IT AUDITOR Resume Example NIGBEL GROUP

IT AUDITOR

Professional Summary

IT Auditor with experience in IT general controls (ITGCs) and IT Application controls testing. A goal focused individual with excellent communication skills. Firmly committed to understanding PCI DSS, COBIT and COSO framework required by SEC for SOX compliance, Policies, Standards and Procedures. Authorized to work in the US for any employer.

Skills

Platforms/Databases - Windows, UNIX, Oracle, MS SQL, Linux, Solaris

System - SAP, PeopleSoft, AS400, Sage, Lawson

Compliance Frameworks - SOX, COBIT, COSO, ITIL, HIPAA, PCI DSS, FISCAM/GCC, GDPR

Devices - firewalls, routers/switches

Work History

IT AUDITOR / / NIGBEL GROUP - HOUSTON , TX / 03.2018 - Current

Perform Business process application control General Control (GCC) Performed audits using COBIT, COSO, PCI DSS, SSAE 18 and SOX Frameworks - Worked with Engagement Team to identify and resolve client issues discovered during Audit and Review Process.
Evaluate the status of the internal control environment within business units and provide recommendation to bridge the gap between the current and recommended state.
Conduct and supervised all aspects of the end-to-end IT audit process to include engagement planning, coordination, scope determination, risk and control identification, design of audit program procedures, testing, and evaluation and analysis of results Prepare IT Audit program to include Access control, Change management control Operations Control and application controls Identified deficiencies in the design and operating effectiveness of controls and provided recommendations.
Evaluate the design and effectiveness of technology controls throughout the business cycle.
Assisted in preparing draft audit reports to communicate findings and recommendations to senior management Evaluate the adequacy and effectiveness of the client's internal controls using a risk- based methodology developed from professional auditing standards, such as COBIT Support clients with audit readiness efforts Performed walkthroughs and testing relating to Information Technology General Controls (ITGCs) for financially related ERP systems (PeopleSoft, Deltek CostPoint, Oracle Financials, SAP) for various leading clients in the public and private sectors.
Manage multiple associates over the testing of IT General and Application controls in support of external financial audit engagements.
Clients include those requiring compliance with PCI-DSS, HIPAA, SOX, and within Windows, UNIX, Mainframe SAP, and Oracle Financials environments Lead senior on 404 Documentation engagements for Fortune 500 Telecommunications Company.
Performed review of and documented client's IT general controls processes and controls.
During project supervised audit team of up to 8 individuals and liaised with management, external auditor and in-house internal auditor.
Gap evaluation, recommendations and remediation and follow up.
Lead Senior on 404 Documentation engagement for one of the nation's largest mortgage buyers.
Performed review of and documented client's IT General processes and controls in the areas of Database Management Security and Change Management.
Reviewed JE CAAT (Journal Entry Computer Assisted Audit Testing) testing analysis using tools such as ACL on various financial statement audits.
Trained junior staff auditors on new auditing standards and provided technical audit training such as auditing Windows, auditing PeopleSoft, SAP and other audit concepts.
Lead Senior in performing Type II SAS70 for various clients within the DC metropolis.
Work collaboratively with the executive management team for the implementation and compliance with Information Security policies, standards and procedures based on the SANS 20 Controls for the largest Credit Union in the nation Responsible for the development and documentation of governance and strategic level controls such as the information security policies and related standards and procedures that addresses the following based on NIST Guidelines: Incident Responses, Business Continuity, User Access Control, User privileges, Privilege authorization and Security relevant logs Provide technical advice on a wide variety of information security issues as well as technical assistance with design, installation, operation and maintenance of information security systems such as VPN, IPS, SEIM, etc.
Lead teams in mitigating risk factors through careful audit of network security and compliance to the standards and requirements of the Payment Card Industry Data Security Standards.
(PCIDSS) Knowledgeable in ERP (SAP) business processes and testing of relevant controls.
Identified control gaps in processes, procedures and systems through in-depth research and assessment and suggested methods for improvement.
Completed audit papers by thoroughly documenting audit tests and findings.
Analyzed accounting systems for efficiency and effectiveness.
Performed strategic planning, execution and finalization of audits.

IT Risk Analyst Consultant / / Nunace Communication - Beavercreek, OH / 08.2015 - 05.2018

• Developed IT general controls evaluation and testing
• Analyzed SSAE18 (Previously SSAE 16) and service organization control (SOC) reports
• Performed internal audits as per audit plan, including performing complex audits on information systems, platforms and operating procedures
• Evaluated IT infrastructure in terms of risk to the organization and implements controls to address risks
• Performed standard to complex audits on information systems, platforms and operating procedures as directed.
• Performed IT general control testing activities including: control design review, assembling data and information requests, and data analysis.
• Wrote audit reports to communicate results of audits
• Assembled status and other analyses required to test compliance with SOX 404 and other compliance topics

Linux System Administrator / / National Information Technology Development Agency - ABUJA, ABUJA / 02.2013 - 07.2014

• Supported the deployment of Red Hat Enterprise Linux 6 servers for corporate clients
• I used Access Control Lists to manage permissions on files and directories
• I managed users and groups in a RHEL 6 and 7 enterprise network
• Used Remote Desktop and Virtual Private Network Appliances for Server Configuration.
• Configured, setup and provisioned Servers for package Management functions.
• Provided support and configuration services of IP data networks on continuous basis.
• Prepared circuit verification, floor plans and roadmaps to measure technology.
• Supported functioning of IP network devices by constant configuration and updates.
• Resolved issues and problems through trouble tickets in timely and comprehensive manner.

IP Network Engineer(Microtik) / / Netpoint Systems Inc. - IBADAN, OYO / 02.2012 - 01.2013

⦁ Provided support and configuration services of IP data networks on continuous basis.
⦁ Performed optimum utilization of network and infrastructure performance and availability.
⦁ Assisted in functions such as trend analysis and suggestion of new and improved methods

Education

Western Governors University - Houston, TX / Expected in 09.2021Associate of Science: Information Technology

Ajayi-crowther Univeristy - OYO / 09.2012Associate of Science: Information Technology

Certifications

Cisco Certified Network Associate (CCNA)
Amazon Web Services AWS solutions Architect
Certified Information System Auditor (CISA) Anticipated date of completion December 2018

Resume Overview

Companies Worked For:

NIGBEL GROUP
Nunace Communication
National Information Technology Development Agency
Netpoint Systems Inc.

School Attended

Western Governors University
Ajayi-crowther Univeristy

Job Titles Held:

IT AUDITOR
IT Risk Analyst Consultant
Linux System Administrator
IP Network Engineer(Microtik)

Degrees

Associate of Science : Information Technology
Associate of Science : Information Technology

IT AUDITOR Resume Example

Resume Score: 80%

DISCLAIMER

Resume Overview

Create a job alert for [job role title] at [location].

Similar Resumes