Uploaded File
Nishith
Nishith.H.Jani@gmail.com
610-564-2044
304 Anthony Dr
Plymouth Meeting, PA 19462
VP, IT Senior Auditor, CISA, CISM, CRISC
9 years experience W2
0
Recommendations
Average rating
186
Profile views
Summary

  • Analytical IT Audit/Security professional with strong communication, problem-solving and project management abilities. Team-player able to excel in any environment.
  • CISA, CISM and CRISC certified professional with experience in Internal and External Audits.
  • Team leader in Audit, Identity Access Management, AML, and Service Desk roles.
  • High-performing auditor with background in third-party risk management, SOX compliance, and various security frameworks (COBIT 5, NIST, COSO, ITIL 3).


    INFORMATION SYSTEMS PROJECTS:
  • Developed a rudimentary web application in PHP querying a MYSQL database for taking orders, managing inventory, and viewing reports for tool rental Company.
  • Analyzed requirements, mapped processes, and built data models in the development of a prototype to track customers, products, orders, payments, and BI reports for Blinds retailer.
  • Created a risk assessment plan for a national health club franchise that identified risks, evaluated the frequency and impact of risks, and made recommendations for mitigation.

    SKILLS & INTERESTS

    PHP, SQL, HTML, CSS, Unix, Linux, VBScript, MS Project, SCCM, Citrix, Visio, JustInMind
  • CISA, CISM, CRISC, CompTIA A+, CompTIA Network+, CompTIA Server+, CompTIA Network Infrastructure Professional, CompTIA IT Operations specialist, Win7, Win8 certifications
  • Passed CISA exam in top 10% of test takers
  • Conversational in French, Gujarati
  • Philadelphia sports fan, former state champion basketball player, music

Experience
IT Senior Auditor
Banking/Financial
Jun 2017 - present
Wilmington, DE
  • Performed governance review of Free and Open Source Software (FOSS) usage at the Bank, including assessing strategy, legal implications, community involvement, application scanning, and oversight of program for adherence to policy and standards.
  • Conducted interviews with infrastructure technology partners to assess the business continuity risks of internal high-availability cloud environment and implemented changes to procedural document so that a third-party could re-perform the server maintenance effectively.
  • Identified gaps in systems and IT security processes during SOX, Consent Order, and regulatory reviews that were essential in compliance with regulations.
  • Provided support to the Data Management Audit Director in development of Data Quality Audit program including developing coverage model, assessing benefits, the execution of audit strategy, developing Data Quality standard audit tests and applying governance to Data Quality audit program.
  • Led the review of the Bank's digital banking systems (mobile and web application across multiple operating systems and browsers) by coordinating integration testing of interfaces for edit-checks, validations, fraud detection and other features of the applications. The application review led to the Bank receiving a JD Power award for high-performance digital banking application.
  • Audited a key mortgage vendor's processes and identified several opportunities for Automation that can be turned into continuous monitoring tests and deliver operational efficiencies for multiple audit cycles.
  • Tested data quality for systems that capture data from vendor to ensure that appropriate automated and manual controls exist and data integrity exceptions are remediated timely.
  • Assessed a Key Initiative Portfolio program for the implementation of data quality tools for alignment with Enterprise Data Management policy requirements, effectiveness of tool, and appropriateness of system requirements to mitigate risk of data quality issues at the Bank.
Auditing Project Management SOX Risk Management Cyber Security Quality Assessor
Remove Skill
IT Security Analyst
Banking/Financial
Oct 2016 - Jun 2017
Malvern, PA
  • Led team by completing 150 security requests per month, supporting over 10,000 employees to monitor systems and provide various audit support.
  • Managed security requests to grant, update and delete access on various target systems such as telephony, mainframe, financial systems, shared drives, and various reporting software such as Cognos, Siebel, Keyfast, KDA, WMS, Verint, AdReview, Prisma and Rightfax.
  • Reduced the backlog of security requests by 1000% to BAU in 6 months.
  • Investigated potential or actual security violations or incidents in an effort to identify issues and areas that require new security measures or policy changes.
  • Identified vulnerabilities, recommended corrective measures and ensured the adequacy of existing information security controls.
  • Developed technical expertise in application administration and cross-trained security consultants across application streams resulting in increased productivity.
  • Recognized for excellent customer service and systems knowledge in handling of technical security requests.
  • Completed all security requests within team and departmental service levels and objectives and provided clients with non-technical answers to security questions.
  • Implemented process changes that resulted in improving on-time completion of security administration process from about 25% to about 98% within one year.
  • Updated technical documentation, procedures and workflows when necessary to assist the team in performing its security administration functions.
  • Executed test cases on security administration tools used by BAM to perform its security administration services.
Microsoft Excel Auditing Project Management Cyber Security
Remove Skill
IT Risk Advisor
Professional/Consulting Services
Aug 2015 - Jul 2016
New York, NY

