Summary
Overview
Work History
Education
Skills
Certification
Skills
References
Timeline
Generic
Adewale Mabadeje

Adewale Mabadeje

Information Technology
Royse City,TX

Summary

Over 5 years of experience in Governance, Risk, and Compliance (GRC) across various industries. Proficient in SOX testing, IT audit, and Third-Party Risk Management (TPRM) with hands-on expertise in Venminder and Archer systems. Strong understanding of regulatory standards such as SOX, PCI DSS, GLBA, GDPR, and HIPAA. Capable of integrating IT security, risk assessment, and compliance functions effectively.

Overview

7
7
years of professional experience
1
1
Certification

Work History

Digital Risk Consultant

Interapt/Ernst & Young
Dallas, TX
10.2024 - Current
  • Executed SOX 404 control testing procedures, ensuring compliance with regulatory standards.
  • Evaluated design and operational effectiveness of internal controls over financial reporting.
  • Maintained documentation and testing evidence in line with EY and regulatory requirements.
  • Prepared audit reports and management communications, highlighting identified deficiencies.
  • Conducted internal audits across various domains, including IT security and vendor management.
  • Remediated technology and audit weaknesses highlighted by regulators to strengthen compliance.
  • Developed risk-based audit plans adhering to industry best practices and FFIEC guidance.
  • Facilitated continuous risk assessment through interviews with management to identify emerging risks.
  • Pursued continuous learning and stayed updated on changes in SOX regulations and best practices, ensuring compliance, and driving continuous improvement.

Third Party Risk Analyst

Insight Global/Bank of Montreal
Atlanta, GA
03.2022 - 09.2024
  • Recruited to oversee third-party risk management processes, and enhance compliance tracking for a major financial institution.
  • Supported a team of risk assessors while conducting comprehensive risk assessments for high-risk service providers throughout the TPRM lifecycle, including initial onboarding, contract review, reassessment, continuous monitoring, and vendor termination.
  • Streamlined vendor assessments by managing Control Questionnaires and Technical Scoping Questionnaires in Archer, improving compliance tracking efficiency by 20%.
  • Conducted vendor onboarding, due diligence reviews, risk assessment, and ensured regulatory compliance.
  • Assisted in the daily management of TPRM, focusing on data collection, tracking, and reporting of TPRM activities.
  • Reduced potential risks by 30% through thorough risk and control assessments of high-risk third-party service providers.
  • Decreased compliance issues by 40% by testing the design and operational effectiveness of general, contractual, and regulatory controls.
  • Contributed to the preparation of responses to audits and regulatory reviews related to TPRM/VRM.
  • Assisted in the creation of reports and dashboards to summarize key metrics and indicators (KPI and KRI) for the TPRM program.
  • Enhanced risk mitigation efforts by 35% through detailed reporting of assessment results and VRM metrics to senior management.
  • Improved risk identification and mitigation effectiveness by 40% by leading collaborative initiatives to develop risk mitigation strategies.
  • Worked with business owners, procurement, legal, and compliance teams to enhance the vendor-related risk management process.
  • Participated in process improvement efforts aimed at enhancing vendor oversight, consistency, and efficiency.

Risk Analyst/GRC

Inspyr/City National Bank
Ft Lauderdale, FL
10.2021 - 03.2022
  • Designed and implemented standard operating procedures for Vendor Risk Management within GRC team.
  • Led vendor onboarding processes and risk analysis initiatives to enhance efficiency.
  • Reduced vendor onboarding times by 30% through standardized VRM operating procedures.
  • Increased vendor compliance readiness by 25% by conducting kick-off meetings and evaluating controls.
  • Decreased risk analysis time by 20% through application of standardized assessment models across projects.
  • Enhanced risk response strategies by 15% through maintenance of key risk indicators and documentation.
  • Boosted employee awareness of cybersecurity threats by 40% with comprehensive phishing training.

SOX Analyst/IT Auditor

Hays/Truist Bank
Chicago, IL
07.2018 - 10.2021
  • Executed and documented SOX 404 testing procedures to ensure compliance standards were met.
  • Collaborated with business units to gather documentation and comprehend key processes.
  • Prepared comprehensive reports detailing audit findings and evaluations of internal controls.
  • Increased audit efficiency by 25% as primary liaison for client compliance and IT audit teams.
  • Managed SOX request ticketing system, improving request turnaround time by 40%.
  • Monitored progress of remediation activities, providing timely updates to stakeholders.

Education

B. TECH - Applied Geology

Federal University of Technology Akure
Akure, Nigeria

Associate of Science - computer science/engineering technology

Lagos State Polytechnic
Lagos Nigeria

Certified Information System Auditor (CISA) -

ISACA

Skills

  • Third-party risk management
  • IT risk assessment
  • Regulatory compliance
  • Cybersecurity analysis
  • Vendor management
  • Contractual challenges
  • Application control auditing
  • Internal general controls and application testing
  • Governance, risk, and compliance
  • Identity and access management
  • Business continuity and disaster recovery
  • Business continuity planning
  • Information security policy development
  • Audit tools (ACL, Archer, Audit Board, ServiceNow)
  • Project management tools (Jira, RSAM, One Trust)
  • Collaboration tools (SharePoint, Viso Trust, Jive)
  • ERP systems (SAP, AS400)
  • Database management (DB2, Oracle)
  • Operating systems (Windows, UNIX, Linux, Solaris)
  • Cloud services (Azure DevOps)
  • Risk frameworks (COBIT, COSO, ISO 27001, NIST RMF)
  • Compliance standards (ISO 27001, ISO 22301, SOC 1, SOC 2)
  • Financial regulations (US GAAP, PCI DSS, GDPR, CCPA, GLBA, FFIEC

Certification

Certified Information System Auditor (CISA)

Skills

Third-Party Risk Management (TPRM), IT Risk Assessment and Mitigation, Regulatory Compliance (SOX, PCI DSS, GDPR, HIPAA), Cybersecurity Risk Analysis, Vendor Due Diligence and Management, Internal Controls Testing and Auditing, Governance, Risk, and Compliance (GRC), Identity and Access Management (IAM), Business Continuity and Disaster Recovery, Information Security Policy Development and Implementation, ACL, Archer, ServiceNow, RSAM, One Trust, Audit Board, SharePoint, Viso Trust, IDEA, Jive, SAP, AS400, Microsoft Office (Excel, Word, PowerPoint), Windows, DB2, UNIX, SAP ECC 6.0, GRC 10.0, Linux, Solaris, Oracle, Azure DevOps, COBIT, KnowBe4, Sarbanes-Oxley 404, COSO, FFIEC, ITIL, ISO27001, ISO22301, ISO31000, GDPR, HIPAA, NIST RMF, CSF, ISO3100, NIST (S.P.) 800-53, Loss Exceedance Curves, US GAAP, Venminder, Firewalls, Routers/Switches

References

References available upon request.

Timeline

Digital Risk Consultant

Interapt/Ernst & Young
10.2024 - Current

Third Party Risk Analyst

Insight Global/Bank of Montreal
03.2022 - 09.2024

Risk Analyst/GRC

Inspyr/City National Bank
10.2021 - 03.2022

SOX Analyst/IT Auditor

Hays/Truist Bank
07.2018 - 10.2021

B. TECH - Applied Geology

Federal University of Technology Akure

Associate of Science - computer science/engineering technology

Lagos State Polytechnic

Certified Information System Auditor (CISA) -

ISACA

Similar Profiles

CREATE PROFILE
Adewale MabadejeInformation Technology
Resume profile created at Resume-Now.com