Experience
Hakim has over 14 years of experience as an IT Internal Auditor at Grant Thornton. As a certified IT auditor (CISA), Hakim holds a solid experience in reviewing IT controls within the context of external and internal audits. He further is specialised in the review of security governance and vulnerability management using COBIT, ISO 27K, and NIST frameworks.
During the past years, Hakim developed an extensive experience and covered various IT topics, including:
- Infrastructure: review of replication mechanisms from site to site, evaluation of High-Availability and disaster recovery project deployment solutions
- Cybersecurity: governance of security (security incident, awareness), assessment of SIEM deployment project, access management review, review of security parameters, security compliance, data management, network management (Defense in depth principles), review of controls and security parameters over operating systems, databases and applications.
- Outsourcing management: review of contractual service agreement, governance of outsourcing management
- Cloud computing audits
- Business continuity and Disaster recovery audits.
- Swift security program audits (technical review)
- IT operations management audits (Backups, batch processing, incident management, event management, etc.)
- IT project reviews (Project management, post-implementation audits, etc.)
Before joining Grant Thornton Luxembourg, Hakim gained an extensive experience in IT risk management, IT audit and IT internal controls as well as in IT governance processes. He developed his expertise working for Big4 companies in Montreal and was also in charge of IT risk assessments and follow up of IT risk remediation activities for a number of Canadian banks.
Additionally, Hakim developed his IT regulatory experience in Luxembourg, for diverse business types (Banks, PFS, payment institutions, etc.)
Hakim has also an expertise in performing various assurance reports such as ISAE3402, ISAE3000 and SOC 2 type reports.
- CISA – Certified Information Systems Auditor
- Master’s degree in Business Studies