Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Babajide Dada

Aubrey,United States

Summary

Excellent communication and interpersonal skills, with strong analytical ability and problem solving capability. Ability to work on multiple projects simultaneously, driven to learn new technology, and build in-depth expertise. An independent worker and a dynamic team player, capable of working under tight deadlines and pressure. Able to adapt to professional environments and work effectively in an organized manner.

Overview

9
9
years of professional experience
1
1
Certification

Work History

IT Auditor

McKesson | US Oncology
09.2024 - Current
  • Managed the 11[th] Amendment project/deliverables between Texas Oncology and US Oncology, ensuring defined deliverables are met in a timely manner.
  • Performed design and operating effectiveness testing of Internal controls and IT Application Controls (ITACs) for the key applications.
  • Evaluated third-party applications and vendor control environments, leveraging the SOC 2 reports, and perform residual risk analysis.
  • Review of Vendor security questionnaires in OneTrust, validating identified issues were followed up on and resolved.
  • Execute, implement, design, and execute of third-party security risk related process.
  • Partnered with the External Auditors for the annual third-party and HIPAA security Audit, coordinating testing/evidence requests and walkthrough schedule.
  • Identified audit observations with clear articulation of condition, cause, risk, and recommendation.
  • Conducted readiness assessments for new regulatory or framework requirements (e.g., SEC Cybersecurity Rule, HIPAA).
  • Led the mitigation effort for all the IT related identified gaps and provided Corrective action plans.
  • Provided proactive guidance to IT leadership during system implementations, migrations, or significant changes to ensure controls are embedded “by design.”
  • Remote

Sr Compliance Specialist

HubSpot Inc
08.2023 - 08.2024
  • Ensure compliance with SOX regulations by verifying that key SOX controls are in place and operating effectively, in collaboration with Internal Audit.
  • Performed quarterly control validation for all in-scope systems in AuditBoard.
  • Collaborated with a cross-functional team to achieve HIPAA Compliance standards for protected health information (PHI) in accordance with the regulatory requirements.
  • Responsible for overseeing the SOC2 program specifically for Disaster Recovery Control.
  • Performed data collection and analysis in support of risk management project activities.
  • Developed spreadsheets and reports that summarize risk exposure.
  • Identified, reviewed, assessed, and documented risk management and control issues in assigned business processes.
  • Accountable for follow-up on outstanding findings to ensure that corrective actions are implemented and working as planned.
  • Collaborated effectively with domain experts, developers, and other stakeholders to ensure the quality and accuracy of Compliance Control System (CCS).
  • Collaborated with various business units across the firm to develop controls and test scripts/ strategies that address risk.
  • Recommended improvements in compliance processes as well as operational policies, practices, and corrective action plans, as appropriate, to address deficiencies and align with regulatory standards.
  • Created detailed reports on compliance activities, informing management of results, trends, risks, and deficiencies.

Sr IT Auditor

T-Mobile
09.2021 - 07.2023
  • Ensure compliance with SOX regulations by verifying that key SOX controls are in place and operating effectively within T-Mobile’s environment.
  • Conduct walkthroughs with Control Owners to understand and document IT General Controls (ITGC) and IT Automated Controls (ITAC) for key SOX systems (SaaS, OS, DB, and in-house).
  • Identified and implemented effective and efficient plans to remediate control design and effective deficiencies.
  • Follow up on outstanding audit issues to ensure that corrective actions are implemented and working as planned, including testing of the remediated controls.
  • Performed and documented key report testing used in the operation of key SOX controls.
  • Review the SOC 1 report to ensure that controls within the vendor’s environment are designed and operating effectively.
  • Assessed with ITGC testing using best practices and audit guidelines in compliance with NIS 800-53, COSO, and COBIT.
  • Evaluated the effectiveness and adequacy of Information security controls.

IT Advisory

KPMG
10.2019 - 05.2021
  • Ensure compliance with SOX regulations by verifying that key SOX controls are in place and operating effectively within the client environment.
  • Perform SOX readiness assessment to ensure the client’s environment is compliant with SOX controls.
  • Prepare and review the SOC 1 and 2 reports to ensure that controls within the vendor’s environment are designed and operating effectively.
  • Communicate weekly with IT on the status of outstanding audit recommendations, both internal and External, and facilitates timely remediation.
  • Evaluated and reviewed the business continuity planning of the Client environment to determine adequacy and effectiveness.
  • Reviewed the adequacy and effectiveness of the independent Auditors’ Attestation report (SSAE 18) in satisfying client control requirements at client engagements.
  • Reviewed the adequacies of key systems and application controls
  • Access control, Data Integrity, Segregation of duties, disaster recovery, and change management, among others.

