| 20,000+ Fresh Resumes Monthly | |
|
|
| | Click here or scroll down to respond to this candidateCandidate's Name , BSc, MSDallas TexasLinkedIn profile - Candidate's Name
EMAIL AVAILABLE Tel.: PHONE NUMBER AVAILABLEDapo is a purposeful IT Auditor and Cybersecurity Analyst with over 5 years of experience in evaluating internal controls, ITGCs, IT application controls, cybersecurity, and data security. Adept at performing risk-based audits, SOX compliance, cybersecurity awareness, and recommending best practice control techniques. Seeking opportunities to contribute expertise in information systems auditing, analysis and compliance.PROFESSIONAL EXPERIENCEWells Fargo (Exceeded expectations in quality metrics)Information Security/ Cybersecurity Analyst July 2022 - PresentReview and provide guidance on compliance of applications before deployment, material changes are applied, or application is sunset. (Daily)Reviewing control with Technology Managers and offer recommendations to ensure they are appropriately configured to mitigate risks. (Weekly)Ensure cloud security policy and guidelines are adhered to when applications data are hosted in cloud. (Weekly)Supports Cloud controls to build cloud security controls and enforce adherence to security controls.Provide early identification to risk concerns throughout the lifecycle of cloud-enabled services.Worked with Application teams to ensure they comply with incidence response and asset management regulations, policies, and guidelines. (Daily)Monitoring of Security Incident Event Management tools like Splunk, Ivanti scripting.Senior Auditor (CB/CIB) June 2021 July 2022Conducted Asia Pacific Data Protection privacy compliance audit.Led Loan Trading Support Audit, testing portfolio management and underwriting processes.Validated issues for audits and assessed sustainability.Managed Renewable Energy and Environmental Finance Audit, covering payment receivables and tax sharing credits.Executed audits for Multifamily Capital, Community Lending, and Investments.Assisted IT Director in maintaining the information systems audit universe and annual risk assessment.Coordinated with external auditors to identify and evaluate information systems risks.Participated in integrated audits, assessing IT controls in applications under review.Supported financial and operational auditors in assessing IT controls and developing CAATs.K-Force (Contract position) external auditorK-Force (Contracting to Santander, USAA, MUFG)Audit Consultant Oct 2020 May 2021Reviewing the validation of data issues to assess Appropriateness, effectiveness and sustainability of Corrective actions taken.Independent verification of remediation and review of sustainability of data issues defined by management.Oversee those validations occur within the timeframes in accordance with established processes.Facilitate efficient and valuable validation process.Communicate reports and findings to business partners.Provide credible challenges and recommendations to management and business partners.Readiness for FIAP issue validation from FRB and OCC consent orderConduct and lead information systems audit engagements, including ITGCs review and IT Application Control testing, operating systems audits, information security review, network performance review, and disaster recovery in accordance with department and professional standards.Perform Access Management on SailPoint, Change Management, SDLC, Business Continuity / Disaster Recovery, and Application-level controls testing.Perform all phases of audit activities including planning, establishing audit objectives and scope based on a risk assessment. Participate in PCI DSS audit, identify conflicts or weaknesses internal controls and communicate each in form of a report.Develop the test steps/procedures/strategy and use audit programs to prepare the PBC.Document audit work papers, prepare audit tests performed and conclusions drawn; make recommendations to improve internal controls and systems.Conduct entrance and exit conferences. Drafts audit reports and presents results to management.Participate in IT general controls testing for Sarbanes-Oxley 404 (SOX) compliance in public and private companies and Service Organization Control (SOC) reports in compliance/SSAE16 (formerly SAS 70).Mortgage Contracting ServicesSenior IT Security Analyst (Contract to hire) Jan 2017 Apr 2020Conduct Risk Assessment and Business Impact AnalysisSet up a Business Continuity Plan and facilitate simulation of Disaster RecoveryReview and update all IT related policies, Audit readiness for SOC /SSAE16 report.Develop a life Safety Policy along with Pandemic Preparedness and conduct security awareness training.Developed Security and Risk Awareness Training and Compliance Policies and procedures.Conduct and lead information systems audit engagements, including ITGCs review and IT Application Control testing, operating systems audits, information security review, network performance review, and disaster recovery in accordance with department and professional standards.Perform Access Management on SailPoint, Change Management, SDLC, Business Continuity / Disaster Recovery, and Application-level controls testing.Perform all phases of audit activities including planning, establishing audit objectives and scope based on a risk assessment. Participate in PCI DSS, ISO, NIST and COBIT audit, identify conflicts or weaknesses internal controls and communicate each in form of a report.Develop the test steps/procedures/strategy and use audit programs to prepare the PBC.Document audit work papers prepare audit tests performed and conclusions drawn; make recommendations to improve internal controls and systems.EDUCATIONUniversity Of North Texas, Graduate School Denton, TXMS, Economics and Management May 2015Lagos State University Lagos, NigeriaBS, Economics September 2005IT Skills and Tools: Microsoft Office: Excel, Word, Access, PowerPoint, Vision, Microsoft Sequel Server 2008, 2012, 2014, TeamMate, Outlook Express, Acrobat Reader and VLOOKUP, NESSUS, Splunk, Rapid 7, IDEA, Business Intelligence, SharePoint.CERTIFICATION- Certified Information Systems Auditor (CISA)- Certified in Risk and Information Systems Control (CRISC)- Certified Data Privacy Solutions Engineer (CDPSE)- Certified Information Security Manager (CISM) - In Progress- Certified Information Systems Security Professional (CISSP) - In Progress |