Experienced IT Audit/Control professional with over 8 years of experience in auditing and controls most especially in IT operations, Business process, Cybersecurity testing of controls, and control advisory roles in special projects. Specialized skills in Enterprise security and control implementations, information technology, and business process risk assessments.
My primary goal is to ensure the security of organizational IT assets and the achievement of corporate objectives. My professional callings help my employers/clients to achieve and maintain compliance with regulatory requirements, improve internal controls, and reduce financial and operational risk.
SUMMARY OF QUALIFICATION/SKILLS
Perform Business Process Control testing, Cybersecurity Control Testing, PCI DSS, ITGCs & IT Application Controls testing, ISO such as 27001, 20000 and 23001, infrastructure audit – Database, Network, Operating Systems, Servers. Third Party Risk Assessment, Policies, Standard and Procedures document reviews.
IT Audit Tools
Microsoft Products: MS Word, MS Excel, MS PowerPoint, Outlook Express, and ACL.
SUMMARY ACHIEVEMENTS:
- Responsible for the execution and delivery of IT and business process audits to ensure business risks were recognized and appropriately mitigated before the company was adversely affected.
- Developed technical documentation for the infrastructure and Business Continuity Plan.
- Assessed audit and test program and security controls using organization IT Security Policy Handbook to provide information necessary to determine their overall effectiveness.
- Developed audit plans and programs, following COBIT. Set up a control matrix based on specific client application needs during the planning phase of audits.
- Participated in integrated audits - carrying out ITGC testing in support of financial statements audits.
- Reviewed documentation of clients' internal controls (both IT controls and business cycle controls).
- Established QAR (Quality Assurance Review) program implementation; achieved uniform adherence to standards and streamlined audit activities resulting in reduced redundancy and wider audit coverage.