Hubertus Leunissen has many years of experience in internal auditing, IT auditing as well as in statutory audits.
He manages engagements as part of co- and outsourcing projects of the internal audit function (nationally and internationally), taking responsibility for all the relevant areas from risk-based multi-year planning to follow-up management.
He also has experience in risk and compliance management audits for national and international companies of various sizes in various industries, as well as in implementation and auditing according to Sarbanes-Oxley section 404 and internal control systems.
He is also familiar with compliance and security audits for IT applications and IT infrastructures as well as industry-specific business process analyses concerning the adequacy and effectiveness of internal control systems.
Fields of expertise
- 5 years as CAATS trainer (IDEA data analysis as part of internal audit projects, forensic special investigations and statutory audits)
- Co- and outsourcing of internal audits for national and international corporations
- SOX implementation, readiness assessments and testing
- ICS audits and ICS implementation (incl. according to the COSO Internal Control - Integrated Framework)
- Project management
- Strategy and risk management (enterprise risk management)
- Process implementation and harmonisation
- Risk-compliance management audits
- IT audits and IT compliance checks (based on IDW RS FAIT Part 1-5, IDW PS 330, BSI IT baseline protection catalogues, COBIT, etc.)
- IT governance - audits and consulting: IT strategy, business process analyses focusing on the internal control system and relevant IT systems
- Process analysis and visualisation based on digital traces in the SAP environment
- Authorisation analysis (CHECKAUD)
- Quality assessment (DIIR Revision Standard No. 3)
- Special forensic investigations
Memberships
- DIIR
- ISACA Germany Chapter
- Masters-level economics graduate
- CISA
- Auditor of internal audit systems (DIIR)
