Hamza Ahmed

Proactive individual with keen in Information Technology especially in security domain. Having 4 years of experience in IT/IS audit and compliance, governance and risk assessment.

• Off-site supervision of Information systems and security policies alongside on-site audits and assessments.
• Review Governance and Risk assessments of Information Technology assets and processes of financial institutions.
• Execute IT audits across the different lines of business as per organizational as well as international standards.
• Prepare work papers, audit plans and relevant documentation in clear and concise manner.
• Gather and analyze information obtained though observation, documents review, previous audit reports, and written policies/procedures. 
• Assess IT compliance with relevant regulations and international standards e.g., PCI DSS, ISO 27001, NIST Cybersecurity Framework (800-53) 
• Identify Key risk areas and prepare audit programs accordingly.
• Identify control weaknesses, potential system threats, document issues with clear description of findings and provide recommendations for improvement in system.
• Work independently with auditees, conduct interviews and demonstrate good understanding of sample selection.
• Review and evaluate the adequacy of internal controls, and compliance with IT security policies and procedures.
• Perform risk assessments and evaluate IT processes for both existing and new applications.
• Work closely with business auditors and provide support in completing IT components of audits.
• Develop and finalize draft reports, conduct follow up on potential issues.

Bachelors in Computer Science