Go to Website

Arnd Furken

Interim Manager “Head of Risk Management and Audit”

Ulm, Germany
Summary Experience Education Certifications Languages
Experience
May 2024 - Oct 2024
6 months

Interim Manager “Head of Risk Management and Audit”

Apleona

  • Conducting internal audits, audit planning and follow-up
  • Revising, documenting and improving the accounting-related internal control system (ICS)
  • Risk management: annual review and reporting
  • Filling the department head position and two other staff roles
  • Handing over the role to the successor.
Oct 2023 - Jan 2024
4 months

Manager Internal Control

Siltronic

  • Revising and documenting the accounting-related internal control system (ICS)
  • Identifying and defining key controls
  • Preparing documentation for certification under IDW PS 982
  • Establishing and optimizing risk control matrices for business processes.
Jun 2023 - Oct 2023
5 months

Interim Manager Internal Control

Generika OTC

  • Ensuring SOX requirements are met
  • Coordinating the year-end audit in the "SOX" area with auditors, management and internal audit
  • Updating and revising the delegation of authority (DoA)
  • Revising SOX controls and overseeing their implementation.
Jun 2022 - May 2023
1 year

Project Management Consulting for KAIT Implementation (similar to DORA)

Real Estate Fund Company (Subsidiary of an International Bank)

  • Advising on further KAIT implementation
  • Acting as a consulting point for aligning with stakeholder governance
  • Coordinating the creation, review and updating of relevant documents
  • Consulting on the status assessment of KAIT development
  • Managing communication with external auditors, BaFin and stakeholders
  • IT outsourcing (SLAs, KPIs, controls) considering KAIT requirements (project support)
  • Consulting on training internal IT staff (COBIT, outsourcing control, KAIT)
Jun 2022 - Dec 2022
7 months

Project Support for Internal Audit Credit & Retail in Card Business (similar to DORA)

Landesbank

  • Collecting and reviewing current contracts for completeness, compliance with legal requirements and adherence to agreements
  • Auditing major outsourcing (card business processing)
  • Reviewing contract documents, examining outsourcing cases based on a defined checklist and conducting on-site audits at the service provider for the credit card business
  • Reviewing current processes and controls and ensuring proper implementation
  • Checking the appropriateness of current processes, including controls for proper implementation
Feb 2022 - Aug 2022
7 months

Defining audit scope and supporting customers in conducting IT audits

International Payment Service Provider

  • Conducting IT audits
  • Documenting and analyzing gaps
  • Preparing audit reports
  • Checking standard requirements for IT
Apr 2021 - Jan 2022
10 months

Defining audit scope and conducting IT audits

Bank

  • Audits under BAIT and MaRisk
  • Auditing internal IT controls (GITC) and IT governance
  • Auditing technology layers (including cloud), databases and operating systems
  • Auditing outsourcing with consideration of ITIL SLAs
  • Auditing ERP systems, mainly SAP and also Agree21
Oct 2020 - Oct 2020
1 month

GAP Analysis, ISO 27001 / BSI

Medium-sized Company

  • Identifying and documenting IT security vulnerabilities
Apr 2020 - Present
5 years 4 months

Performing IT audits as part of the annual financial audit

Various Audit Firms (Big 4/Next 20)

  • IT audits for financial service providers
  • Audits under KAIT, BAIT, VAIT and MaRisk
  • Auditing IT governance and internal controls (ICS), based on COSO and CoBIT
  • Auditing outsourcing with consideration of ITIL SLAs
  • Auditing ERP systems, mainly SAP
  • Auditing technology layers (including cloud), databases and operating systems (GITC)
Jul 2019 - Mar 2020
9 months

Interim Management as Head of Internal Audit

Large Retail Group

  • Key tasks: setting up and consolidating internal audit, including compliance and governance
  • Merging two audit departments after the merger
  • Establishing a group-wide branch audit
  • Standardizing and modernizing the audit approach
Apr 2019 - May 2019
2 months

Supporting regulatory compliance for outsourcing

Financial Services Provider (Landesbank)

  • Conducting project audits
  • Reviewing and updating the incident response plan after a security incident
  • Auditing the Business Impact Analysis (BIA) and Business Continuity Management (BCM)
Jan 2018 - Present
7 years 7 months

Senior Manager

Gehrke Maas Consulting

Jan 2018 - Present
7 years 7 months

External Data Protection Officer

Specialty Insurer

  • Assessing and analyzing data protection levels
  • Training and raising employee awareness
  • Monitoring and controlling data protection levels
Jan 2018 - Jun 2019
1 year 6 months

