Uploaded File
add photo
Alexander
akyerema@gmail.com
240-498-5808
2830 Lake Rd Apt 404
Huntsville, TX 77340
IT Audit Senior
10 years experience W2
1
Recommendation
Average rating
85
Profile views
Summary

Results-oriented information systems audit and assurance professional with proven knowledge of IT general and application controls testing, risk management and business processes. A demonstrated track record of performing IT audits in support of financial statement audits, internal controls testing for SOC/SSAE 16, SOX 404, HIPAA and PCI DSS compliance, as well as SAP system and other technology audits. Proficient in various audit frameworks, including the COSO ERM, COBIT, NIST Cybersecurity Framework, NIST SP 800-53, ISO 27001, and ITIL. Communicates effectively with client management, senior associates and other team members.

Experience
IT Audit Lead
Banking/Financial
Aug 2014 - present
Houston, TX
  • Performs testing of IT General Controls (ITGCs) and Application controls in support of operational and external financial audit engagements
  • Evaluates IT and business processes for adequacy and effectiveness of internal controls, through obtaining an understanding of and documenting key business processes
  • Examines the design and operating effectiveness of controls by reviewing third party policies, procedures, standards, guidelines, SOC/SSAE 16 reports for compliance with local and federal regulatory requirements
  • Undertakes walkthroughs, test of controls, workpaper preparation, and risk assessments to obtain an understanding of business processes underlying IT systems
  • Develops cost effective and feasible remediation plans to mitigate identified risks associated with control deficiencies
  • Performs annual or periodic internal control testing and documentation in compliance with SOX 404 and PCI DSS requirements
  • Performs post-audit follow-ups to ensure corrective actions have been taken on exceptions noted.
  • Conducts security audits of IT infrastructure and applications including Windows, Linux, SQL Server, Oracle database, SAP R/3, and Oracle PeopleSoft to determine the adequacy of the control environment
Auditing Compliance Risk Assessment AFC Testing Information Security SQL SOX
Remove Skill
References
Average Rating

1 recommendation
IT Audit Senior
Aug 2014 - present
Houston, TX
  • Performs testing of IT general (ITGCs) and application controls in support of external financial statement audits as well as in operational and compliance audits
  • Evaluates IT and business processes for adequacy and effectiveness of internal controls, through obtaining an understanding of and documenting key business processes undertakes SOC/SSAE 16 audits and report reviews
  • Examines the design and operating effectiveness of controls by reviewing client policies, procedures, and standards for compliance with local and federal regulatory requirements
  • Undertakes walkthroughs, test of controls, work paper preparation, and risk assessments to obtain an understanding of business processes underlying IT systems
  • Develops cost effective and feasible remediation plans to mitigate identified risks associated with control deficiencies. Performs follow-ups to ensure remediation of exceptions
  • Performs annual or periodic internal control testing and documentation in compliance with SOX 404, PCI DSS, and HIPAA requirements
  • Tests general system security settings of various IT infrastructure such as Microsoft Windows, Linux/Unix, Mainframe, Microsoft SQL Server, Oracle database, Active Directory, Firewalls, Routers, and IDS/IPS
  • Assesses the design and operating effectiveness of ITGCs and application controls around financial systems, including SAP R/3/GRC, Oracle PeopleSoft, and Microsoft Dynamics, to determine their reliability in generating accurate financial statements
  • Prepares audit programs or test plans leveraging various audit and information security frameworks such as COBIT, ISO 27001, NIST CSF, FISCAM, NIST SP 800-53, etc.
  • Analyzed client data, documented and shared audit work papers utilizing Computer Assisted Audit Tools (CAATs) and documentation management software such as ACL, IDEA, TeamMate, SharePoint, Remedy, ServiceNow, etc.
  • Examines the Disaster Recovery (DRP) and Business Continuity Plans (BCP) of clients and their controls for effective recovery
  • Reviews staff auditor work and provide constructive feedback by sharing knowledge and expertise
No skills were added
Remove Skill
Branch Manager
May 2011 - Mar 2014
  • Led the successful opening and operation a new branch of the bank
  • Promoted a strong control environment to evaluate, manage and conduct new and existing business by adhering to risk/control expectations, procedures and processes
  • Managed a team of ten (10) staff in achieving the branch's annual set targets
  • Improved customer satisfaction rating by over 20% in the second year of operation
  • Drove product sales to ensure achievement of over 80% in the first-two years of operation
  • Led the development of the branch operational budget as an input into the bank's annual budget and strategy preparation
No skills were added
Remove Skill
Edit Skills
Non-cloudteam Skill
Education
Kumasi, Ghana
Kwame Nkrumah University of Science & Technology 2012
Kumasi, Ghana
Kwame Nkrumah University of Science & Technology 2002
Certifications
Certified Information Systems Auditor (CISA), ISACA
Scrum Master Accredited Certification, International Scrum Institute
Skills
Compliance
2021
15
Risk Analysis
2014
9
AFC Testing
2021
5
Auditing
2021
5
Information Security
2021
5
Risk Assessment
2021
5
SOX
2021
5
SQL
2021
5
COBIT
0
1
ERM
0
1
Risk Management
0
1