Freelancer profile translated to English.

Description

Independent consultant ingovernance, risk, and complianceat the intersection of **internal control, audit, and information technology**.

My background, including financial and IT audit at Mazars, group internal control at Rexel, and then consulting in SAP implementation and data quality at Accenture, has given me a dual expertise: the methodological rigor of **audit and internal control**, combined with technical mastery of **information systems**, **data analytics**, and **cybersecurity challenges**.

I work on:

*Internal Control & IT Audit:design of control systems for business processes and IS, IT general controls (ITGC) audit, application controls, access review and segregation of duties

*Risk Management & Cybersecurity:risk mapping including IT and cyber risks, cybersecurity maturity assessment, NIS2/DORA compliance support

*Fraud Investigation & Data Analytics:investigation of fraud cases (certified CFE), anomaly detection through data analysis, anti-fraud system design

*Internal Audit & Training:audit missions on operational, financial, and IT processes, recommendations and action plans. Raising awareness among management teams on fraud, cyber risks, and good internal control practices.

Industry field of expertise

Languages

French
Native or bilingual
English
Fluent

Workplace preferences

Can work on-site

Paris (up to 20km)

Accenture
Management Consultant
CONSULTING AND AUDITS
February 2023 - Today (3 years and 4 months)
Paris, France
French international banking group:

Regulatory & Governance Lead:
Led the resolution of ECB recommendations and redesign of Group risk management tools.
Defined complex data consolidation rules for reporting to senior management.
*Internal Control:Formalized internal control procedures at Group level and coordinated the cross-functional implementation of action plans.

French car manufacturer, SAP S/4 HANA Migration:

Integration of controls in S/4 HANA:

*Led the integrationof the internal control framework as part of the S/4 HANA migration, scope S2P, O2C, R2R & Controlling, using the "design by controls" methodology.

*Risk Mitigation:designed the Process-Risk-Control (PRC) matrix, risk mapping, and defined mitigation plans that reduced operational risk post go-live.

French asset management company:

*Data Quality & Reporting:led the Data Quality workstream (team of 3) as part of the implementation of a major reporting tool.
Ensured data quality and integrity, acting as an interface between business and IT teams.
Internal projects and innovation:

Fraud prevention and data visualization:
Conducted internal training sessions on fraud prevention and data visualization (Power BI).
Contributed to the development of innovative internal control offerings within the team.
Internal Control Data Quality Management SAP S/4 HANA Risk Mapping Data Analytics
REXEL
Group Internal Controller
RETAIL (SMALL BUSINESS)
November 2021 - February 2023 (1 year and 3 months)
Paris, France
International electrical equipment distribution group — €14 billion in revenue, present in 21 countries

Group Internal Control:
Led the internal control self-assessment campaign across all international subsidiaries.
Updated the internal control framework in collaboration with Group Management.
Provided quarterly reporting to the Audit & Risk Committee.
Managed and coordinated the network of local internal controllers.

Risk Management:
Updated the Group risk map.
Led the local risk mapping process with subsidiaries.
Monitored identified risks and supervised corrective actions.

Cross-functional projects:
Implemented a digital reporting tool for internal control monitoring.
Digitalized internal audit processes.
Internal Control Risk Mapping Risk Management Risk Assessment Internal Control Assessment
Mazars
Financial Auditor
CONSULTING AND AUDITS
September 2019 - October 2021 (2 years)
Paris, France
International audit and consulting firm

*Financial Audit:Audit missions on statutory and consolidated accounts (IFRS and French GAAP standards). Mission planning, internal control assessment, execution of statutory due diligence, financial statement analysis, and drafting summary reports.

*IT Audit:Mapping of client information systems, assessment of the IT internal control framework, IT general controls (ITGC) audit on logical security. Presentation of conclusions to managers and clients.

*Contractual Missions:Certification of financial statements for acquisitions. Preparation of attestations for public bodies.

*Supervisionof junior auditors and interns. Review of their work.
Financial Audit IT Audit Due Diligence Internal Control Information System Security

Be the first to recommend Sandra

Help this freelancer shine by sharing your experience working together.

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

Baptiste Duhen

Fullstack developer

4.6

(4)

Amed Hamou

Senior Lead Developer

(2)

Audrey Champion

Web developer

4.3

(3)

Signup to reveal

Master in Corporate Finance
Neoma Business School
2019
Bachelor's degree in Economics and Management
University of Angers
2017

Data Science
IBM
Data Analysis Data Science SQL Python
Certified Fraud Examiner (CFE)
ACFE
Digital Forensics Risk Analysis and Management Compliance Control Risk Prevention Fraud Fighting Investigation AML-CFT

Cybersecurity Expert

Sandra B.

GRC | IT Audit Cybersecurity | CFE | Data

About Sandra

Experience

International audit and consulting firm

Recommendations

These freelancer profiles also match your criteria

Education

Certifications

Skill set

Categories