Salah Eddine Mahrach

Salah Eddine has been working in the financial industry, renewable energy sector for more than 20 years with various large institutions. He has successfully managed the compliance to IT standards (COBIT2019, ISO 27001, ISO 27002, ISO 27005, ISO 22301, ISO 31000…), performed and supervised several IT audits, covering IT governance, IT internal control, Cyber security, data privacy, IT general controls, application controls as well as security.
He has participated in several projects to implement IT risk management, business continuity in challenging environments, implemented and supervised a regional information systems audit hub for an international bank covering more than 18 subsidiaries and shared IT service centers on the African continent. He has developed integrated risk management frameworks, performed numerous risk analyses from a business continuity, security and privacy perspective and is an accredited ISACA trainer with COBIT2019, CISA, CRISC and CDPSE certifications.

Publications and speaking engagements

• Regular speaker in ISACA Conferences: North America, Europe, Africa, Asia.
• Regular member of ISACA CRISC Certification Working Group.
• Expert reviewer on the publication: COBIT Focus Area -Information Risk.
• Expert reviewer on the publication: CRISC Review Manual 7th Edition.
• Expert reviewer on the publication: CDPSE Review Manual.
• Expert reviewer on ISACA’s first whitepaper on ESG (Environment, Social, Governance): Governance Roundup – What Are You Doing About Environmental, Social and Governance Factors in Your Enterprise?