Hubertus Leunissen

Hubertus Leunissen has many years of experience in internal auditing, IT auditing as well as in statutory audits.
He manages engagements as part of co- and outsourcing projects of the internal audit function (nationally and internationally), taking responsibility for all the relevant areas from risk-based multi-year planning to follow-up management.
He also has experience in risk and compliance management audits for national and international companies of various sizes in various industries, as well as in implementation and auditing according to Sarbanes-Oxley section 404 and internal control systems.
He is also familiar with compliance and security audits for IT applications and IT infrastructures as well as industry-specific business process analyses concerning the adequacy and effectiveness of internal control systems.

Fields of expertise

• 5 years as CAATS trainer (IDEA data analysis as part of internal audit projects, forensic special investigations and statutory audits)
• Co- and outsourcing of internal audits for national and international corporations
• SOX implementation, readiness assessments and testing
• ICS audits and ICS implementation (incl. according to the COSO Internal Control - Integrated Framework)
• Project management
• Strategy and risk management (enterprise risk management)
• Process implementation and harmonisation
• Risk-compliance management audits
• IT audits and IT compliance checks (based on IDW RS FAIT Part 1-5, IDW PS 330, BSI IT baseline protection catalogues, COBIT, etc.)
• IT governance - audits and consulting: IT strategy, business process analyses focusing on the internal control system and relevant IT systems
• Process analysis and visualisation based on digital traces in the SAP environment
• Authorisation analysis (CHECKAUD)
• Quality assessment (DIIR Revision Standard No. 3)
• Special forensic investigations

Memberships

• DIIR
• ISACA Germany Chapter