Benjammin Ocquaye

I assist in the identification and management of risks by advising and helping clients on the organization's methodology, operation, and execution of financial statement, internal, and cybersecurity audits.

IT Assurance & Cyber Delivery

Led client engagements from initiation to completion, ensuring successful delivery of projects and meeting client expectations

• Maintained a high level of quality and adherence to industry standards throughout all phases of engagements.
• Participate in, lead, and manage assurance and internal/external audit assignments on IT Assurance & Cyber Security, Swift CCSP ,SOC 2, Data Protection/Privacy (including GDPR compliance), IT strategy, change management, business continuity, IT disaster recovery, IT infrastructure (including databases), and IT asset management.
• Develop and maintain long-term productive customer connections and networks in collaboration with other MKS assurance teams
• Assist in the response to and execution of work on a variety of financial statement audit, assurance, and related consulting projects.
• Lead and/or facilitate IT Audit workshops
• Raising IT Assurance knowledge within MKS
• Creating IT audit processes and procedures for MKS
  

Business expansion:

• Actively contributed to business development efforts, resulting in the acquisition of new projects and expanding client base.
• Staying up to date on all industry-specific issues and emerging risks that may affect clients, as well as assisting and developing business development initiatives such as proposals and tenders;
  

Management of people:

• Oversaw and mentored team members, providing guidance and support for their professional growth.
• Implemented performance management initiatives to enhance team productivity and deliver exceptional results.

• Managing delivery of IT Internal Audit services in the Financial Services Sector
• Taking responsibility for the overall output from client engagements including scoping, financial management, risk management, managing delivery risk, production, quality and review of deliverables
• Building and maintaining excellent relationships across a range of clients and prospects including senior leadership
• Actively identifying and progressing business development opportunities and supporting the team with sales activities such as proposal writing and assisting with client presentations
• Participating in service line development, reporting to the service line leader on progress of development, sales and delivery
• Developing internal networks and maintaining excellent relationships with colleagues across KPMG, in particular in the wider IT Advisory practice
• Coaching, mentoring and developing team members, both on and off engagements (e.g
• Setting goals and appraising performance), and contributing to practice management (e.g
• Training and knowledge sharing)

• Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure that the integrity, confidentiality and availability of information is owned, controlled or processed by the organization.
• Develop, maintain and publish up-to-date information security policies, standards and guidelines.
• Create, communicate and implement a risk-based process for vendor risk management, including the assessment and treatment for risks that may result from partners, consultants and other service providers
• Ensure that security programs comply with relevant laws, regulations and policies to minimize or eliminate risk and audit findings.
• Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
• Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action.
• Manage and establish priorities for maintenance, design, development and analysis of entire infrastructure systems inclusive of LANs, WANs, internet, security and wireless implementations.
• Manage IT Infrastructure and Security to Maximize Uptime and Protection of Data
• Ensure apt security levels on network, infrastructure and servers are maintained
• Responsible for day-to-day system administration, including management of internal network, VPN, Microsoft Active Directory (AD),Office 365, Azure, SharePoint and system backups.
• Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.
• Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and comply with policies and audit requirement

• Lead in ISO 27001 & 22301 Surveillance Review and Assurance
• Lead ISO 27001 & 22301 Certification with the Bank
• Conducted bi-annual Cyber Security Posture Reviews for Bank of Africa and recommended best practices & influence the organizations policy, standards, procedures and guidelines
• Ensured compliance with Government and industry regulators.
• Conducted Post implementation reviews on IT Projects.
• Established security measurements & metrics with the IT Risk & Control unit.
• Worked with IT operations to set up a shared disaster recovery/business continuity plan.
• Analyzed risks associated with IT and business processes and assess the effectiveness of the internal control systems
• Lead the Consolidation and preparation of Board Audit Papers for the Audit Department
• Assisted audit staff in performing complex Operational audits and reviews
• Developed auditing program to offer comprehensive audit coverage within the organization
• Set priorities, identify necessary audit plan changes, supervise audit processes and prepare detailed reports on findings
• Reviewed audit reports for correctness and completeness before submitting to management
• Developed and discussed findings, recommendations and timelines for corrective action with responsible senior management and monitored the implementation of recommendations
• Team Lead for conducting all investigations, especially in Cyber Security and Fraud Issues

• Performed audit services following IS audit standards to assist the bank with protecting and controlling information systems
• Conducted assurance reviews on the effectiveness of IT governance, management structure and business processes Conduct IT Strategic alignment to ensure IT is properly aligned to the business objectives and strategies
• I assured Management and the Board of Directors of the practices for the acquisition, development, testing, and
• Implementation of information systems meets the bank's strategies and objectives
• Assured that the processes for information systems operations, maintenance, and support meet the bank's strategies and objectives
• Provide assurance on business applications and financial software to the board
• Assure that the organization's security policies, standards, procedures, and controls ensure the confidentiality, integrity, and availability of information assets
• I conducted revenue assurance reviews with ACL Software to the bank
• Provided support in system-based investigations and Support to Financial Auditors.

• Ghana
• Design of the Bank's Compliance Risk Scoring and AML review application for KYC Assessment, Transaction Monitoring and Customer Risk Profiling

• Liaise with LAN and WAN Service Providers to ensure effectively Service
• Partner with E-Business Unit in the installation of ATMs, managing Internet banking and SMS banking
• Administration of Exchange Server, Identifies, diagnoses, and resolves Level One problems for users
• Computer software and hardware, District network, the Internet, and new computer technology in a call center environment; communicate solutions to end-users
• Provides one-on-one end-user problem resolution over the phone for staff
• Delivers, tags, set up, and assists in the configuration of end-user PC desktop hardware, software, and peripherals
• Diagnoses and resolves end-user network or local printer problems, PC hardware problems, e-mail, Internet, and local-area network access problems
• Coordinates timely repair of PC equipment covered by third-party vendor maintenance agreements
• Performs minor desktop hardware repair for PC equipment and peripherals that are not covered by third-party vendor maintenance agreements
• Helps install local area network cabling systems and equipment such as network interface cards, hubs, and switches
• Assists Network Technicians in creating materials for end-user frequently asked questions (FAQs).