Awais Naseem — CEO

🌟 𝗣𝗮𝘀𝘀𝗶𝗼𝗻𝗮𝘁𝗲 𝗜𝗧 𝗔𝘂𝗱𝗶𝘁𝗼𝗿 & 𝗚𝗥𝗖 𝗣𝗿𝗼𝗳𝗲𝘀𝘀𝗶𝗼𝗻𝗮𝗹 | 𝗧𝗲𝗰𝗵. 𝗘𝗻𝘁𝗵𝘂𝘀𝗶𝗮𝘀𝘁 | 𝗟𝗶𝗳𝗲𝗹𝗼𝗻𝗴 𝗟𝗲𝗮𝗻𝗲𝗿 | 𝗕𝗶𝗴𝟰 𝗧𝗿𝗮𝗶𝗻𝗲𝗱 | 𝐀𝐯𝐢𝐝 𝐓𝐫𝐚𝐯𝐞𝐥𝐞𝐫🌟 A passionate and accomplished IT Audit , Governance, Risk & Compliance (GRC) Leader with over 12+ years of diverse experience across various countries, sectors, and industries. I bring a unique blend of Big 4 audit rigor and in-house operational leadership, enabling me to approach challenges holistically from both auditor and business perspectives. Currently, I serve as the Senior Manager of IT Audit and Compliance at a leading SAAS company, where I love to navigate the complexities of people, processes and technologies. I excel in both technical and soft skills, including stakeholder management, project management, leadership, problem-solving, communication, coaching, and mentoring. My well-rounded expertise bridges the gap between technical and non-technical domains, ensuring comprehensive and impactful solutions. Driven by the constantly evolving GRC landscape, I actively contribute to the profession as: ISACA Exam Question Writer & Social Media Advocate ISC² West Midlands Chapter Board Member CISA Instructor & Mentor for aspiring professionals School Governor Outside of work, I am an avid traveler and stay informed about current affairs, particularly those related to technology and business. ----------------------------------------------------------------------------------------------------------------- 𝐒𝐤𝐢𝐥𝐥𝐬 𝐚𝐧𝐝 𝗦𝗽𝗲𝗰𝗶𝗮𝗹𝘁𝗶𝗲𝘀: IT Audit & Technical Testing IS/IT Audits | AI Audits | ITGC & Application Control Testing | Cloud Security Audits | OS/DB Security Testing | Cybersecurity Assessments etc. Compliance & Reporting Frameworks SOC 1, 2 & 3 Reporting | SSAE18/ ISAE 3402 Reporting | SOX/ ICoFR Audits | ISO 27001 | ISO 42001 | NIST CSF | EU AI Act | CMMC etc Leadership & Strategic Management Leadership | Coaching and Mentoring | Project Management | Stakeholder Management | Problem Solving | Audits/Information Security Trainings ---------------------------------------------------------------------------------------------------------------- 𝗖𝗲𝗿𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻𝘀: CISSP, CISA, CCSP, AAIA 𝙁𝙚𝙚𝙡 𝙛𝙧𝙚𝙚 𝙩𝙤 𝙘𝙤𝙣𝙣𝙚𝙘𝙩 𝙬𝙞𝙩𝙝 𝙢𝙚 𝙩𝙤 𝙙𝙞𝙨𝙘𝙪𝙨𝙨 𝙄𝙏 𝙖𝙪𝙙𝙞𝙩, 𝙘𝙤𝙢𝙥𝙡𝙞𝙖𝙣𝙘𝙚, 𝙤𝙧 𝙖𝙣𝙮 𝙧𝙚𝙡𝙖𝙩𝙚𝙙 𝙩𝙤𝙥𝙞𝙘𝙨!

Stackforce AI infers this person is a seasoned IT Audit and Compliance professional in the SaaS industry.

Location: Birmingham, England, United Kingdom

Experience: 12 yrs

Skills

It Audit
It Compliance
Compliance Management
Project Management
Business Continuity Management

Career Highlights

Over 12 years of diverse IT audit experience.
Expert in IT governance and regulatory compliance.
Proven track record of enhancing audit efficiency.

