Summary
Overview
Work History
Education
Skills
Websites
Certification
Interests
References
Réseaux sociaux
Timeline
Generic

Jean Cristel Brice Singha

Senior IT Auditor | IT Risk & Compliance Specialist
DOUALA

Summary

CISA-certified (ISACA) IT Auditor and Risk Specialist with extensive expertise in IT General Controls (ITGC), IT Application Controls (ITAC), SOX/ICFR compliance, and cybersecurity. Proven ability to plan and execute comprehensive audits, implement effective remediation strategies, and enhance internal controls across complex IT environments, including SAP, Oracle, and Cloud systems. A strong track record of driving compliance with ISO 27001, NIST standards, and Deloitte quality benchmarks highlights a commitment to delivering high-quality results that bolster organizational security and ensure regulatory adherence. Dedicated to leveraging industry knowledge to support continuous improvement and risk mitigation initiatives.

Overview

3
3
years of professional experience
4
4
Certifications
4
4
Languages

Work History

IT Audit & Senior Risk Assurance

Huawei Technologies Northern Africa
07.2024 - Current
  • Key Responsibilities & Achievements
  • IT General Controls (ITGC) Audits: Performed comprehensive audits covering user access management, password policies, segregation of duties (SoD), antivirus, firewall configurations, system backups, incident response, and BCP/DRP compliance using ServiceNow and cloud-based audit tools.
  • Reduced critical IT risks by 40% across 70+ audit missions; strengthened compliance with ISO 27001 and NIST frameworks.
  • IT Application Controls (ITAC) Audits: Assessed automated controls within SAP and Oracle via PaaS OWS, validating access provisioning, role-based access control, and inactive account deactivation per security policies.
  • Implemented remediation actions that improved system security, data integrity, and SOX/ISO compliance.
  • Audit Lifecycle Management: Led the end-to-end audit cycle—planning, risk assessment, fieldwork, reporting, and follow-up—ensuring adherence to ITGC, SOX, COBIT, and ISO 27001 standards.
  • Improved audit efficiency and enhanced the maturity of internal control processes.
  • Annual IT Audit Program: Designed, executed, and monitored the 2024 IT Audit Plan (Huawei–MTN/MS) covering network security, user access control, business continuity, GDPR, patch management, application security, change management, and cloud infrastructure.
  • Implemented multi-factor authentication (MFA), improved change approval processes, and standardized audit documentation.
  • Commercial & Strategic Advisory: Drafted audit engagement proposals, RFP responses, and strategic analysis reports for the MTNC client to optimize operational audits and business performance.
  • Secured major client upgrades: 130+ fiber/microwave link expansions and 250+ router license enhancements.
  • Leadership & Mentoring: Supervised and trained junior auditors, reinforcing audit methodology, documentation quality, and professional development.
  • Innovation & Continuous Improvement: Integrated data analytics, automation, and AI-driven audit tools to enhance audit coverage and insight generation. Maintained awareness of emerging IT risks, cybersecurity trends, and regulatory changes.

Governance, Risk & Compliance (GRC) Analyst

Huawei MTN MS
09.2023 - 07.2024
  • Led enterprise compliance with ISO 27001, SOX, SOC 2 Type II, NIST, GDPR, and PCI-DSS across access management, segregation of duties, and network device configurations (routers, switches, firewalls).
  • Performed gap assessments, implemented remediation plans, and improved compliance monitoring through ServiceNow and OWS for real-time tracking.
  • Established and strengthened ISMS and BCSM frameworks; enhanced BCP/DRP through redundancy strategies and automated SYSLOG monitoring.
  • Coordinated internal and external audits, managed audit evidence, and oversaw remediation activities.
  • Identified and mitigated compliance risks, maintained the enterprise risk register, and ensured regulatory alignment.
  • Conducted security assessments across IT infrastructure, cloud environments (IaaS, PaaS, SaaS), and networks.
  • Oversaw and improved vulnerability management, IAM (RBAC, MFA), and applied CIS Benchmarks to strengthen system hardening.
  • Performed control testing and evaluated the effectiveness of security controls.
  • Led and delivered ISO 27001, SOC 2, SOX, and HIPAA audits; maintained audit documentation and reported findings directly to the CISO.
  • Tracked remediation progress and coordinated communications with technical and business stakeholders.
  • Conducted vendor risk assessments, maintained third-party risk registers, and collaborated with Procurement and Business Units to reduce risk exposure.
  • Developed and enhanced security governance policies, monitored regulatory changes, and tested and updated BCP/DRP plans to ensure ongoing compliance.
  • Designed and delivered security and compliance awareness programs, increasing organizational cybersecurity culture and risk awareness.
  • Maintained and standardized procedures, control manuals, and process flow diagrams, ensuring accurate representation of business and technical processes.

