T clients:
< Praised for exceptional performance on SOX readiness projects by
a confidential client who sent a commendation letter to D&T's
Engagement Lead Partner.
< Increased sales by additional $50K for a prestigious healthcare
client. Received commendation from client for work well done.
< Highly commended in writing by an internal-auditing client, a
major credit union that had been dissatisfied with earlier IT
audits and audit teams. Turned around client's opinion of D&T,
completed audits, and exceeded expectations.
. Successfully performed internal audits for numerous clients based on
audit plans and programs approved by Board Audit Committee.
< Developed test plans and test templates used for testing key
controls for SOX compliance and readiness.
< Tested business cycle, financial application, and IT general-
computer controls as part of year-end external auditing for
various clients.
< Prepared reports on audit findings and suggested recommendations
for improvements on client engagements.
. Performed audit assignments for diverse sectors: Manufacturing 30%,
Healthcare 30%, Telecommunication 10%, Financial Services 20%, and
Government and Not-for-Profit 10%.
. Ensured SOX compliance for key accounts by updating business-cycle-
control workbooks. Identified controls for financial-applications,
related IT infrastructure, and SOX.
. Developed business continuity (COB) and disaster recovery plans for
D&T and clients.
BRITISH OXYGEN CO (BOC) GASES, Karachi, Pakistan 1999-2003
Leading supplier of industrial gases. BOC merged with Linde in 2006 and
combined company operates in 70 countries. Approximately 53,000 employees
and. E12.7B annual revenues.
Audit Officer
Performed internal audits, reported to chief internal Auditor, and drafted
final reports with audit findings and recommendations for review.
Collaborated with PricewaterhouseCoopers (BOC's external auditor) and
facilitated field audits. Completed special projects that included business-
process reviews and SAP data-conversion reconciliation. Coordinated with
Northwest Region Audit officer and consolidated findings.
. Documented existing business processes, internal controls, and related
risk for BOC's entire line of businesses. Advised management on
potential risks and recommended corrective actions.
. Performed post-implementation review of financial data in SAP during
legacy-to-SAP data conversion. Identified numerous misappropriations
in accounts and submitted complete report to Board Audit Committee and
Board of Directors.
. Developed and implemented business-assurance audit plans, systems, and
programs that ensured core-controls compliance.
. Evaluated adequacy and effectiveness of business and accounting
processes and internal control environment. Achieved all corporate and
departmental compliance objectives.
EDUCATION, CERTIFICATIONS, AND PROFESSIONAL DEVELOPMENT
CISA, Information Systems Audit and Control Association (ISACA, 2009)
CobiT Foundation Certified (ISACA, 2007) . ITIL Foundation Certified (OGC,
2005)
ACMA, Institute of Cost & Management Accountants of Pakistan, (2000)
MBA, Preston University, Pakistan (2000)
Bachelor of Commerce (B.Comm), University Of Karachi, Pakistan (1994)
Contact this candidate