| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
SKILLSPolicy & Procedure Enhancement, Program Implementation, Relationship Management, Enterprise Risk Management, SOX Compliance & Internal Controls, IT Compliance & Control, and Teamwork & Collaboration.PROFESSIONAL EXPERIENCEBIITECH SOLUTIONS June 2022 PresentIT AuditorFacilitated planning, process understanding meetings, and control validation meetings with a line of business on several engagements like SOX Audit Security Incident and Management, Change Management, Disaster Recovery, User Access Audit, and SOC Audit.Performed audit engagements covering IT general controls (e.g., access controls, change management, and system operations).Tested the effectiveness of application-level controls (e.g., Input validation, output completeness and accuracy, and processing accuracy).Evaluated IT Security controls.Identified and communicated potential issues or risks to management.Implemented knowledge of common IT frameworks and standards (COBIT and NIST).Liaised with external auditors as part of IT Compliance Controls to ensure information systems risks were sufficiently identified and evaluated.Assisted in the execution of the annual internal audit plan as directed and prepared reports to communicate audit results to management and make recommendations as appropriate.Assisted IT Audit Security Manager in executing the framework for compliance with, HIPAA, etc., and in executing a comprehensive, risk-based internal audit plan for the company's IT security compliance requirements.Raised issues of control weaknesses with management, proposed recommendations, and reached an agreement in a timely manner as to remediation actions.Reviewed systems for adequate management controls, efficiency, and compliance with policies and regulations; Made recommendations when necessary.ALTA IT March 2020 June 2022IT AuditorExecuted control testing around Identity and Access Management with various requirements in scope such as Provisioning, Deprovisioning, Identification, Authentication, Authorization, Session Lock-Outs, Session Termination, Password Configuration Settings, and User Access reviews on various platforms (Operating Systems and Databases) and In-Scope Applications for the engagement.Executed test of controls in Technology Infrastructure Audits, and IT General Controls such as access controls, change management, IT operations, and application controls.Evaluated the adequacy and effectiveness of policies, procedures, and controls, while assessing management action plans on exceptions noted on inadequate controls.Performed IT general controls and IT application controls SOX testing using COSO and COBIT frameworks.Performed SDLC and incident management audits to identify and evaluate risks during review and analysis of System Development Life Cycle (SDLC), through initiation, planning design, development testing, implementation, and disposition of systems.Performed SOX audit, IT infrastructure audit, and business applications audit from the planning phase to the reporting phase while documenting the audit report and procedures.Conducted review of attestation engagement (SSAE16 SOC 1 Type 2 review) for Unqualified Opinion, Management assertion, and User consideration.Identified IT-related risks throughout development phases, which include networks, operating systems, ERP, databases, security, backup and restoration, and disaster recovery audits.Liaised with external auditors as part of IT Compliance Controls to ensure information systems risks were sufficiently identified and evaluated.Assisted in the execution of the annual internal audit plan as directed and prepared reports to communicate audit results to management and make recommendations as appropriate.CASMIR CARE SERVICES August 2018 March 2020Logistic SpecialistConducted regular inventory audits, ensuring accuracy and compliance with regulations.Oversaw the receipt, inspection, and disposition of incoming shipments, ensuring quality control and timely delivery.Collaborated with various departments to forecast supply needs and ensure on-time delivery of critical items.Applied internal standard operating procedures on supply regulations and property management.Verified material safety, updated, and maintained consumption files, and conducted research for stock discrepancies.Maintained inventory database, and financial logs and prepared reports/correspondence.Monitored documents on material issues, processed receipts, and handled customer refusals.Assisted in preparing recommendations and directives for procurement of materials.Maintained Operating Target (OPTAR) logs and reports for Fiscal year planning.Maintained authorized stock levels of publications, forms, and office supplies.Collaborated with various groups or individuals including suppliers, contractors, and other government agencies, to resolve issues and situations related to logistics management issues.EDUCATION AND CERTIFICATIONSPURDUE UNIVERSITY, Denver, COAssociates in Medical Billing and Coding, 2015 2017CAREER STEPInformation Technology and Cyber Security, 2015 2016UNIVERSITY OF BENINBachelor of Science in Economics and Statistics, 2008 2012Certifications:Certified Information System Auditor (CISA)CySA+ CompTIA Cybersecurity AnalystACCOMPLISHMENTSSuccessful in helping management identify gaps between policies and processes and making recommendations to remediate control weaknesses.Maintained an enterprise-wide security program which ensured that the organizations assets were protected under the appropriate security controls, processes, and procedures.Collaborated with physical security, risk management, business continuity, and the secure operations center (SOC) teams during periods of joint operations such as incident response, disaster recovery, and business continuity activities.Was the subject matter expert for SOC 2 audits and performed an enterprise-wide gap analysis for all the 5 trust services criteria while performing audit readiness. |