IT Audit Consultant

PROTIVITI
03.2019 - 08.2019
  • Reviewed key IT control processes, Segregation of Duties (SOD) in System components (applications, database) considered in-scope to ensure compliance with SOX.
  • Conducted Infrastructure audit within client’s environment to ensure controls are suitably designed and operating effectively.
  • Worked closely with teammates and manager to report all findings and exceptions within the audit period.
  • Reviewed the adequacy and effectiveness of independent Auditors Attestation report (SSAE 18) in satisfying client control requirements at client engagements.
  • Communicated weekly with IT on the status of outstanding audit recommendations, both internal and external, and facilitated timely remediation.

IT Compliance Analyst

TELEPLAN
03.2017 - 01.2019
  • Performed risk assessment, audit planning, developed the scope, schedule, and audit reporting of findings noted during the assessment.
  • Presented identified risks to the Risk & Compliance team.
  • Reviewed entity’s access control policy (software and physical) to determine its adequacy and effectiveness.
  • Documented application security controls (Review and analyze audit evidence) processes and procedures.
  • Reviewed and recommended industry best practices in the areas of user access and password security.
  • Assisted to document physical access controls to computer resources by evaluating existing environmental security, conditions and available emergency procedures.
  • Evaluated and reviewed the business continuity planning of the organization to determine adequacy and effectiveness.
  • Reviewed the adequacy and effectiveness of independent Auditors Attestation report (SSAE 18) in satisfying client control requirement at client engagements.
  • Reviewed the adequacies of key systems and application controls – Access control, Data Integrity, Segregation of duties, disaster recovery, and change management among others.
  • Monitored and provided reports of system Internal Risk Control Self Assessments (RCSA) in satisfying client control requirements.
  • Worked with audit teams to scope assessments and update system security plans of applicable responsibilities under, SOX.

Education

Bachelor of Science - Computer Science

Joseph Ayo Babalola University
Nigeria
09.2014

Skills

  • ITGC Audit
  • Vendor Risk Management
  • SOX Audit
  • Cloud Risk Management (IaaS, PaaS, SaaS)
  • Incident Management
  • NIST Cyber security framework
  • Change Management
  • ISO 27000
  • PCI-DSS Compliance
  • ISO 29000 series
  • Disaster Recovery
  • COBIT
  • SSAE 16
  • COSO
  • System Development Life Cycle (SDLC)
  • SSAE 18 standards
  • Writing audits reports and Training on IT industry’s best practices
  • Microsoft Office
  • Microsoft Excel
  • PowerPoint
  • JIRA
  • ServiceNow
  • Archer
  • Audit Board
  • Workiva
  • Copilot
  • OneTrust

Certification

  • Information Technology Infrastructure Library (ITIL V3)
  • CISA – Certified Information Systems Auditor Jun 2020
  • CDPSE – Certified Data Privacy Solution Engineer Jul 2020
  • CISSP - Certified Information System Security Professional – In view (Passed, pending final evaluation)

Timeline

IT Auditor

McKesson | US Oncology
09.2024 - Current

Sr Compliance Specialist

HubSpot Inc
08.2023 - 08.2024

Sr IT Auditor

T-Mobile
09.2021 - 07.2023

IT Advisory

KPMG
10.2019 - 05.2021

IT Audit Consultant

PROTIVITI
03.2019 - 08.2019

IT Compliance Analyst

TELEPLAN
03.2017 - 01.2019

Bachelor of Science - Computer Science

Joseph Ayo Babalola University

Similar Profiles

  • Justina DuncanJustina Duncan

    Clinical Insurance Specialist / Medical Assistant at US Oncology/ MckessonClinical Insurance Specialist / Medical Assistant at US Oncology/ Mckesson

  • Benjamin EsserBenjamin Esser

    IT Systems Specialist (ISS) at US Oncology/McKesson Specialty HealthIT Systems Specialist (ISS) at US Oncology/McKesson Specialty Health

  • Rosa Rios RNRosa Rios RN

    Telephone Triage Senior RN at US Oncology Network - McKessonTelephone Triage Senior RN at US Oncology Network - McKesson

  • Sidrit KercykuSidrit Kercyku

    Logistics Consultant at Prime Source PBLogistics Consultant at Prime Source PB

  • Kyesha CrainKyesha Crain

    Nursing Student Clinical at Texas Health Presbyterian DentonNursing Student Clinical at Texas Health Presbyterian Denton

CREATE PROFILE
Babajide Dada