Voornaam |
Danny |
|
|
Woonplaats |
Voorhout |
|
Geboortejaar |
1965 |
|
|
|
|
|
|
|
Career
summary: |
1990 –
1995 |
IT auditor
at ING Group (Nationale-Nederlanden)
Focus on IT
risk management and IT audit in Dutch and foreign ING
companies |
|
|
1995 – 03 /
2005 |
Senior
Manager at Deloitte Enterprise Risk Services
Amstelveen
Focus
on:
-
operational risk
management
-
operational audit
-
with respect to Sarbanes
Oxley
o
audit (attestation)
o
project management and quality assurance
(non-attestation clients)
o
tool implementation advisory (non attestation
clients). |
|
|
|
|
Education |
·
Post graduate education IT -Auditing (Erasmus
University, Rotterdam)
·
University Computertechnics (University of
Haarlem)
·
Certified Information Systems
Auditor |
|
|
|
|
Relevant
experience |
Audit & Operational Risk
Management |
|
|
Execution of integrated audits (IT, operational and
support for financial audit) at ING companies and Deloitte
clients |
|
|
Execution & management of IT audits at clients
of Deloitte, e.g.
-
MVS
-
AS/400
-
Unix
-
Windows NT |
|
|
Management of integrated audits for a global
retailer, supporting the financial auditor in performing the audit of the
financial statement. |
|
|
Implementation of an Operational Risk Management
methodology at a securities department of ING. Defined methodology,
performed facilitated risk identification workshops and reported on the
conclusion of the risk management
project. |
|
|
Lead, facilitated and executed numerous risk
management projects with respect to a wide variety of risks, e.g. IT,
financial, legal, market, technical and correlated risks.
|
|
|
Management of operational and IT audits (internal
audit support) for Amsterdam Airport Schiphol and performing operational
risk management workshops, operational audits with respect to the main
business processes and lead the IT audit
team. |
|
|
|
|
|
Sarbanes-Oxley |
|
2003 –
2005 |
Management and implementation of several
Sarbanes-Oxley projects in a consultancy role. Acting as a project manager
and as a QA specialist on deliverables. For Deloitte clients supported
Sarbanes-Oxley projects in an attestation
role. |
|
04/2005 –
current |
Currently acting as QA and SOX implementation
manager for a US based global organisation in HR benefits management and
Actuary services. Focus on assessment and remediation of controls in
business processes and IT supporting processes, including business
continuity. |
|
|
|
|
|
Practice Management |
|
|
Senior
manager with Deloitte Enterprise Risk Services. Experience with IT-audit and operational
risk analysis, operational risk management, self assessment and
operational / internal audit methodologies for international clients in
several industries. |
|
|
|
|
Specialisation: |
·
Operational Risk Management & Internal
Audit
·
IT Audit
·
Information Security & Business Continuity
Planning
·
Process management & design and implementation
of internal control |
|
|
|
|
Language
skills
|
·
Dutch: Fluent (written and
spoken)
·
English: Fluent (written and
spoken)
·
German: Good (written and
spoken)
·
French: Moderate (written and
spoken) |
|
|
|
|
Platform
knowledge |
·
AS/400
·
Windows NT / 2000 / XP
·
Unix (limited)
·
IBM OS/390
(limited) |
|
|
|
|
Applications |
·
Microsoft Office Suite
·
Time management
software
·
Many client specific solutions (logistics,
financial, planning)
·
CRAMM (methodology & tool for IT risk
management)
·
Option Finder (tool to support facilitation of
workshops)
·
Mind Mapper (tool to structure brain storm
sessions)
·
ArtPack (powerpoint support for process
modelling)
·
Mavim (process documentation
tool)
·
Visio
·
AS/2 (Deloitte audit methodology &
tool)
·
Tools for process modelling & controls
documentation |
|
|
|
|
