Open to opportunities

fah jawi

@fahjawi

Message

Results-driven cybersecurity consultant with expertise in IT audit and compliance.

Zimbabwe

Message

What I'm looking for

I am looking for a role that challenges my skills in cybersecurity and audit, offers opportunities for growth, and values collaboration and innovation.

I am a Certified Information Systems Auditor (CISA) with over 5 years of extensive experience in cybersecurity, risk assessment, data privacy, and compliance. My career has been dedicated to identifying risks, evaluating controls, and ensuring regulatory compliance across diverse industries. I have a proven track record of developing and executing IT audit engagement plans, conducting thorough risk assessments, and providing actionable recommendations to enhance operational efficiency.

Currently, I serve as an IT Audit Supervisor at Bakertilly, where I lead audits, assess IT governance structures, and collaborate with cybersecurity teams to align audit scopes with strategic risks. My commitment to continuous improvement is reflected in my mentorship of junior auditors and my efforts to foster a culture of cybersecurity awareness within organizations. I am passionate about leveraging my expertise to drive improved operational efficiency and regulatory compliance in my next role.

Experience

Work history, roles, and key accomplishments

Current

IT Audit Supervisor

Current

Bakertilly

Aug 2023 - Present (1 year 11 months)

Developed and executed IT audit engagement plans to ensure effective and efficient audits. Conducted walkthroughs and control testing for IT general controls (ITGCs) and application controls. Performed cybersecurity risk assessments using NIST Cybersecurity Framework and ISO 27001.

Audit Plans Risk Assessment Cybersecurity IT Governance ISO 27001 NIST Cybersecurity Framework IT General Controls IT Application Controls

IT Auditor

Bakertilly

Aug 2021 - Present (3 years 11 months)

Conducted comprehensive IT audits and risk assessments to identify vulnerabilities and ensure compliance with regulatory standards. Planned and executed IT audits to evaluate internal controls and assess overall security posture. Collaborated with IT teams to implement security measures and improve system resilience.

IT Audit Risk Assessment Compliance Assessments Internal Controls Security Posture Incident Response Report Preparation Vulnerability Assessment

IT Auditor

Dream93Technologies

Jan 2019 - Present (6 years 6 months)

Conducted comprehensive risk assessments to identify and mitigate potential vulnerabilities. Developed and executed audit plans to ensure compliance with institutional policies and regulations. Evaluated internal controls and performed compliance checks to enhance operational efficiency.

Risk Assessment Audit Plans Internal Controls Compliance Data Analysis Risk Mitigation Compliance Policies

Education

Degrees, certifications, and relevant coursework

Unknown

Master of Cybersecurity, Cybersecurity

Currently pursuing a Master of Cybersecurity, building advanced knowledge in cybersecurity principles and practices. This program is enhancing my expertise in defending against cyber threats and managing information security.

Amazon Web Services

AWS Cloud Practitioner, Cloud Computing

Earned the AWS Cloud Practitioner certification, demonstrating foundational knowledge of Amazon Web Services (AWS) cloud concepts. This includes understanding core AWS services, security, architecture, pricing, and support.

PECB

NIST Cybersecurity Consultant, Cybersecurity Consulting

Achieved the NIST Cybersecurity Consultant certification from PECB, Canada. This certification demonstrates proficiency in applying the NIST Cybersecurity Framework.

Midlands State University

Bachelor of Science in Telecommunications Honors, Telecommunications

Completed a Bachelor of Science in Telecommunications Honors, gaining foundational knowledge in telecommunications systems and technologies. This degree provided a strong technical base for a career in IT and cybersecurity.

Mastermind

ISO/IEC 27001 Certified Lead Auditor, Information Security Auditing

Certified as an ISO/IEC 27001 Lead Auditor by Mastermind, USA. This certification enables leading audits of Information Security Management Systems (ISMS) against ISO 27001 standards.

Catholic University

Project Management, Project Management

Completed a Project Management program at Catholic University, Zimbabwe. This program provided essential skills in planning, executing, and closing projects effectively.

Harvard University

Python (CS50), Computer Science

Completed the Python (CS50) course from Harvard University, USA. This course provided a strong foundation in programming with Python, covering fundamental computer science concepts.

ISACA

Certified Information Systems Auditor (CISA), Information Systems Auditing

Obtained the Certified Information Systems Auditor (CISA) certification from ISACA, USA. This certification validates expertise in IT audit, control, and security.