Work Experience

Bullhorn

Senior Manager IT Audits and Compliance (1 yr 1 mo)

Manager IT Audits and Compliance (2 yrs 9 mos)

ISACA

Exam Question Writer & Social Media Advocate (Volunteer Role) (11 mos)

KPMG

Assistant Manager- IT Audits (2 yrs 10 mos)

EY

Assistant Manager (FSO-ITRA) (2 yrs 9 mos)

BDO Bahrain

Senior IT Auditor (5 mos)

EY

Senior IT Auditor/Consultant (KSA-Secondment) (3 mos)

Senior IT Auditor/Consultant (2 yrs 2 mos)

SKANS School of Accountancy

Visiting Faculty Member (1 yr 10 mos)

Awais Naseem

CEO

Birmingham, England, United Kingdom12 yrs experience

Most Likely To SwitchAI Enabled

Key Highlights

Over 12 years of diverse IT audit experience.
Expert in IT governance and regulatory compliance.
Proven track record of enhancing audit efficiency.

Stackforce AI infers this person is a seasoned IT Audit and Compliance professional in the SaaS industry.

Contact

Skills

Core Skills

It AuditIt ComplianceCompliance ManagementProject ManagementBusiness Continuity Management

Other Skills

IT General Controls AuditingSOC 2Artificial Intelligence (AI)Cloud SecurityStakeholder ManagementKPI ReportingInformation System AuditNetwork AuditingExternal AuditISO 27001LeadershipBusiness Continuity Management (BCM)Analytical SkillsBig Four Accounting FirmsAudit Committee

About

Experience

12 yrs

Total Experience

2 yrs

Average Tenure

3 yrs 10 mos

Current Experience

Bullhorn

2 roles

Senior Manager IT Audits and Compliance

Promoted

Mar 2025 – Present · 1 yr 1 mo · Remote

As Senior Manager – IT Audits & Compliance, I lead and support initiatives that drive stronger IT governance, enhanced risk visibility, and sustained regulatory compliance. I manage a team of four and facilitate the implementation of enterprise-wide GRC programs that help the organization maintain a strong security posture and operational efficiency.
I work closely with leadership to establish governance frameworks, policies, and compliance dashboards that enable informed, risk-based decisions. I manage IT risk activities, including assessments, maintaining the risk register, and tracking treatment plans to reduce exposure and strengthen controls. I also oversee external audits (SOC 1, SOC 2, ISO 27001), consistently achieving zero major findings over the past two years.
My responsibilities include developing multi-year IT audit plans, reviewing audit deliverables, evaluating internal controls, and presenting GRC insights to senior stakeholders. I coordinate compliance efforts across multiple frameworks, including ISO 27001, SOC, NIST, CMMC, and the EU AI Act, improving efficiency and reducing overlap.
I also mentor team members and lead awareness initiatives to build a strong culture of compliance and shared risk ownership across the organization.
Key Achievements:
Consolidated five subsidiary ISMS frameworks into a single ISO 27001 ISMS, cutting audit time by 40% with zero non-conformities.
Strengthened AWS, Azure, and GCP environments, reducing critical/high issues by 85%.
Expanded SOC 1 & 2 coverage from 5 to 12 applications, enhancing control assurance.
Broadened internal audit coverage to all critical systems, improving visibility and remediation timelines.
Optimized audit cycles, reducing completion timelines by 30% and improving stakeholder engagement.

IT AuditIT General Controls AuditingSOC 2Artificial Intelligence (AI)Cloud SecurityProject Management+14

Manager IT Audits and Compliance

Jun 2022 – Mar 2025 · 2 yrs 9 mos · Remote

As above.

Compliance ManagementCloud ComputingISO 27001IT ProjectsIndustry standardsSecurity Audits+11

Isaca

Exam Question Writer & Social Media Advocate (Volunteer Role)

Feb 2025 – Jan 2026 · 11 mos · Remote

I actively contributed to ISACA as an Exam Question Writer and Social Media Advocate, enhancing exam quality and ISACA's online engagement.