Global Energy Trader

  • Led audit engagements by developing risk-based audit programs determined through planning discussions, conducting walkthroughs, testing controls and managing completion of work.
  • Assisted in recommendations based on independent judgment of corrective action and suggested improvements to operations and reductions in cost.

Global Specialty Insurance Company

  • Interacted directly with clients, including members of C-suite, to gather audit evidence and communicate any findings during the audit.
  • Reviewed SSAE16 reports for financial audit teams for reliance, and trust service purposes.
  • Evaluated ITGCs around Change Management, User Access Management, and IT Operations and led weekly/monthly status meetings.

Global Financial Institution

  • Supported a top global financial institution in conducting qualitative due diligence in the area of Know Your Customer (KYC) procedures in response to AML regulations.
  • Promoted to document remediation team during the AML engagement, including developing process documentation and leading requirements gathering meetings.

Global Japanese Bank

  • Assisted client in remediating risk assessment population by addressing issues identified by quality assurance team.
  • Performed quality assurance of a multinational bank’s audit reports by utilizing GRC to support assertions.
AML Auditing Risk Assessment Quality Assessor
Remove Skill
IT Security Analyst
Food/Beverage
May 2014 - May 2015
Camden, NJ
  • Spearheaded team of 7 performing identity access management for $10 billion dollar global consumer goods company increasing efficiency by 500%.
  • Maintained 100% SLA in resolving UAM tickets and requests and identified problems to report to management.
  • Participated in operational meetings as SME to identify and mitigate security issues.
  • Acted as SPOC for escalations points and timely resolution with various business units.
  • Administered Unix/Linux accounts with appropriate privileges and security settings.
  • Provisioned/deprovisioned user accounts for various target systems like Microsoft Office O365 licensing, AS/400, Unix, Lotus Notes, Oracle databases, internal applications, shared drives, distribution lists, conference rooms, admin rights, VPN.
  • Collaborated with programmers and system architects to automate global software distribution through SCCM.
  • Assisted team in troubleshooting identity access management tool issues, provisioning employee transfers, provisioning the DMZ, and creating and managing Unix and Lotus Notes accounts.
No skills were added
Remove Skill
Service Desk Analyst
Information Technology
Mar 2012 - May 2014
Devon, PA
  • Developed technical knowledge with MS Access and created database of 1000+ technology knowledge articles.
  • Researched and constructed knowledge-base articles for desktop issues, resulting in an increase in first-call resolutions of 20% that saved company $200,000 annually.
  • Used system diagnostic tools to troubleshoot operating system issues, network connectivity, TCP/IP configuration, mail and MS Office products.
  • Directed project for installation of the Dell Optos Medical image database at 200+ medical facilities.
No skills were added
Remove Skill
Edit Skills
Non-cloudteam Skill
Education
Bachelor's in Management Information Systems
TEMPLE UNIVERSITY Fox School of Business

Summa Cum Laude
Student Achievement Award (Highest GPA in Major)
Dean’s List

Certifications
CISM
CISA
CRISC
Skills
Auditing
2021
4
Cyber Security
2021
3
Project Management
2021
3
Quality Assessor
2021
3
Risk Management
2021
2
SOX
2021
2
CISA
2020
1
CISM
2020
1
COBIT
2020
1
Compliance
2020
1
external audit
2020
1
Information Security
2020
1
internal audit
2020
1
NIST
2020
1
Microsoft Office
2015
1
AML
2016
1
Banking
0
1
KYC
2016
1
Microsoft Excel
2017
1
Risk Assessment
2016
1