It Auditor Audit

SYED AHMED

IT AUDITOR - POLICY AND COMPLIANCE – RISK MANAGEMENT

Summary

Dynamic, result oriented IT Auditor with a proven track record of delivering IT Audit and Risk assessments. Bringing over 4 years of international experience in IT Security, General controls audit and Data Privacy. Skilled in conducting comprehensive risk assessment, ensuring regulatory compliance, and providing actionable recommendations. Seeking a senior audit role to leverage expertise in exploring the industry and putting technical jobs to work, while contributing to the strategic growth of progressive organization. Eager to continuously deepen knowledge in IT audit methodologies and pure relevant certifications to enhance credibility and expertise in the field committed to first being a culture of compliance driving continuous improvement and making impactful contributions to the organizational success. Education and Certification

CISA Certification Jan 2025

Certification Number 252757807

CompTIA Security+Dec 2023

Certification Number COMP001022411518

ServiceNow CSA Jan 2024

Certification Number 24940653

Liaquat University

of Medical Sciences

Pakistan MBBS 1990

Professional Summary

August 2024 to Present

IT Auditor and GRC Analyst

Zakiant Technologies

● Perform Audit Planning and Execution.

● Lead and execute complex IT internal audits as a Level 3 auditor, as well as lead and execute external audits which includes evaluation of principal controls on several IT platforms and assess the overall efficiency of organizational processes.

● Formulate the controls according to the need of the operating systems as intrinsic custom controls, to prevent regulatory penalties.

● Use data analytics software to conduct in-depth data analysis, identifying significant trends, patterns, and anomalies that inform strategic decision-making and enhance operational insights.

● Ensure conducting independent analysis to identify risks, control weaknesses, and operational inefficiencies, driving strategic recommendations for improvement.

● Articulate audit findings and recommendations to local users to improve generalized quality of performance while submitting the corrections performed while doing control analysis and later submit reports to management, ensuring clarity and driving actionable outcomes to strengthen the organization while preventing regulatory penalties.

● Completion of My Audit entails :Completion of fully documented work papers, in accordance with Department and professional standards.

● Submit fully documented work papers, in accordance with Department and professional standards.

● Provide suggestions to business units and project managers on risks, internal controls and revenue loss.

● Continued Professional Education (CPE): I prefer conducting in-house CPE for the staff, so that they are updated with the modern trends and improve their performance through ISACA, Institute of Internal Auditors (IIA), AICPA.

INFOSECLY, IT Auditor and GRC Analyst

Washington DC

May 2020 to August 2024

SwissRe: Functioned as a key team member supporting the Corporate Compliance Officer and IT Audit team in planning and executing IT control efforts.

● Took ownership of assigned controls, ensuring end-to-end responsibilities were delivered at desired quality with minimal supervision.

● Prioritized tasks based on the needs of multiple internal and external stakeholders, facilitating the delivery of exceptional service.

● Demonstrated efficiency, persistence, and time management skills to achieve team objectives within deadlines.

● Collaborated with business stakeholders to communicate and ensure the effectiveness of controls in meeting third-party auditing requirements.

● Ensured alignment of controls with frameworks such as PCI, HIPAA, ISO 27001, GDPR, NIST 800-53 ensuring completeness and accuracy.

● Experience with ServiceNow for IT audit management, IRM or GRC - policy and compliance, and Risk management.

● Applied excellent judgment and rationale to prioritize findings and recommendations, effectively communicating audit results and action plans to drive change. Emirates Airlines: perform IT Audit and assessments, overseeing the entire process from plan preparation to client interviews, ensuring thorough evaluation of procedures and documentation.

● Conducted comprehensive IT audits, evaluating the effectiveness of controls and identifying areas for improvement.

● Proficient in utilizing ServiceNow for managing IT audits, IRM - policy and compliance, and risk management

● Assessed IT systems, applications, and infrastructure to ensure compliance with regulatory requirements and industry standards.

● Developed audit plans, conducted fieldwork, and documented findings in detailed audit reports.

● Collaborated with cross-functional teams to address control deficiencies and implement corrective actions.

● Provided recommendations for enhancing IT security, data integrity, and operational efficiency.

● Stayed updated on emerging technologies and industry trends to continuously improve audit methodologies.

● Communicated audit results and recommendations to senior management and stakeholders, facilitating decision-making and risk mitigation strategies. BBVA Bank (bbva.com) Conduct IT audits and assessments, overseeing the entire process from preparing plans to conducting client interviews, ensuring a comprehensive evaluation of procedures and documentation.

● Identified areas for enhancement through comprehensive IT audits, evaluating control effectiveness.

● Ensured compliance of IT systems, applications, and infrastructure with regulatory requirements and industry standards.

● Formulated audit plans, conducted fieldwork, and meticulously documented findings in detailed reports.

● Collaborated with diverse teams to rectify control deficiencies and implement corrective measures.

● Offered recommendations to bolster IT security, uphold data integrity, and optimize operational efficiency.

● Maintained currency with emerging technologies and industry trends to refine audit methodologies continually.

● Facilitated informed decision-making and risk mitigation strategies by effectively communicating audit outcomes and suggestions to senior management and stakeholders.

● Tool: ServiceNow GRC or IRM – San Diego

Contact this candidate