ELAINE FONTANEZ
Buffalo,NY
Summary
Accomplished IT Governance, Audit, Risk & Compliance Professional with over 15 years of experience in technology controls and cybersecurity. Expertise in ITGC assessments, automation of compliance processes, and implementation of frameworks such as SOX, COBIT, and NIST CSF. Proven ability to drive risk management strategies and ensure zero audit findings across enterprise systems.
Overview
17
17
years of professional experience
1
1
Certification
Work History
Sr. IT Controls & Compliance Analyst
Caesars Sportsbook & Casino
12.2022 - 04.2025
- Ensured compliance by conducting IT audit walkthrough across 21 jurisdictions.
- Reduced user deprovisioning cycle time by 60% through Alteryx automation.
- Documented access control deficiencies and coordinated remediation efforts effectively.
- Improved data accuracy for 4,000 accounts using Alteryx workflows for access certification.
- Enhanced response times by centralizing audit evidence request intake processes.
- Increased audit readiness by documenting penetration test findings for 15 properties.
IT Support Technician
Seneca Gaming Corporation
01.2020 - 11.2022
- Ensured security compliance by managing user access provisioning across systems.
- Configured and deployed devices, adhering to established security baselines.
- Achieved over 95% SLA compliance by resolving service requests via TopDesk.
- Installed POS terminals for high-volume events, ensuring reliable performance.
- Provided technical support while maintaining clear communication with end-users.
Advisory Services Senior 2 – Risk Assurance
EY (Ernst & Young)
05.2018 - 04.2019
- Conducted thorough ITGC and SOX control walkthroughs, ensuring compliance preparedness.
- Contributed to SOC 2, Type II reporting, enhancing client trust.
- Supervised and reviewed team workpapers, improving efficiency and accuracy.
Information Assurance Risk & Compliance Analyst II / I
Seneca Gaming Corporation
06.2011 - 05.2018
- Achieved zero audit findings by conducting comprehensive user access reviews.
- Closed high-risk audit findings through effective remediation initiatives and readiness.
- Developed and maintained IT security policies to ensure compliance across all enterprise systems.
- Executed ITGC assessments, enhancing control frameworks across various organizational systems.
- Advised on best practices as SME for ConvergePoint's policy software implementation.
Technology Documentation Specialist
Seneca Gaming Corporation
05.2008 - 06.2011
- Developed comprehensive documentation processes for operational guidelines and training materials.
- Trained over 200 managers and end users on Kronos timekeeping enhancements.
Education
B.S. - Computer Information Systems
Medaille College
Buffalo, NY01-2007
Skills
- IT General Controls (ITGC)
- SOX Compliance
- Access Governance
- Audit Walkthroughs
- Risk Assessment
- Compliance Documentation
Certification
Certified Information Systems Auditor (CISA), ISACA
Timeline
Sr. IT Controls & Compliance Analyst
Caesars Sportsbook & Casino
12.2022 - 04.2025
IT Support Technician
Seneca Gaming Corporation
01.2020 - 11.2022
Advisory Services Senior 2 – Risk Assurance
EY (Ernst & Young)
05.2018 - 04.2019
Information Assurance Risk & Compliance Analyst II / I
Seneca Gaming Corporation
06.2011 - 05.2018
Technology Documentation Specialist
Seneca Gaming Corporation
05.2008 - 06.2011
B.S. - Computer Information Systems
Medaille College