Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

COLLINS ADEMOLA

Winder,GA

Summary

An information security professional with a proven track record of four years in audit, compliance, and risk management. Demonstrates strong analytical skills and expertise as an IT Auditor, making sound decisions and displaying business acumen. Possesses exceptional problem-solving abilities and project management skills. Proficient in operational and systems audit, access control, change management, risk assessment, internal controls assessment, and systems implementation assessment. A natural leader with the flexibility to work both independently and collaboratively in a team environment. Successfully manages multiple projects while maintaining excellent communication and organizational skills. Known for bringing enthusiasm and creative solutions to complex problems.

Overview

5
5
years of professional experience
1
1
Certification

Work History

Information system Auditor

Global Technology Services
Atlanta, Georgia
01.2023 - Current
  • Responsible for interpreting audit results and making conclusions on the adequacy and reliability of controls as well as preparing and presenting reports as necessary to provide support concerning compliance issues and industry trends
  • Professionally develop audit programs, and work paper documentation, and coordinate audit engagement activities such as entrance, interim, and exit conferences
  • Performs IT general control testing (ITGC) and application control testing (ITAC), working with process owners to manage and execute controls testing in line with Sarbanes -Oxley (SOX)404 and SOC report/SSAE18 Attestation
  • Test control over segregation of duties, change management and work on evidence gathered to support SOX compliance program
  • Assess IT internal control as part of financial statement audit, internal and operational audit, Attestation engagement and Audit readiness
  • Perform Test of Design (TODs) and Test of Operating Effectiveness (TOEs) of key defined control activities and testing for Audit readiness
  • Reviewed and tested Key IT controls as well as documented audit findings
  • Perform risk assessments, including identification, evaluation, and documentation of IT business risks and controls
  • Conducts IT infrastructure audit, testing Databases, Network Devices, Servers and operating Systems
  • Track, Monitors and report all internal Risk Control Assessment (RCSA) in compliance with policies and standards
  • Evaluate logical security controls, change management approval and IT operational Effectiveness
  • Working closely with the IT team to understand the technical aspects of systems applications and collaborate on implementing effective controls and risk mitigation measures
  • Tracking and documenting the appropriate comments and closing or escalating the incidence tickets and relates issues in a timely manner

IT Risk Analyst

Agilysys
Atlanta, Georgia
11.2021 - 12.2022
  • Evaluated and validated the 3 major elements of access control namely Identification, Authentication, and Authorization as stated by the organization’s policy and procedure
  • Evaluated and tested business application changes for approval of affected business units prior to implementation
  • Planned, implemented monitored and upgraded security policies, procedures and standards to ensure the protection of the organisation data, system and network
  • Worked with control owners and operators to ensure quality, consistency and operability of new and existing controls
  • Performed process review of Key controls to determine design effectiveness as well as operating effectiveness
  • Identified areas to review that included Physical and Access security, Application Change Management, Segregation of Duties and Data Backup
  • Verified the existence of a disaster recovery plan and reviewed the same to validate that the plans are updated and tested regularly
  • Reviewed, and validated the process of deactivating Remote Access VPN accounts and tested access to ensure terminated employees’ access is removed on termination
  • Identified, Prioritized and tracked information security vulnerabilities utilizing security scanning tools
  • Supported review of IT tools, control designs and remediation planning

IT Auditor (Assurance)

PwC
Dallas, Texas
10.2019 - 11.2021
  • Risk Assessment Team charged with analysing clients’ critical systems, developing reports to document system vulnerabilities and potential threats to the enterprise network, and recommending appropriate mitigation plans to protect the critical systems, network, and other IT resources and products
  • Planned and coordinated Information Technology Audit and ensure audit assignments are completed accurately and within established time using the application frameworks such as COBIT, COSO, ITIL, ISO and NIST
  • Performed detailed analysis and risk assessment of security threats and administered investigative activities and remediation efforts as defined by the organization’s Security Policy
  • Evaluated IT infrastructure in terms of risk to the organization and established controls to mitigate loss
  • Executed SailPoint testing for design adequacy and operating effectiveness of provisioning and certification controls
  • Conducted information system audit
  • Testing preventive, detective, corrective and compensating controls for design adequacy and operating effectiveness to mitigate risks
  • Managed Internet and Intranet security-based issues by performing firewall policy audits and reviewing security logs
  • Designed and implemented compliance testing, controls assessment, and documentation across all SOX domains (Info-Security, Program Change, IT Operations, Applications Development)
  • Identified and communicated Audit findings to senior management and clients
  • Reviewed approval and authorization process for requesting user IDs and job-related role changes and updated the procedure for adding and deleting users to determine username and password security
  • Adopted a risk-based approach to determine audit scope, and the impact of control weakness and perform risk management of assets
  • Reviewed Firewall access to determine whether protocols that were supposed to be denied per the security policy of the organization were not allowed into the network
  • Maintained a good working relationship with clients and colleagues to enhance client satisfaction and work with client management and staff at all levels to perform audit services

Education

Bachelor of Science - Accounting and Finance

Yaba College of Technology
Lagos

Skills

  • Microsoft Office Suite
  • Risk Assessment
  • Internal Audit Knowledge
  • IT Security & Infrastructure
  • Windows & UNIX Knowledge
  • Compliance & Auditing
  • Project Management
  • Report Preparation
  • Accounting
  • Written and verbal communication

Certification

Certified Information Systems Auditor (CISA)

Timeline

Information system Auditor

Global Technology Services
01.2023 - Current

IT Risk Analyst

Agilysys
11.2021 - 12.2022

IT Auditor (Assurance)

PwC
10.2019 - 11.2021

Bachelor of Science - Accounting and Finance

Yaba College of Technology

Similar Profiles

  • Shaharrah RichardsShaharrah Richards

    Information System Auditor at NYS Office of Information Technology ServicesInformation System Auditor at NYS Office of Information Technology Services

  • ASUQUO EMMANUELASUQUO EMMANUEL

    Information System Auditor at Access Holdings MicrofinanceInformation System Auditor at Access Holdings Microfinance

  • MHER SARATIKYANMHER SARATIKYAN

    Information System Auditor at Central Bank of ArmeniaInformation System Auditor at Central Bank of Armenia

  • Omer Alfateh NaaimOmer Alfateh Naaim

    Information Technology System Engineer at Saudi Investment Recycling Company (SIRC)Information Technology System Engineer at Saudi Investment Recycling Company (SIRC)

CREATE PROFILE
COLLINS ADEMOLA