Uploaded File
Trish
pklandy@gmail.com
303-945-0647
Conifer, CO 80433
Information Technology Auditor
32 years experience W2
0
Recommendations
Average rating
12
Profile views
Summary

Ambitious professional who makes it a priority to stay current on audit and technical best practices. Strong relationship-building skills coupled with technology problem-solving and executive communication. Proven vital partner to senior management in strategic planning, auditing and change management. Noted for ability to work with internal teams and outside auditors to influence quality software development and software maintenance.

Experience
Information Technology Auditor
Aug 2019 - present
Westminster, CO
Audit IT general controls (ITGCs) over system configuration, access, operation, change management, and policy and procedural compliance. Lead the IT portion of annual assessment of internal controls over financial reporting (Sarbanes Oxley - SOX). Conduct risk assessment, control walkthroughs and testing, remediation assistance, report of results to IT management and other management, and collaboration with external financial IT auditors. Review SOC reports from critical third-party vendors to provide senior management and the board with any findings and recommendations. Accomplishments Developed a repeatable process and templates for reviewing critical third-party vendors. Completed three SOC audit reviews within nine months. Assisted in developing the TSGT 2020 IT audit plan, which was approved by the Board. Adopted the NIST/COBIT Cyber Security framework to launch a detailed review of a critical metering/billing information system. Executed planning tasks, created data flows, identified existing and needed technical controls to provide a baseline for future audits.
Auditing Change Management COBIT Compliance Regulatory Reporting Risk Assessment Sarbanes-Oxley NIST Cyber Security Information Security
Remove Skill
Director of Software Audit (Declared CIA candidate)
Jan 2014 - Aug 2019
Golden, CO
Responsible for management and delivery of IT and operational audits to provide assurance that business Days risks are managed effectively and efficiently. Report deficiencies to management along with a suggested corrective action plan. Tasks include scoping, budgeting, meeting with process owners, developing test procedures, performing audit fieldwork, and reporting findings. Serve as liaison to external auditors for SOC audit engagements. · Promoted to establish the Internal Audit (IA) department based on IPPF standards and COSO internal controls framework. · Communicated the need to create an ERM process and oversight group to executive management. Designed the program, and communicated it company-wide. · Used audit findings to illustrate the need for improved change management processes. Received approval from executive management and worked with SDLC stakeholders to design and implement an improved program. · Performed consulting engagements that led to improved SDLC and IT controls, allowing the company to meet its 2018 Quality Assurance goal. · Managed and provided oversight for IT and clients to successfully participate in the SIFMA business continuity industry test on an annual basis. · Provided audit oversight for two data center moves, which were monitored by the risk management group and controlled by improved change management processes. · Helped establish the process to formalize corporate governance policies, update and publish them annually, and communicate the changes throughout the company. · Managed audit engagements for annual SOC 1 and SOC 2 reports, used by executives to provide assurance around the integrity of our financial statements. · Worked within department budget to produce SOC reports via an external auditor and manage travel expenses to ensure internal audit had a presence at both company offices. · Used continuous education budget to prepare for CIA exams. Passed exam 1 and am scheduled to take exams 2 and 3 in 2019.
Auditing Change Management CIA ERM Project Management Regulatory Reporting Risk Management
Remove Skill
Director of Quality Assurance
Sep 2011 - Jan 2014
Golden, CO
· Managed the QA staff and department workload, which included writing test plans and scripts and testing an enterprise-wide brokerage software system. · Planned 6- to 12-month test schedules based on the development roadmaps published by the Engineering and Product Management departments. · Conducted annual reviews for the QA staff, recommended year-end bonuses, and adjusted salaries as necessary. ? Accomplishments · Built a small Quality Assurance function into a larger, more formal department with documented standards and processes. · Developed Microsoft Word templates for requirements gathering, test plans, and test scripts. · Designed and oversaw the development of a QAT environment that closely resembled production environments. · Worked with the Engineering and Product Management departments to develop utilities that mimic production activity. · Implemented processes to test synchronously with clients in their test environments.
No skills were added
Remove Skill
Director of Custom Services
Jan 2009 - Sep 2011
Golden, CO
· Led professional services engagements for an enterprise-wide brokerage software development company. · Worked with subject matter experts and clients to gather project requirements and create high-level design. · Worked with Accounting and Sales to determine project hours and draft statements of work (SOW). · Oversaw product development to manage risk and change. Led client communication. Accomplishments · Matured the professional services function by creating and enforcing policies and processes that defined stakeholder roles and responsibilities.
No skills were added
Remove Skill
Manager of Documentation
Aug 1995 - Jan 2009
Golden, CO
· PROFESSIONAL EXPERIENCE Documentation Manager · Managed a Documentation department and influenced company culture to ensure documentation was required for all software releases. · Created standards and templates for documenting the GUIs, reports, batch programs, and software installers that made up the more than 100-module system. · Managed a team of 5-7 technical writers. · Designed online-help for an enterprise-wide financial services system used by broker-dealers. Technical Writer · Led an effort to develop an information architecture for an enterprise financial services system. Identified all instructional aspects needed to inform all software users. · Wrote technical documentation for a variety of audiences, including end users, operators, software installers, security staff, and developers. · Led effort to document software APIs so third parties could develop code to interface with our system at the application and database levels. · Documented the schema and data definitions for a large relational database for business and technical users. Process Documentation · Worked with all other product development departments to make the Documentation department an essential part of the SDLC. · Documented change and risk management processes to support SOC 1 and SOC 2 audits. Supplemented the narrative-based documentation with Visio-based process flows. Communication · Excellent communication skills. · Strong ability to learn technical and business subject matter and translate it into detailed documentation. · Experienced at looking at a large body of information and break it into sensible, easily communicated pieces. · Experience and strong working knowledge of Microsoft Office applications.
No skills were added
Remove Skill
Information Analyst
Dec 1994 - Oct 1995
· Reviewed source information to document career information, including job descriptions, Washington State job codes, education requirements, salary ranges, and college descriptions. · Worked directly with the Software Engineering department to provide quality assurance and develop on-line help.
No skills were added
Remove Skill
Communications Writer
Feb 1995 - Aug 1995
Golden, CO
· Supported research teams by producing a variety of communication materials.
No skills were added
Remove Skill
Communications and Public Affairs Writer
Aug 1989 - Oct 1993
Albuquerque, NM
· Worked as lead writer for division-wide internal communication, including writing content for the company newspaper and publishing it every two weeks. · Provided design and copy for internal employee rewards and expense-saving programs. · Wrote content to market avionics solutions offered through the Department of Defense (DOD) RFP process.
No skills were added
Remove Skill
Edit Skills
Non-cloudteam Skill
Education
Computer Programming
University of Denver, 1995 - 1997
English
University of Denver, 1985 - 1989
Bear Creek Highschool, 1981 - 1985
Certifications
Internal Audit Practitioner
Institute Of Internal Auditors, 2019
Skills
Auditing
2021
6
Change Management
2021
6
Regulatory Reporting
2021
6
CIA
2019
5
ERM
2019
5
Project Management
2019
5
Risk Management
2019
5
COBIT
2021
1
Compliance
2021
1
Cyber Security
2021
1
Information Security
2021
1
NIST
2021
1
Risk Assessment
2021
1
Sarbanes-Oxley
2021
1
CCAR
0
1
COSO
0
1
Data Visualization
0
1
IT Audit
0
1
Microsoft Office
0
1
Process Improvement
0
1
Vendor Management
0
1