Candidate Information Name Available: Register for Free Title It Auditor Compliance Analyst Target Location US-MD-Baltimore Email Available with paid plan Phone Available with paid plan	20,000+ Fresh Resumes Monthly     View Phone Numbers     Receive Resume E-mail Alerts     Post Jobs Free     Link your Free Jobs Page     ... and much more Register on Jobvertise Free
Search 2 million Resumes Keywords: City or Zip:	Related Resumes Compliance Auditor Business Analyst Cheverly, MD Compliance Analyst It Auditor Washington, DC Information Security It Auditor Woodbridge, VA Auditor/Coder Woodbridge, VA Material Handler Internal Auditor Lake Ridge, VA Accountant, Auditor, Financial Manager Washington, DC IT Auditor Washington, DC

Candidate's Name , CISAWashington  Baltimore DC AreaTel: PHONE NUMBER AVAILABLE, Email id: - EMAIL AVAILABLEIT AUDITOR & IT COMPLIANCE ANALYSTPROFESSIONAL SUMMARYExperienced IT Auditor and Control Specialist with a proven track record of ensuring the integrity and security of organizational systems and data. Proficient in conducting comprehensive audits, risk assessments, and compliance reviews, adhering to industry best practices and regulatory standards. Strong communication skills for effectively liaising with cross-functional teams and presenting findings to stakeholders. Committed to enhancing information security and optimizing IT governance for organizations in a rapidly evolving technological landscape.WORK EXPERIENCESYNERGY BUSINESS INNOVATION & SOLUTIONS, INC. APRIL 2022  TILL DATEIT AUDITOR & COMPLIANCE SPECIALISTConduct comprehensive risk assessments, audit planning, penetration testing to identify vulnerabilities and assess security measures.In depth knowledge of Performing assessments of IT General Controls (ITGC) such as Access Control, Change Management, IT operations, Disaster recovery and Job Scheduling.Led audit engagement to evaluate the effectiveness of control activities in order to provide reasonable assurance regarding client's achievement of internal control objectives.Conduct Kick off meetings and performed all stages of audit, including planning; fieldwork/execution; reporting; and follow-up.Experience in reviewing Service Organization Control (SOC 1 & 2) reports, in compliance with SSAE18 (formerly SAS 70) for organizations.Conduct information systems control review on platforms and operating procedures in accordance with the established corporate standards for efficiency, accuracy and security.Implement and tested internal controls under Section 404 of the Sarbanes Oxley Act (SOX) and performing walkthroughs of controls and evaluating operating effectiveness.Conduct IT audit fieldwork and walkthrough of controls to make sure the controls are properly designed and operating effectivelyManage and implemented IT control frameworks and policies to strengthen data protection and access controls.Assist in the development of a robust incident response program, reducing response times during security incidents.Prepare detailed audit reports with actionable recommendations for executive management and facilitated remediation efforts.Collaborate with cross-functional teams to improve third-party vendor risk management practices.Oversaw IT security awareness training programs for employees, reducing security-related incidents.Ensure compliance with ISO 27001 and PCI DSS standards, and reported findings to regulatory bodies. Developed and maintained a business continuity and disaster recovery plan, minimizing downtime during disruptions.Manage budget and resources for IT auditing projects, optimizing efficiency and cost-effectiveness. Collaborated in external audits, maintaining a 100% compliance record.HEWLETT PACKARD ENTERPRISE JUNE 2019 - MARCH 2022IT AUDITOR & IT COMPLIANCE ANALYSTConducted IT risk assessments and gap analysis, ensuring compliance with Sarbanes-Oxley Act (SOX). Evaluated third-party vendor contracts and security practices, developing a vendor risk management program.Contributed to the development of a business continuity and disaster recovery plan. Coordinated and documented security incident response efforts.Assisted in external audits by regulatory bodies, maintaining compliance.Collaborated with cross-functional teams to improve IT controls and security measures. Managed a team of auditors, providing training and mentorship.Prepared and delivered executive-level presentations on audit findings and recommendations.Conducted Kick off meetings and performed all stages of audit, including planning; fieldwork/execution; reporting; and follow-up.Experience in reviewing Service Organization Control (SOC 1 & 2) reports, in compliance with SSAE18 (formerly SAS 70) for organizations.Conducted information systems control review on platforms and operating procedures in accordance with the established corporate standards for efficiency, accuracy and security.Implemented and tested internal controls under Section 404 of the Sarbanes Oxley Act (SOX) and performing walkthroughs of controls and evaluating operating effectiveness.Conducted IT audit fieldwork and walkthrough of controls to make sure the controls are properly designed and operating effectively.Performed detailed testing, analysis of controls, validations, and creation of clear and accurate documentation of workflows in IT process and report of test results and exceptions.Identified gaps and opportunities for automation, SOX and PCI compliance and overall improvements of current processesResponsible for implementing and monitoring adherence to the established IT security policiesPerformed audit of IT general controls such as access control, change management, IT Operations, disaster recovery and platform reviews (Windows)GENERAL DYNAMICS INFORMATION TECHNOLOGY, INC FEB 2017  MAY 2019IT AUDITORExtensive experience in IT auditing with emphasis on commercial public companies and federal government departments using ITGC, Application Controls and COBIT frameworksReviewed enterprise security program. Validates IT control implementations, performs risk-based audit. Performs walkthrough on controls.Reviewed CAP; validates remediation control. Performs IS audit on routers, switches, firewalls, and remote access.Conducted root cause analysis of vulnerabilities and coordinates with appropriate stakeholders to remediate findings on IT audit engagements within schedule and budget constraints.Leads IT Implementation and testing of internal controls over financial reporting: Sarbanes Oxley Act (SOX), performs Walkthroughs of controls and evaluates operating effectiveness of controls.Performed audit of IT general controls such as access control, change management, IT Operations, disaster recovery and platform reviews (Windows and UNIX OS)Used excel macro to perform repetitive task on various data analysis.Worked autonomously within a team of Analysts, to analyze, review, update and retrieve data.Ensured data held within the system passes quality control guidelines and data integrity is maintained, including data cleansingPerformed all stages of audit, including planning; fieldwork/execution; reporting; and follow-up.Conducted root cause analysis of vulnerabilities and coordinates with appropriate stakeholders to remediate findings on IT audit engagements within schedule and budget constraints.Performed and document audit activities in accordance with professional standards such as COBIT, COSO, PCI, NIST 800-53 and ISO 270001.Assisted in IT management in identifying gaps between policy and process, developing recommendations to remediate control weaknesses and be responsible for developing and maintaining IT control metrics related to compliance activities.EDUCATIONUniversity of Maryland Global Campus: MSc in Information Technology  In ProcessLadoke Akintola University of Technology: Bachelor of Technology in ScienceCertified Information Systems Auditor  CertifiedPROFESSIONAL AFFILIATIONS Information Systems Audit and Control Association (ISACA) Institute of Internal Auditor.