Hein Corporaal

Experience

• 

  MultiChoice

  Feb 2006 - Feb 2008

  Sarbanes Oxley implementation Lead

  Lead: Corporate Governance and IT Internal Controls Framework in support of Sarbanes-Oxley

• 

  Jefferson Wells

  May 2008 - Dec 2010

  Management Consulting- Enterprise Risk, designing, implementing, monitoring and maintaining IT systems and control environment risk.Manage implementation of the best practice across BP South Africa, Tanzania and Rheine regionMulti-user Security Design thought leadershipSecurity Controls and Process Thought LeadershipRisk Mitigation and controls designEnd-User Computing compliance standard design and implementation User Developed Application Risk Services for "Rest of the World" IT Programme management

  • Risk Advisory Services (CISA, CRISC)

    Jan 2007 - Dec 2010

  • Regional Subject Matter Expert- User Developed Application Risk

    May 2008 - Nov 2010
• 

  Oratel

  Jun 2011 - Feb 2014

  Risk Advisory Services- Contracted to PWC

  • Directed team in developing standardized business processes and process automation to mitigate risks at major banks in South Africa.• Tailored frameworks to ensure regulatory compliance and internal policy adherence while enhancing operational processes.• Designed key performance indicators and led user acceptance testing for process implementations.Identify, assess, and prioritize operational risks (e.g., fraud, technology failures, compliance breaches, human error).• Conduct risk assessments and identify key risk indicators (KRIs) to measure and monitor operational risk exposure.• Develop and implement risk controls, policies, and procedures to mitigate identified risks.Work closely with business units to ensure risk management strategies are effectively applied. Show less

• 

  MTN

  Feb 2014 - Jan 2020

  • Established the GRC COE to handle cross-functional process risks and promote compliance in the 1st and 2nd Lines of Defense• Developed matrices for assessing risks and enabling controls driving compliance through mature business processes in the finance, HR, and ERP streams.• Facilitated adherence to the Global Process designs and identify process automation opportunities through collaborative design, implementation and testing life cycles.• Lead initiatives to optimize business processes, reduce inefficiencies, and enhance productivity.• Adopt and implement Lean Six Sigma framework for continuous improvement within the mobile money (FinTech) Business Unit. • Established metrics to measure operational performance and identify areas improvement.• Collaborate with cross-functional teams to ensure consistent application of best practices, regulatory requirements and process maturity mechanisms.• Developed and directed a team that excelled at risk management and operational excellence in the Finance Shared Services and Finance Technology departments• Identifying, managing, and mitigating risks that may impact the day-to-day operations of the Finance Technology department• In-depth understanding of operational risk frameworks, tools, and techniques, including risk assessment, control design, policy development and mitigation strategies for identified deficiencies.• Implementation of relevant regulations, compliance standards, and industry best practices (e.g., Basel III, Sarbanes-Oxley, GDPR) • Developed effective solutions to mitigate risks while maintaining operational efficiency and providing senior management with the assurance of compliance.• End to end crisis management ensuring the root causes are identified, remediation and mitigation activities are designed and tested to ensure that proper standards are in place to avoid future occurrences• Integrated risk management coaching to senior management to ensure risk based decision-making. Show less • Lead the business requirements assessment for the governance, risk and control (GRC) solution for continuous control monitoring. • Managed the process governance, risk and control strategy for the MTN global finance, SCM, O2C and deliver HR solutions. • Development of risk and controls framework for Oracle EBS R12 solution. • Implemented the IT General Controls (ITGC's) framework as well as logical access standards. • Delivered management controls such as segregation of duties and delegation of authorities. • Drove adherence to process designs and automation of key processes in compliance with industry standards. • Supported user acceptance testing of automated controls. • Delivered first point of contact for third party assurance.• Managed complete catalogue of end to end business process development and implementation for HR and order to cash.• Risk Mitigation: performed risk assessments on current solutions and developed mitigating controls for control and process failures. Show less

  • Senior Manager: IT Governance Risk and Compliance

    Sept 2015 - Jan 2020

  • GRC Process Lead

    Feb 2014 - Aug 2015
• 

  Booking.com

  Jan 2020 - now

  Global Governance Risk & Compliance Manager (1st Line)

  • Directed the design and implementation of an enterprise-wide GRC framework, reducing compliance deficiencies by 68%.• Championed Lean and Six Sigma initiatives, resulting in operational cost savings equivalent to 33 FTEs and significant process optimization.• Established and led key decision forums, including the Employee Tax, Legal and Statutory Forum, and the Business Enablement Service Line.• Spearheaded risk assessments across functions, aligning risk mitigation strategies with business objectives and performance metrics.• Oversaw regulatory compliance initiatives (ISO, SOX, GDPR), integrating risk management into enterprise-wide strategies and the Project Office. Provided management assurance of compliance for Business and IT controls• Led the development of training programs and performance dashboards, Driving a culture of risk awareness and data-driven operational excellence.• Build strong relationships with regulatory bodies, auditors, and other key partners.• Provide training and awareness programs to ensure employees understand their role in risk management and operational improvement.• Developed the High Performing Enterprise Model to provide an holistic and optimized performance improvement model with process maturity in mind.• Process Improvement: Expertise in process optimization methodologies such as Lean, Six Sigma, Kaizen, or Total Quality Management (TQM).• Change Management: Ability to lead and manage change across various departments, ensuring smooth transitions while maintaining operational continuity.• Data Analysis and Decision-Making: Proficiency in using data analytics to drive decisions, measure process performance, and identify areas for improvement through process mining.• Leadership and Team Management: Strong leadership capabilities to manage cross-functional HR, FP&A and IT teams, motivate employees, and foster a culture of continuous improvement. Show less