Network Security Engineer

Huawei Cameroon ; Freetch LTD
01.2023 - 09.2023
  • Implemented IT security controls (firewalls, encryption, backups) to protect business assets.
  • Conducted vulnerability assessments and penetration testing on systems and applications.
  • Delivered cybersecurity awareness training programs to staff across multiple departments.
  • Led incident response and root cause analysis for cyber and fraud events.
  • Partnered with internal and external auditors to maintain compliance.
  • Key Achievement: Reduced critical vulnerabilities by 40% through proactive risk mitigation.

Education

Bachelor of Science - IT Network Security

ENSET
Douala, Cameroon
04.2001 -

Skills

Core Competencies – IT Auditor (CISA) IT Audit, RISK ,Governance & Compliance Enterprise Risk Management & Internal Control Data Analytics, Audit Automation & Risk Modeling Process Improvement & Control Effectiveness Professional Judgment & Stakeholder Engagement

  • IT Audit & Assurance (CISA-aligned): Risk-based audit planning, scoping, walkthroughs, control testing, evidence management, and reporting
  • Frameworks & Standards: ISO 27001, COBIT, ITIL v4, SOX, SOC 2, NIST, GDPR, PCI-DSS
  • IT Governance: Policy development, governance maturity assessments, and audit alignment with business objectives
  • ERM & Risk Mapping: Risk identification, inherent/residual risk assessment, heat maps, and mitigation planning
  • Internal Controls: Preventive & detective control design, ITGCs, application controls, and continuous control improvement
  • Fraud & Cyber Risk Management: Control evaluation, fraud risk assessment, and cybersecurity governance reviews
  • Audit Analytics: Data extraction, analysis, and exception testing to increase audit coverage and reduce manual testing
  • Risk Modeling & Simulation: Quantitative risk assessment using Power BI, Excel, @RISK, and Simul8 to prioritize high-impact risks
  • Dashboards & Reporting: KPI/KRI development, compliance dashboards, and executive-level audit reporting
  • Process Optimization: Audit-driven process improvements using Lean Six Sigma, SLA/OLA performance monitoring, and control rationalization
  • Incident Investigation & Remediation: Root cause analysis, corrective action plans, and remediation tracking to closure
  • Control Effectiveness Reviews: Ongoing monitoring, deficiency management, and audit follow-up
  • Critical Thinking & Professional Skepticism: Risk-based decision-making, control evaluation, and audit judgment aligned with ISACA standards
  • Stakeholder Management: Engagement with IT, Security, Compliance, Finance, and Executive leadership
  • Multicultural Collaboration: Effective communication across cross-functional and international teams

Websites

Certification

• CISA – Certified Information Systems Auditor (ISACA), 2025 Badge : https://www.credly.com/badges/256713e2-fd07-4797-b376-b62bec0dac03/

Interests

ECHEC, TENNIS, TRAVEL, VIDEO GAME

References

  • Luc Fabrice, Ngwa, Senior ip & Security, Bayobab Mobility, +237 6 77 55 02 13
  • Parfait Didier, BayongBob, Operation Director, Huawei Cameroon, +237 6 77 55 04 23

Réseaux sociaux

@www.linkedin.com/in/jean-cristel-brice-singha-aa2

Timeline

• CISA – Certified Information Systems Auditor (ISACA), 2025 Badge : https://www.credly.com/badges/256713e2-fd07-4797-b376-b62bec0dac03/

12-2025

• ISO/IEC 27001 Lead Auditor

10-2024

IT Audit & Senior Risk Assurance

Huawei Technologies Northern Africa
07.2024 - Current

Governance, Risk & Compliance (GRC) Analyst

Huawei MTN MS
09.2023 - 07.2024

• ITIL v4 Foundation,

02-2023

Network Security Engineer

Huawei Cameroon ; Freetch LTD
01.2023 - 09.2023

HCNA / HCDA Carrier IP (HUAWEI)

09-2018

Bachelor of Science - IT Network Security

ENSET
04.2001 -

Similar Profiles

  • Ahmed JabberAhmed Jabber

    Regional Sales Service Manager at Huawei Enterprise Northern AfricaRegional Sales Service Manager at Huawei Enterprise Northern Africa

  • Reed GeorgyReed Georgy

    TD & Tower Delivery at HUAWEI NORTHERN AFRICA REGIONAL OfficeTD & Tower Delivery at HUAWEI NORTHERN AFRICA REGIONAL Office

  • Didintle TsitsiDidintle Tsitsi

    Project Operational Manager at Huawei Technologies South Africa Pty LtdProject Operational Manager at Huawei Technologies South Africa Pty Ltd

  • VENSU SUUYLA EVANVENSU SUUYLA EVAN

    O&M Officer, Fuel at Intel HRC - I EngineeringO&M Officer, Fuel at Intel HRC - I Engineering

  • Joseph Atanase SEGUEJoseph Atanase SEGUE

    Chef Service Administratif et Comptable at SOCAPALM S.A.Chef Service Administratif et Comptable at SOCAPALM S.A.

CREATE PROFILE
Jean Cristel Brice SinghaSenior IT Auditor | IT Risk & Compliance Specialist