Chandan Malavalli Somashekar
London,United Kingdom
Summary
Chandan is an Assistant Manager in BDO's Digital & Risk Advisory practice with over eight years of experience in IT Audit and Risk Advisory. A CISA‑certified professional, he specialises in IT general controls (ITGC), application controls, third‑party assurance audits, and technology risk management. He has extensive expertise in SAP IT audit, SAP governance, and controls optimisation, supported by strong knowledge of business process controls and end‑to‑end assessments across financial services, retail, aviation, healthcare, and manufacturing sectors.
He has a proven track record in delivering SOX compliance programmes, business risk assessments, and IT control transformation initiatives for UK‑listed organisations. Chandan is experienced in leading teams, mentoring junior colleagues, and providing high‑quality client service through clear communication, strong stakeholder management, and a commitment to continuous improvement.
Overview
9
9
years of professional experience
2015
2015
years of post-secondary education
1
1
Certification
Work history
ASSISTANT MANAGER
BDO UK
London
2023.05 - 2026.03
- Led IT Controls Readiness workshops independently, conducting detailed gap analyses and developing key deliverables including Risk & Controls Matrices (RACMs), deficiency logs, remediation plans, and end‑to‑end process flowcharts.
- Facilitated IT Controls Remediation and Embedding workshops with senior stakeholders to support effective implementation and long‑term adoption of enhanced control practices.
- Conducted comprehensive end‑to‑end walkthroughs to assess client processes across Governance, Risk and Control frameworks, identifying design gaps and evaluating operating effectiveness.
- Assessed IT control compliance against internal policies and industry standards, highlighting control weaknesses, process inefficiencies, and delivering clear, actionable recommendations aligned to best practice.
- Advised clients on UK Corporate Reform and SOX compliance, leading large‑scale IT control transformation programmes across financial services, retail, and digital sectors.
- Directed multi‑disciplinary teams to deliver ITGC and ITAC testing, ICFR operating‑effectiveness reviews, and remediation roadmaps for enterprise‑wide finance transformation initiatives.
- Designed and implemented IT risk and control frameworks for cloud platforms (Oracle Cloud, Microsoft Azure, Google Data Warehouse), ensuring alignment with UK SOX and organisational governance requirements.
- Developed IT risk maturity models and programme governance frameworks to help executive stakeholders prioritise high‑risk areas, strengthen oversight, and mitigate risks during major system implementations.
- Strengthened client control environments through improved user access governance, Segregation of Duties (SoD) remediation, SAP GRC ruleset optimisation, and tailored RACM development.
- Reviewed engagement deliverables, monitored budgets, and managed project overruns to ensure high‑quality, timely delivery.
- Coached and mentored junior team members, supporting their development in IT audit, SOX testing, SAP controls, and risk management.
- Built strong client relationships through proactive communication, managing expectations, clarifying audit requirements, and ensuring effective collaboration throughout the audit lifecycle.
ASSISTANT MANAGER
KPMG UK LLP
London
2022.04 - 2023.04
- Facilitated client engagements in IT external audit ensuring compliance with audit quality requirements.
- Conducted testing of IT controls and identified process risks to enhance audit outcomes.
- Assisted in building strong client relationships through effective communication and collaboration during audits.
- Supported junior team members on IT audit practices to improve team performance and knowledge.
- Contributed to the delivery of high-quality audit reports on time, meeting client expectations and compliance standards.
SENIOR EXECUTIVE (IT AUDIT)
KPMG Global Service Pvt Ltd
Bengaluru, India
2017.02 - 2022.03
- Assisted with SAP ITGC and IPE/report testing across healthcare, manufacturing, retail, and automotive sectors.
- Supported end-to-end audits through conducting walkthroughs and testing of ITACs and GITC for SOX, ISAE 3402, and SOC 1 engagements.
- Helped ensure timely delivery of high-quality reports for each engagement.
- Facilitated client walkthroughs calls to gather insights on processes and controls.
Education
Bachelor of Engineering - Telecommunication Engineering
Visvesvaraya Technological University (VTU)
Karnataka, IndiaSkills
- IT External Audit
- SOX controls
- IT Risk Advisory
- IT Internal Audit
- SAP ERP controls
- GRC controls
- SOC1 (SSAE16/18, ISAE3402) and SOC2
- Programming languages: basics of C, C
- Operating System: Microsoft Windows family, and Linux
- Application: SAP
- Advanced Excel
- Microsoft Office
- Client relationship management
- Team leadership
- Communication skills
- Training facilitation
Certification
Certified Information Systems Auditor (CISA)
Credential ID : 29938c88-f66c-4210-a952-625bb4e484a8
Credential URL : https://www.credly.com/badges/29938c88-f66c-4210-a952-625bb4e484a8/linked_in_profile
Timeline
ASSISTANT MANAGER
BDO UK
2023.05 - 2026.03
ASSISTANT MANAGER
KPMG UK LLP
2022.04 - 2023.04
SENIOR EXECUTIVE (IT AUDIT)
KPMG Global Service Pvt Ltd
2017.02 - 2022.03
Bachelor of Engineering - Telecommunication Engineering
Visvesvaraya Technological University (VTU)