Profielschets
Overzicht
Werkervaring
Opleidingen
Vaardigheden
Languages
Certificering
Hobby's
Tijdlijn
Generic
Ismaïl El Hami

Ismaïl El Hami

Profielschets

As an IT Risk Control Manager, IT auditor and Data analyst, I like to focus on improving internal control within organizations. In recent years I have carried out internal and external IT audits in both the financial and non-financial sectors. In the past 4,5 years I have managed teams in implementing and testing SOx IT controls for Nouryon. I have performed the following different types of engagements: annual statement, ISAE3000 and ISAE3402 type I and II reports, DGS, SOx audits, DORA, DNB58, ISO27001 cybersecurity audits and contributed to the SOx and ISO27001 implementation processes.

Overzicht

10
10
years of professional experience
7
7
years of post-secondary education
1
1
Certification

Werkervaring

IT Control Officer

Aegon NL
Utrecht
2025.02 - 2026.05
  • Performed first-line control testing activities in support of the annual financial statement audit, ensuring that key IT controls were appropriately designed and operating effectively.
  • Acted as ISAE 3402 Type I and Type II coordinator and primary point of contact for external auditors, facilitating audit requests, coordinating evidence collection, and ensuring timely and accurate communication between IT and the audit team.
  • Reviewed and assessed SOC 1 reports from service organizations, evaluating the design and effectiveness of relevant controls and determining their impact on Aegon Netherlands’ control framework and financial reporting.

IT Risk Manager

MN Services
Den Haag
2024.05 - 2025.02
  • Contributing and implementing DORA within MN.
  • Analyzing risks and ensuring compliance with laws and regulations within the organization. In doing so, we worked closely with various teams to improve internal control measures (including End User Computing (EUC)) and to effectively manage the risks.
  • Performed an Internal audit for the readiness of the DNB58:2023.

IT Risk Control Manager a.i.

Nouryon
Amsterdam, Netherlands
2022.03 - 2024.04
  • Over the past 2.5 years I have been working on implementing and auditing SOx at Nouryon. I guided the control testing teams and the business in the design and testing of ITGCs and application controls.
  • Designing and implementing controls around applications such as: SAP, ServiceNow, Webmethods, HFM, Refinitiv, Blujay, Automation Anywhere, Finastra, Planon, and more.
  • Finalizing and presenting the findings, discussing them and advising the appropriate stakeholders to implement improvement actions.
  • Performing and coordinating internal IT audits across different teams, including understanding the IT environment, scoping, budgeting and planning.

Senior IT Auditor a.i.

Deloitte
Amsterdam, Netherlands
2021.10 - 2022.03
  • During the 'busy' season I contributed and guided IT audit teams and I carried out audits for various clients in the financial sector in the context of the annual accounts audit - but also ISAE3000, ISAE3402. Here I also contributed to a Deposit Guarantee Scheme (DGS) audit.
  • Client portfolio: DXC Technology, Rabobank, MN Services and various pensionfund providers.

Senior IT Auditor

Ernst and Young (EY)
Amsterdam, Netherlands
2016.02 - 2021.09
  • Over the past 5.5 years I have worked as a Senior IT Auditor for EY. Here I worked as a Senior IT Auditor/Manager, where guiding various teams in completing the testing, reviewing and communicating results to stakeholders of the IT auditwork was one of the core tasks.
  • Types of engagements: DGS audits, SUAG audits, annual statement audits, ISAE3000 type I and II, ISAE3402 type I and II audits, ISO27001 and SOx compliance implementation and audit processes.
  • Client portfolio: Action, Shell, AON, a.s.r., ABN AMRO Bank, Credit Europe Bank, PON, MN Services, TMF, De Nederlandsche Bank (DNB) and more.

Opleidingen

Postmaster - IT Audit, Compliance & Advisory (RE)

Vrije Universiteit Amsterdam (VU)
Amsterdam
2018.01 - 2020.12

MSc. - Information & Knowledge Management

Vrije Universiteit Amsterdam (VU)
Amsterdam
2014.09 - 2015.07

BSc. - Business Administration

Vrije Universiteit Amsterdam (VU)
Amsterdam
2011.09 - 2014.07

Vaardigheden

  • Management
  • Team player
  • Analytical
  • Social
  • Flexible
  • Entrepreneurial thinking
  • Proactive

Languages

Dutch, Moroccan (Amazigh and Arabic)
Eerste talen
English
Gevorderd
B2

Certificering

  • ISO27001 Implementer & auditor

Hobby's

  • Indoor football
  • Having fun with friends and family
  • Foodie

Tijdlijn

IT Control Officer

Aegon NL
2025.02 - 2026.05

IT Risk Manager

MN Services
2024.05 - 2025.02

IT Risk Control Manager a.i.

Nouryon
2022.03 - 2024.04

Senior IT Auditor a.i.

Deloitte
2021.10 - 2022.03

Postmaster - IT Audit, Compliance & Advisory (RE)

Vrije Universiteit Amsterdam (VU)
2018.01 - 2020.12

Senior IT Auditor

Ernst and Young (EY)
2016.02 - 2021.09

MSc. - Information & Knowledge Management

Vrije Universiteit Amsterdam (VU)
2014.09 - 2015.07

BSc. - Business Administration

Vrije Universiteit Amsterdam (VU)
2011.09 - 2014.07

Vergelijkbare profielen

PROFIEL AANMAKEN
Ismaïl El Hami