Shafik Mashar

Experience

• 

  Telekom Malaysia

  Apr 2005 - Mar 2007

  Key Person responsible for managing TM Group’s Corporate IT, TM Facilities (TMF) and Multimedia University (MMU) audit accounts and reports to the Board Audit Committee (BAC). Provide independent, objective assurance and consulting services designed to add value and improve TM operations; Responsible for planning, organizing, managing, implementing and controlling Internal Audit engagements and consultancy services for overall Group’s IT Enterprise Architecture Masterplan and TM Facility’s and Multimedia University’s operations to establish the adequacy and effectiveness of overall systems of Internal Controls; As a SAP Specialist, responsible for the overall audit activities pertaining to SAP of the whole TM group, including overseas subsidiaries, in order to establish the adequacy and effectiveness of Internal controls, Risk Management and Governance process. To acquire specialization in SAP as a resourceful professional for referencing by other auditors. Show less Responsible for planning and leading audit team in executing various audit engagements; assessment of risks at operational, tactical and strategic levels and recommending appropriate internal controls; reporting of internal control weaknesses identified and its recommendations to middle and top management, and to TM Board Audit Committee. Provide assurance to the management on the state of internal controls, risk management and governance processes related with information systems and network infrastructure by conducting various audit programs covering various systems and processes that may introduce risks to the business objectives of the company. COSO, COBIT and eTOM are used as the primary standards reference when performing audit tasks. Show less

  • Senior/Account Manager

    Jun 2006 - Mar 2007

  • IS/Network Audit Manager

    Apr 2005 - May 2006
• 

  CSC

  Apr 2007 - Nov 2007

  Audit Manager, Global Infrastructure Services

  Senior Management position, which requires building excellent cross-functional business relationships internally within CSC and also at the client’s end (Maybank). Responsible for managing top management expectations on all audit matters for the Maybank account, developing compliance assurance methods and techniques, and measuring/reporting on compliance. Accomplishments achieved include: Credited for establishing a new CSC-Maybank Audit process Acknowledged for improving the communication channels between CSC and Maybank on audit matters Acknowledged for reducing the number of audit issues raised by the Bank Responsible for creating awareness on good audit practices in accordance to international standards (ISACA) Show less

• 

  BAT

  Nov 2007 - Dec 2010

  Senior Manager

  Global position which involve extensive travelling. Responsible for performing audits across all IT elements of SAP (including the links to business processes), focused on the high-risk areas of BAT operations worldwide. PRINCIPLE ACCOUNTABILITIES: To perform independent risk based audits of SAP (e.g. Programme and Project assessments, Basis reviews, (SAP) business process reviews) to ensure that controls supports the achievement of business goals whilst balancing risk and the cost; To provide SAP training to IT and General Auditors; To monitor the implementation of the agreed action plans resulting from audits; To coach local auditors regarding the impact of IT on Business Risk and the Controls; To co-ordinate and work together with Group Security to manage IT security risks across SAP; Support development of new audit methodologies and ways of working. Show less

• 

  Robi Axiata Limited

  Nov 2010 - Apr 2014

  Direct, guide and motivate internal auditors to perform audits as per the business plans and as requested by BAC / management. To monitor the delivery and quality of the audits on a periodic basis and takes necessary action to ensure its completion within the financial year; Monitor and supervise subordinates to ensure work executions are in compliance to the approved audit program and in accordance to the Standard of Professional Auditing Practices; To keep management informed of all audit issues, concerns and recommendations during the audit and to minimise disruption to auditee’s operation; To develop, communicate, seek approval and execute the annual audit plans that is risk based to determine the priority of IAD and consistent with RAx objectives and goals, by giving due consideration to the risk profiles/assurance plans of the various business units/functions in RAx, input from management and Boards, input from External Auditors on financial risks and identify external resources requirements to meet the audit plan; To review the structure and effectiveness of IAD to ensure it is adequately and competently resourced to add value to the organization, and that its role of oversight function to BAC is maintained. Ensure that the organizational independence and objectivity of internal auditors and IAD are maintained at all times. This includes competence profiling, development of top talent, succession planning, training and coaching Show less

  • Executive Vice President

    Aug 2013 - Apr 2014

  • Head of Internal Audit

    Nov 2010 - Aug 2013
• 

  Maxis

  Apr 2014 - now

  Head of Internal Audit

  Reporting to the Audit Committee Chairman. Lead the internal audit function to provide independent and objective assurance and consulting activity that is designed to add value and improve the Company’s operation via systematic disciplined approaches to evaluate and improve the effectiveness of risk management, control and government processes.