Project ManagementISACAArtificial Intelligence (AI)Social MediaEducational LeadershipLeadership

Kpmg

Assistant Manager- IT Audits

Aug 2019 – Jun 2022 · 2 yrs 10 mos · West Midlands, England, United Kingdom

As an Acting Manager, I led a range of IT audit engagements, including external and internal IT audits, SSAE 18 (SOC 1), ISAE 3000 (SOC 2), and ISAE 3402 engagements, overseeing the complete engagement lifecycle from planning through to final delivery.
My responsibilities involved project management, driving all phases of the audit process, and managing logistics such as budgeting, resource allocation, and independence checks. I worked closely with senior stakeholders to ensure timely, high-quality delivery within budget and provided regular reporting on progress. Leading a team of 5–7 members, I assigned and supervised tasks, coordinated with cross-border team members, and guided status meetings with senior client stakeholders.
Key deliverables in my role included IT General Controls reviews (e.g., Change Management, User Access Management, Patch Management), security controls at operating system and database levels, and assessments of physical and environmental controls at data centers. I also performed business process and application controls reviews, SOX controls testing, and reporting under SSAE 18 and ISAE 3402 standards.
Additionally, I led specialized engagements, including onsite vendor assessments based on ISO 27001, PCI DSS, and NIST standards, SOC readiness assessments, and collaborated with the Robotics and Automation team to streamline the audit process through automation.

Cloud ComputingIT ProjectsIndustry standardsSecurity AuditsAudit CommitteeIdentity and Access Management (IAM)+10

Ey

Assistant Manager (FSO-ITRA)

Nov 2016 – Aug 2019 · 2 yrs 9 mos · London Area, United Kingdom

At EY, I supported IT audit and advisory services across multiple cleints, contributing to diverse assurance and advisory engagements.
I was responsible for IT audit support in both external and internal audits, helping assurance teams understand technical aspects of client processes and conducting risk assessments to identify key controls.
My responsibilities included reviewing IT general controls (e.g., IT Governance, Change and Access Management, Backups) and testing application controls for critical systems like SAP and Oracle. I documented audit work in line with EY, IIA, and other standards and prepared audit reports for executive management.
Additionally, I served as a mentor to junior staff, fostering their growth and technical development.
Beyond standard audit activities, I contributed to specialized projects. These included audit readiness assessments against ISO 27001 and PCI DSS standards, a quality review of a leading bank's internal audit department, and an IT maturity assessment for a government organization to identify process improvements. I also led an ERP assignment to streamline a client’s year-end closing process, working with assurance teams to align financial records with audited accounts.

Cloud ComputingIT ProjectsSecurity AuditsBusiness Continuity Management (BCM)Big Four Accounting FirmsGeneral Controls+4

Bdo bahrain

Senior IT Auditor

May 2016 – Oct 2016 · 5 mos · Bahrain & Qatar

As a Lead IT Auditor reporting directly to three partners across two countries, I played a pivotal role in driving IT assurance and advisory services across diverse client engagements.
My responsibilities included end-to-end engagement management, providing IT audit support for both external and internal audits, and conducting comprehensive reviews of IT general and application controls for business-critical systems.
I worked closely with clients to understand their business processes and information systems, ensuring a tailored audit approach.
Additionally, I was involved in key administrative functions like preparing planning memos, budgets, and proposals.
I also took on leadership responsibilities, hiring, training, and managing junior staff and conducting workshops to enhance IT audit awareness across the firm.

Big Four Accounting FirmsGeneral ControlsCISA

Ey

2 roles

Senior IT Auditor/Consultant (KSA-Secondment)

Oct 2015 – Jan 2016 · 3 mos

As above under EY's employment section

Senior IT Auditor/Consultant

Mar 2014 – May 2016 · 2 yrs 2 mos

At EY Pakistan and Saudi Arabia, I contributed to various assurance and advisory engagements, providing IT audit support for both external and internal audits.
I gained a strong understanding of client business processes and information systems, guiding assurance teams on technical business aspects and conducting risk assessments to recommend key controls.
My role included reviewing IT general controls (e.g., IT Governance, Change and Access Management, Backups) and performing application controls testing for critical systems. I also assessed database, operating system, and security settings for core applications with financial impact, such as SAP and Oracle.
Additionally, I prepared internal documentation, adhered to IIA and other audit standards, produced audit reports for executive management, and mentored junior staff to enhance team capabilities.