Murtuza Hakim
Pune
Summary
Dynamic and accomplished Senior Professional with experience of over 19+ years with a strong background in Controls Assurance, overseeing risk management, compliance, and internal controls testing, ITGC, SOX Controls, Business Continuity Planning, IT Service Management, GRC, Vulnerability management, Stakeholder Management and Team Management. Well versed with understanding of Technology, Cyber, Data and Security risk standards such as NIST CSF, CPS 234, COBIT, ISO27001, PCI-DSS etc.
Overview
19
19
years of professional experience
Work History
Vice President, Audit Lead
BNY
Pune
11.2024 - Current
- Lead and execute complex technology audits for core IT processes, including SDLC, Change Management, and other ITGC controls, ensuring compliance with industry best practices.
- Managed end-to-end planning, fieldwork, and reporting of technology audit assignments, analyzing complex business processes and identifying key risks.
- Collaborated with Quality Assurance (QA) teams to resolve clarifications, queries, and observations, ensuring audit deliverables met the required standards.
- Prepared comprehensive audit reports, providing clear insights and actionable recommendations to senior management.
- Kept abreast of evolving industry frameworks such as ITIL, COBIT, NIST, and FFIEC to enhance audit effectiveness.
- Leveraged advanced Microsoft Office tools (Excel, PowerPoint, Word, Visio) to streamline reporting and data analysis.
Senior Manager
HSBC
Pune
07.2023 - 10.2024
- Led the 1LOD IT control testing function of over 30 IT control testing professionals globally, supporting the Group CIO and the wider IT EXCO in effective control management.
- Led cross-functional teams in conducting internal control evaluations and audits to ensure compliance with regulatory requirements.
- Led effective collaboration with key stakeholders (Group CIO, Business Process Owners, Control Owners, Risk Owners, 2LOD, and 3LOD).
- Delivered control management thought leadership, and challenging IT control status based on the outcomes of independent control testing activities.
- Driven control testing automation agenda in order to reduce the level of manual controls testing.
- Conduct regular audits and reviews to monitor compliance with SOX regulations, identifying and addressing control weaknesses to enhance the overall control environment.
- Prepared detailed audit reports that highlighted areas of improvement and provided recommendations for corrective action.
- Leveraged data analytics to improve the effectiveness and efficiency of the controls testing.
- Developed a comprehensive project plan that incorporated risk management, resource allocation, and timeline tracking for controls review.
AVP - Internal Audit
Barclays
Pune
04.2020 - 07.2023
- Led and conducted comprehensive internal audits to assess the effectiveness, efficiency, and compliance of Barclays' internal controls and risk management processes, ensuring compliance with regulatory requirements
- Identified and reported on potential risks and control weaknesses, providing recommendations for improvement
- Collaborated with cross-functional teams to develop and implement remediation plans for identified control deficiencies
- Assisted in the development and enhancement of audit programs and methodologies to improve the efficiency and effectiveness of audits
- Provided regular updates to senior management on audit progress and findings
- Performed significant program and technology audits in Global Payments (UK) domain with focus on ISO 20022 implementation
Senior Operations Manager
Barclays
Pune
11.2014 - 04.2020
- Managing day-to-day operations and facilitating the efficiency of the firm's Information Security Program via 24 by 7 run the bank manager role involving management of 16+ FTE
- Operationally supporting and maintaining infrastructure systems that provide information security protection, detection and reporting services across bank i.e., security tools like Agari, Vontu, CyberArk, Splunk, Nessus, Skybox, RSA, SEP
- Administering internal/external audits for team to meet the compliance requirements
- Responsible to manage Incident/ Change/ Problem management of operations
- Developing plans for managing/retaining talent inside organization and for improving leadership strength
- Tracking and reporting of vulnerabilities across department on a weekly basis and ensuring effective communication with stakeholders for remediation
- Performance management for the team by regular 1-1's, charting out their development plans, annual appraisals and playing key role in hiring
Operations Manager
Cognizant
Pune
08.2011 - 11.2014
- Lead a team of 6, which provides an end-to-end global application support, Identity & Access Management
- Ensured end-to-end Service Delivery including SLA, OLA Matrix & Reporting
- Ensured end-to-end Service Delivery including SLA, OLA, Matrix and Reporting on incidents, Requests & emails
Module Lead
Wipro
Bengaluru
01.2006 - 03.2011
- Managing 24/7 L1 & L2 operations in offshore model
- Implementing and executing continuous service improvements in accordance with the Quality Methodologies like ITIL, Six Sigma and Lean
Education
Bachelors of Engineering -
Pune University
PuneSkills
- Internal Audit
- Risk Management
- Leadership
- GRC - Governance, Risk and Compliance
- Project Management
- Cyber Security
- Operations Management
- Stakeholder Management
- Vulnerability Management
- Technology Controls Assurance
Accomplishments
- Won 2017 Barclays Technology Centre of India Award for protecting Barclays from Phishing attacks i.e., end-to-end rollout of DMARC tool reducing phishing attacks to approx. 80% and preventing risk of potential loss of approx. 37.5 billion pounds.
- Identified a critical issue as an auditor under privileged access management which was appreciated by the Audit Director which could have had a significant payments impact to the bank.
- Work on Incident reduction activity which further helped to reduce around 1500+ Incidents on monthly basis and saved cost of 1.5 FTE on monthly basis.
- Part of a COVID task force involved helping Barclays colleagues & their families impacted by COVID. This included tasks like arranging oxygen machine, medicines, ambulance, and transport for impacted colleagues. It was further appreciated by the Barclays Senior Leadership team. Also, been part of marathons supporting NGOs, tree plantation activities, water trenches building in villages.
- Designed and led colleague engagement team celebrating important days on monthly basis.
References
References available upon request.
Timeline
Vice President, Audit Lead
BNY
11.2024 - Current
Senior Manager
HSBC
07.2023 - 10.2024
AVP - Internal Audit
Barclays
04.2020 - 07.2023
Senior Operations Manager
Barclays
11.2014 - 04.2020
Operations Manager
Cognizant
08.2011 - 11.2014
Module Lead
Wipro
01.2006 - 03.2011
Bachelors of Engineering -
Pune University
Similar Profiles
Rajasekar MurugesanRajasekar Murugesan
Lead BackEnd Developer at BNYLead BackEnd Developer at BNY
Amruta RokadeAmruta Rokade
Intern – DevNet Delivery Services (Networking & Automation) at BNYIntern – DevNet Delivery Services (Networking & Automation) at BNY
Damini PatelDamini Patel
Senior Associate – Client Enablement Treasury Services at BNYSenior Associate – Client Enablement Treasury Services at BNY
Vickie ProudleyVickie Proudley
Associate Paralegal I at BNYAssociate Paralegal I at BNY
Vibhav TripathiVibhav Tripathi
Lead Technology at SynechronLead Technology at Synechron