Performing IT audits as part of the annual financial audit

Various Audit Firms (Big 4/Next 20)

  • IT audits for financial service providers
  • Audits under KAIT, BAIT and MaRisk
  • Auditing internal controls (ICS), based on COSO and CoBIT, and IT governance
  • Data analysis as part of the annual financial audit using IDEA analysis software
Jan 2014 - Dec 2017
4 years

Head of Internal Audit

Kontron AG

  • Establishing the audit function as an internal advisor for the internal control system and compliance issues
  • Successful audits leading to proven improvements in audited processes
  • Introducing a new risk management process
  • Conceptual development and implementation of the SAP authorization concept
Jan 2011 - Dec 2014
4 years

Head of Internal Audit, Compliance Manager and Data Protection Officer

APCOA Parking Holdings GmbH

  • Successful audits that uncovered fraud cases and led to proven improvements in audited business processes
  • Establishing a group-wide branch audit based on the newly created branch audit manual
  • Establishing a unified risk management system across the group
  • Developing the approval matrix and rolling it out to subsidiaries as part of strengthening the ICS
  • Developing and introducing the Corporate Code of Conduct and its training program
  • Introducing the compliance hotline and associated reporting management
Jan 2005 - Dec 2011
7 years

Head of Internal Audit

Ratiopharm

  • Introducing a modern, risk-based audit methodology
  • Initiating special projects based on critical audit findings or management requests, such as implementing group-wide sales and production planning, resulting in significantly improved delivery reliability (> 90%) with reduced inventory
  • Uncovering a fraud case in the customer area, preventing further losses in the high six-figure range
  • Introducing and managing the risk management system
  • Leading and completing the IT outsourcing project for about 150 family companies as part of the ratiopharm sale process, including vendor selection and management
  • Stabilizing internal control processes (ICS) in the Indian subsidiary by sending a staff member to ensure ERP system functionality
Jan 1989 - Dec 2005
17 years

Various positions in finance and internal audit

British American Tobacco p.l.c.

  • Head of Finance (2004 - 2005): Overhauling the entire financial reporting, including SAP FI and CO modules
  • Audit Lead, Audit Management (1999 - 2004): Leading an international team in three countries, including Eastern Europe and former Yugoslavia
  • Audit Lead, Audit Management (1999 - 2004): Introducing a new management process for tax stamps (up to 60% of the end product value) as a result of an audit project
  • Audit Lead, Audit Management (1999 - 2004): Implementing risk management in the new markets of Southern and Eastern Europe
Summary

Customer-focused, strong leader, quality-conscious and team-oriented. Over 20 years of professional and leadership experience. Extensive experience in various management positions in internal audit, controlling and administration.

Languages
German
Native
English
Advanced
French
Elementary
Dutch
Elementary
Education

RWTH Aachen

Diploma in Business Administration · Aachen, Germany

University of Hamburg

Pre-diploma in Business Administration · Business Administration · Hamburg, Germany

Certifications & licenses

Recognized Auditor for Internal Audit Systems

DIIR

Certified Internal Auditor

Controller’s Diploma

Controller Akademie Gauting

Data Protection Officer GDPR Certified

DEKRA

Lead Auditor ISO 27001

DGI®

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Björn Bausch

Auditor

View Profile
Maxim Ribakowski

Information Security Officer

View Profile
Federico Leefhelm

ISO – Senior Consultant Quality & Information Security

View Profile
Henryk Orantek

Security Consultant

View Profile
Stephan Selnerat

IT-Security Manager

View Profile
Klaus Schmitt

IT Project Manager and Senior Consultant

View Profile
Dirk Meissner

Project Lead

View Profile
Andreas Karl

Lead Auditor, ICT

View Profile
Valeri Milke

DORA Readiness – Gap Analysis and Implementation for Banks

View Profile
Michael Schwendemann

Compliance Consultant

View Profile
Thoralf Thorson

Consultant Digital Operational Resilience Act (DORA)

View Profile
Lucas Löcken

Consultant in Information Security, Data Protection and Business Continuity Management

View Profile
Matthias Steinmann

Senior Consultant Security (freelance)

View Profile
Károly Aczél

Interim Head of Global IT Security Awareness and Communication

View Profile
Markus Willems

IT security consultant

View Profile
fratch Part of Bitkom logo
linkedIncrunchbaseyoutube

2025 © FRATCH.IO GmbH. All rights reserved.